Vulnerabilities

CVE Alert: CVE-2025-7749

July 19, 2025

Vulnerability Summary: CVE-2025-7749 A vulnerability, which was classified as critical, has been found in code-projects Online Appointment Booking System 1.0....

CVE Alert: CVE-2025-7339

July 19, 2025

Vulnerability Summary: CVE-2025-7339 on-headers is a node.js middleware for listening to when a response writes headers. A bug in on-headers...

CVE Alert: CVE-2025-7748

July 19, 2025

Vulnerability Summary: CVE-2025-7748 A vulnerability classified as problematic was found in ZCMS 3.6.0. This vulnerability affects unknown code of the...

CVE Alert: CVE-2025-23263

July 19, 2025

Vulnerability Summary: CVE-2025-23263 NVIDIA DOCA-Host and Mellanox OFED contain a vulnerability in the VGT+ feature, where an attacker on a...

CVE Alert: CVE-2025-7472

July 18, 2025

Vulnerability Summary: CVE-2025-7472 A local privilege escalation vulnerability in the Intercept X for Windows installer prior version 1.22 can lead...

CVE Alert: CVE-2025-7747

July 18, 2025

Vulnerability Summary: CVE-2025-7747 A vulnerability classified as critical has been found in Tenda FH451 1.0.0.9. This affects the function fromWizardHandle...

CVE Alert: CVE-2025-7750

July 18, 2025

Vulnerability Summary: CVE-2025-7750 A vulnerability, which was classified as critical, was found in code-projects Online Appointment Booking System 1.0. Affected...

CVE Alert: CVE-2024-13972

July 18, 2025

Vulnerability Summary: CVE-2024-13972 A vulnerability related to registry permissions in the Intercept X for Windows updater prior to version 2024.3.2...

CVE Alert: CVE-2025-46102

July 18, 2025

Vulnerability Summary: CVE-2025-46102 Cross Site Scripting vulnerability in Beakon Software Beakon Learning Management System Sharable Content Object Reference Model (SCORM)...

CVE Alert: CVE-2024-41921

July 18, 2025

Vulnerability Summary: CVE-2024-41921 A code injection vulnerability has been discovered in the Robot Operating System (ROS) 'rostopic' command-line tool, affecting...

CVE Alert: CVE-2024-39289

July 18, 2025

Vulnerability Summary: CVE-2024-39289 A code execution vulnerability has been discovered in the Robot Operating System (ROS) 'rosparam' tool, affecting ROS...

CVE Alert: CVE-2024-39835

July 18, 2025

Vulnerability Summary: CVE-2024-39835 A code injection vulnerability has been identified in the Robot Operating System (ROS) 'roslaunch' command-line tool, affecting...

CVE Alert: CVE-2024-42209

July 18, 2025

Vulnerability Summary: CVE-2024-42209 HCL Connections is vulnerable to an information disclosure vulnerability that could allow a user to obtain sensitive...

CVE Alert: CVE-2024-41148

July 18, 2025

Vulnerability Summary: CVE-2024-41148 A code injection vulnerability has been discovered in the Robot Operating System (ROS) 'rostopic' command-line tool, affecting...

CVE Alert: CVE-2025-1729

July 18, 2025

Vulnerability Summary: CVE-2025-1729 A DLL hijacking vulnerability was reported in TrackPoint Quick Menu software that, under certain conditions, could allow...

CVE Alert: CVE-2025-23266

July 18, 2025

Vulnerability Summary: CVE-2025-23266 NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container,...

CVE Alert: CVE-2025-23267

July 18, 2025

Vulnerability Summary: CVE-2025-23267 NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could...

CVE Alert: CVE-2025-1700

July 18, 2025

Vulnerability Summary: CVE-2025-1700 A DLL hijacking vulnerability was reported in the Motorola Software Fix (Rescue and Smart Assistant) installer that...

CVE Alert: CVE-2025-23270

July 18, 2025

Vulnerability Summary: CVE-2025-23270 NVIDIA Jetson Linux contains a vulnerability in UEFI Management mode, where an unprivileged local attacker may cause...

CVE Alert: CVE-2025-2818

July 18, 2025

Vulnerability Summary: CVE-2025-2818 A vulnerability was reported in version 1.0 of the Bluetooth Transmission Alliance protocol adopted by Motorola Smart...

CVE Alert: CVE-2025-4657

July 18, 2025

Vulnerability Summary: CVE-2025-4657 A buffer overflow vulnerability was reported in the Lenovo Protection Driver, prior to version 5.1.1110.4231, used in...

CVE Alert: CVE-2025-3753

July 18, 2025

Vulnerability Summary: CVE-2025-3753 A code execution vulnerability has been identified in the Robot Operating System (ROS) 'rosbag' tool, affecting ROS...

CVE Alert: CVE-2025-53964

July 18, 2025

Vulnerability Summary: CVE-2025-53964 GoldenDict 1.5.0 and 1.5.1 has an exposed dangerous method that allows reading and modifying files when a...

CVE Alert: CVE-2025-0886

July 18, 2025

Vulnerability Summary: CVE-2025-0886 An incorrect permissions vulnerability was reported in Elliptic Labs Virtual Lock Sensor that could allow a local,...

Vulnerabilities

CVE Alert: CVE-2025-7749

CVE Alert: CVE-2025-7339

CVE Alert: CVE-2025-7748

CVE Alert: CVE-2025-23263

CVE Alert: CVE-2025-7472

CVE Alert: CVE-2025-7747

CVE Alert: CVE-2025-7750

CVE Alert: CVE-2024-13972

CVE Alert: CVE-2025-46102

CVE Alert: CVE-2024-41921

CVE Alert: CVE-2024-39289

CVE Alert: CVE-2024-39835

CVE Alert: CVE-2024-42209

CVE Alert: CVE-2024-41148

CVE Alert: CVE-2025-1729

CVE Alert: CVE-2025-23266

CVE Alert: CVE-2025-23267

CVE Alert: CVE-2025-1700

CVE Alert: CVE-2025-23270

CVE Alert: CVE-2025-2818

CVE Alert: CVE-2025-4657

CVE Alert: CVE-2025-3753

CVE Alert: CVE-2025-53964

CVE Alert: CVE-2025-0886

US-CERT Vulnerability Summary for the Week of September 8, 2025

HackerOne Bug Bounty Disclosure: stack-buffer-overflow-in-curl-cookie-parsing-leads-to-rce-batuhanilgarr

BugCrowd Bug Bounty Disclosure: P3 – Publicly Editable Google Docs Linked from NASA SnowEx PPT –

BugCrowd Bug Bounty Disclosure: P3 – Details of the collaboration between NASA and Inmarsat Government and the type of contract –

Apple Products Multiple Vulnerabilities

You may have missed