Recent vulnerabilities

Vulnerabilities are sorted by update time (recent to old).
ID CVSS Description Vendor Product Published Updated
cve-2025-7195 5.2 (v3.1) Operator-sdk: privilege escalation due to incorrect pe… Red Hat
 multicluster engine for Kubernetes 2.7
 2025-08-07T19:05:08.756Z 2025-11-18T20:16:14.576Z
cve-2025-37155 7.8 (v3.1) Authenticated Privilege Escalation Allows Unauthorized… Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking AOS-CX
 2025-11-18T18:40:40.560Z 2025-11-18T20:12:18.208Z
cve-2025-22247 6.1 (v3.1) Insecure file handling vulnerability n/a
 VMware Tools
 2025-05-12T10:46:36.155Z 2025-11-18T20:05:36.855Z
cve-2025-10148 N/A predictable WebSocket mask curl
 curl
 2025-09-12T05:10:37.469Z 2025-11-18T20:05:32.822Z
cve-2023-51767 N/A OpenSSH through 10.0, when common types of DRAM a… n/a
 n/a
 2023-12-24T00:00:00.000Z 2025-11-18T20:05:27.966Z
cve-2025-54821 1.8 (v3.1) An Improper Privilege Management vulnerability [C… Fortinet
 FortiProxy
 2025-11-18T17:01:22.231Z 2025-11-18T20:04:58.245Z
cve-2025-58413 6.9 (v3.1) A stack-based buffer overflow in Fortinet FortiOS… Fortinet
 FortiSASE
 2025-11-18T17:01:22.032Z 2025-11-18T20:04:36.431Z
cve-2025-46215 5 (v3.1) An Improper Isolation or Compartmentalization vul… Fortinet
 FortiSandbox
 2025-11-18T17:01:21.449Z 2025-11-18T20:04:14.836Z
cve-2025-63228 N/A The Mozart FM Transmitter web management interfac… n/a
 n/a
 2025-11-18T00:00:00.000Z 2025-11-18T20:02:20.597Z
cve-2025-59110 6.8 (v4.0) Cross-Site Request Forgery in Windu CMS JCD
 Windu CMS
 2025-11-18T13:26:29.098Z 2025-11-18T19:34:54.529Z
cve-2025-59669 4.8 (v3.1) A use of hard-coded credentials vulnerability in … Fortinet
 FortiWeb
 2025-11-18T17:01:19.617Z 2025-11-18T19:34:51.604Z
cve-2025-59112 5.1 (v4.0) Cross-Site Request Forgery in Windu CMS JCD
 Windu CMS
 2025-11-18T13:26:31.060Z 2025-11-18T19:32:33.667Z
cve-2025-63227 N/A The Mozart FM Transmitter web management interfac… n/a
 n/a
 2025-11-18T00:00:00.000Z 2025-11-18T19:31:09.825Z
cve-2025-41350 5.1 (v4.0) Stored Cross-Site Scripting (XSS) in WinPlus by Inform… Informática del Este
 WinPlus
 2025-11-18T11:27:42.348Z 2025-11-18T19:26:49.005Z
cve-2025-54660 4.9 (v3.1) An active debug code vulnerability in Fortinet Fo… Fortinet
 FortiClientWindows
 2025-11-18T17:01:18.577Z 2025-11-18T19:24:07.223Z
cve-2025-37162 6.5 (v3.1) Authenticated Command Injection Vulnerability Leading … Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking 100 Series Cellular Bridge
 2025-11-18T19:23:20.504Z 2025-11-18T19:23:20.504Z
cve-2025-37161 7.5 (v3.1) Unauthenticated Remote Denial-of-Service (DoS) Vulnera… Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking 100 Series Cellular Bridge
 2025-11-18T19:21:23.220Z 2025-11-18T19:21:23.220Z
cve-2025-63226 N/A The Sencore SMP100 SMP Media Platform (firmware v… n/a
 n/a
 2025-11-18T00:00:00.000Z 2025-11-18T19:15:53.119Z
cve-2025-6670 8.8 (v3.1) Cross-Site Request Forgery (CSRF) in Multiple WSO2 Pro… WSO2
 WSO2 Open Banking AM
 2025-11-18T11:28:37.410Z 2025-11-18T19:12:59.786Z
cve-2025-37158 6.7 (v3.1) Authenticated Command Injection allows Unauthorized Co… Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking AOS-CX
 2025-11-18T18:51:28.623Z 2025-11-18T19:11:14.142Z
cve-2025-61713 3.8 (v3.1) A Cleartext Storage of Sensitive Information in M… Fortinet
 FortiPAM
 2025-11-18T17:01:18.529Z 2025-11-18T19:10:33.592Z
cve-2025-37159 5.8 (v3.1) Authenticated Session Hijacking Allows Unauthorized Ac… Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking AOS-CX
 2025-11-18T18:52:46.501Z 2025-11-18T19:10:05.206Z
cve-2025-63225 N/A The Eurolab ELTS100_UBX device (firmware version … n/a
 n/a
 2025-11-18T00:00:00.000Z 2025-11-18T19:08:29.432Z
cve-2025-37163 7.2 (v3.1) Authenticated Command Injection Vulnerability in HPE A… Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking Management Software (Airwave)
 2025-11-18T19:06:11.180Z 2025-11-18T19:06:55.129Z
cve-2025-52639 3.5 (v3.1) HCL Connections is vulnerable to sensitive information… HCL Software
 Connections
 2025-11-18T18:58:06.174Z 2025-11-18T18:58:06.174Z
cve-2025-37160 5.3 (v3.1) Authenticated Broken Access Control (BAC) in REST API … Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking AOS-CX
 2025-11-18T18:54:09.908Z 2025-11-18T18:54:09.908Z
cve-2025-56499 N/A Incorrect access control in mihomo v1.19.11 allow… n/a
 n/a
 2025-11-18T00:00:00.000Z 2025-11-18T18:49:37.186Z
cve-2025-37157 6.7 (v3.1) Authenticated Command Injection allows Unauthorized Co… Hewlett Packard Enterprise (HPE)
 HPE Aruba Networkign AOS-CX
 2025-11-18T18:48:58.009Z 2025-11-18T18:48:58.009Z
cve-2025-37156 6.8 (v3.1) ArubaOS-CX Platform-Level Denial-of-Service Vulnerability Hewlett Packard Enterprise (HPE)
 HPE Aruba Networking AOS-CX
 2025-11-18T18:46:10.640Z 2025-11-18T18:46:10.640Z
cve-2025-61662 4.9 (v3.1) Grub2: missing unregister call for gettext command may… Red Hat
 Red Hat Enterprise Linux 10
 2025-11-18T18:20:48.351Z 2025-11-18T18:44:53.816Z
Vulnerabilities are sorted by update time (recent to old).
ID Description Published Updated
jvndb-2025-022878 Media Player MP-01 vulnerable to Missing Authentication for Critical Function 2025-12-24T11:10+09:00 2025-12-24T11:10+09:00
jvndb-2025-019621 EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts 2025-11-21T15:31+09:00 2025-12-24T10:54+09:00
jvndb-2025-014967 Multiple vulnerabilities in multiple Keyence products 2025-10-03T11:19+09:00 2025-12-23T14:36+09:00
jvndb-2025-000117 SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow 2025-12-16T15:31+09:00 2025-12-23T11:57+09:00
jvndb-2025-022400 Ruijie Networks AP180 Series vulnerable to OS command injection 2025-12-19T12:33+09:00 2025-12-19T12:33+09:00
jvndb-2025-000118 GROWI vulnerable to cross-site request forgery 2025-12-17T13:04+09:00 2025-12-17T13:04+09:00
jvndb-2025-022062 Multiple vulnerabilities in CHOCO TEI WATCHER mini 2025-12-17T11:28+09:00 2025-12-17T11:28+09:00
jvndb-2025-000115 QND vulnerable to privilege escalation 2025-12-11T14:33+09:00 2025-12-11T14:33+09:00
jvndb-2025-000113 Multiple vulnerabilities in GroupSession 2025-12-08T17:48+09:00 2025-12-11T11:30+09:00
jvndb-2025-000091 Multiple I-O DATA NAS management applications register Windows services with unquoted file paths 2025-10-22T15:04+09:00 2025-12-10T16:20+09:00
jvndb-2021-000081 Multiple vulnerabilities in Sharp NEC Display Solutions' public displays 2021-09-17T15:13+09:00 2025-12-10T10:24+09:00
jvndb-2025-021305 Android App "Brother iPrint&Scan" improper use of an external cache directory 2025-12-09T17:25+09:00 2025-12-09T17:25+09:00
jvndb-2025-000114 ELECOM Clone for Windows registers a Windows service with an unquoted file path 2025-12-09T17:16+09:00 2025-12-09T17:16+09:00
jvndb-2025-000116 GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths 2025-12-08T14:06+09:00 2025-12-08T14:06+09:00
jvndb-2025-000094 Multiple vulnerabilities in ABB Terra AC Wallbox 2025-12-05T14:12+09:00 2025-12-05T14:12+09:00
jvndb-2025-000112 Installer of INZONE Hub may insecurely load Dynamic Link Libraries 2025-11-28T13:36+09:00 2025-11-28T13:36+09:00
jvndb-2025-000111 SwitchBot Smart Video Doorbell vulnerable to active debug code 2025-11-26T14:35+09:00 2025-11-26T14:35+09:00
jvndb-2025-000110 Multiple vulnerabilities in Security Point (Windows) of MaLion 2025-11-25T17:17+09:00 2025-11-25T17:17+09:00
jvndb-2025-000109 Multiple vulnerabilities in SNC-CX600W 2025-11-25T14:59+09:00 2025-11-25T14:59+09:00
jvndb-2025-000108 "FOD" App uses hard-coded cryptographic keys 2025-11-25T14:15+09:00 2025-11-25T14:15+09:00
jvndb-2025-000106 Multiple vulnerabilities in LogStare Collector 2025-11-21T16:27+09:00 2025-11-21T16:27+09:00
jvndb-2025-000107 Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries 2025-11-19T16:22+09:00 2025-11-19T16:22+09:00
jvndb-2025-000097 "Dejira" App for iOS vulnerable to improper server certificate verification 2025-11-17T14:09+09:00 2025-11-17T14:09+09:00
jvndb-2025-000105 NCP-HG100 vulnerable to OS command injection 2025-11-14T15:26+09:00 2025-11-14T15:26+09:00
jvndb-2025-000104 Multiple vulnerabilities in GNU Libmicrohttpd 2025-11-10T15:07+09:00 2025-11-10T15:07+09:00
jvndb-2025-000103 Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series" 2025-11-07T15:39+09:00 2025-11-07T15:39+09:00
jvndb-2025-000102 CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection 2025-11-07T14:55+09:00 2025-11-07T14:55+09:00
jvndb-2025-000101 GROWI vulnerable to stored cross-site scripting 2025-11-06T13:45+09:00 2025-11-06T13:45+09:00
jvndb-2024-013260 Multiple vulnerabilities in Edgecross Basic Software for Windows 2024-11-22T10:59+09:00 2025-11-04T16:41+09:00
jvndb-2025-017972 Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series 2025-11-04T16:37+09:00 2025-11-04T16:37+09:00
Vulnerabilities are sorted by update time (recent to old).
ID Description
ts-2025-008 TS-2025-008
ts-2025-007 TS-2025-007
ts-2025-006 TS-2025-006
ts-2025-005 TS-2025-005
ts-2025-004 TS-2025-004
ts-2025-003 TS-2025-003
ts-2025-002 TS-2025-002
ts-2025-001 TS-2025-001
ts-2024-013 TS-2024-013
ts-2024-012 TS-2024-012
ts-2024-011 TS-2024-011
ts-2024-010 TS-2024-010
ts-2024-009 TS-2024-009
ts-2024-008 TS-2024-008
ts-2024-007 TS-2024-007
ts-2024-006 TS-2024-006
ts-2024-005 TS-2024-005
ts-2024-004 TS-2024-004
ts-2024-003 TS-2024-003
ts-2024-002 TS-2024-002
ts-2024-001 TS-2024-001
ts-2023-009 TS-2023-009
ts-2023-008 TS-2023-008
ts-2023-007 TS-2023-007
ts-2023-006 TS-2023-006
ts-2023-005 TS-2023-005
ts-2023-004 TS-2023-004
ts-2023-003 TS-2023-003
ts-2023-002 TS-2023-002
ts-2023-001 TS-2023-001