Vulnerabilities

CVE Alert: CVE-2025-3947

July 11, 2025

Vulnerability Summary: CVE-2025-3947 The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access (CDA). An...

CVE Alert: CVE-2025-2522

July 11, 2025

Vulnerability Summary: CVE-2025-2522 The Honeywell Experion PKS and OneWireless WDM contains Sensitive Information in Resource vulnerability in the component Control...

CVE Alert: CVE-2025-2523

July 11, 2025

Vulnerability Summary: CVE-2025-2523 The Honeywell Experion PKS and OneWireless WDM contains an Integer Underflow vulnerability in the component Control Data...

CVE Alert: CVE-2025-2521

July 11, 2025

Vulnerability Summary: CVE-2025-2521 The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data...

CVE Alert: CVE-2025-7412

July 11, 2025

Vulnerability Summary: CVE-2025-7412 A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by...

CVE Alert: CVE-2025-3946

July 11, 2025

Vulnerability Summary: CVE-2025-3946 The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component...

CVE Alert: CVE-2025-7414

July 11, 2025

Vulnerability Summary: CVE-2025-7414 A vulnerability classified as critical was found in Tenda O3V2 1.0.0.12(3880). This vulnerability affects the function fromNetToolGet...

CVE Alert: CVE-2025-7416

July 11, 2025

Vulnerability Summary: CVE-2025-7416 A vulnerability, which was classified as critical, was found in Tenda O3V2 1.0.0.12(3880). Affected is the function...

CVE Alert: CVE-2025-53637

July 11, 2025

Vulnerability Summary: CVE-2025-53637 Meshtastic is an open source mesh networking solution. The main_matrix.yml GitHub Action is triggered by the pull_request_target...

CVE Alert: CVE-2025-7415

July 11, 2025

Vulnerability Summary: CVE-2025-7415 A vulnerability, which was classified as critical, has been found in Tenda O3V2 1.0.0.12(3880). This issue affects...

CVE Alert: CVE-2025-7419

July 11, 2025

Vulnerability Summary: CVE-2025-7419 A vulnerability was found in Tenda O3V2 1.0.0.12(3880). It has been classified as critical. This affects the...

CVE Alert: CVE-2025-7417

July 11, 2025

Vulnerability Summary: CVE-2025-7417 A vulnerability has been found in Tenda O3V2 1.0.0.12(3880) and classified as critical. Affected by this vulnerability...

CVE Alert: CVE-2025-7418

July 11, 2025

Vulnerability Summary: CVE-2025-7418 A vulnerability was found in Tenda O3V2 1.0.0.12(3880) and classified as critical. Affected by this issue is...

CVE Alert: CVE-2025-24798

July 11, 2025

Vulnerability Summary: CVE-2025-24798 Meshtastic is an open source mesh networking solution. From 1.2.1 until 2.6.2, a packet sent to the...

CVE Alert: CVE-2025-1727

July 11, 2025

Vulnerability Summary: CVE-2025-1727 The protocol used for remote linking over RF for End-of-Train and Head-of-Train (also known as a FRED)...

CVE Alert: CVE-2025-1112

July 11, 2025

Vulnerability Summary: CVE-2025-1112 IBM OpenPages with Watson 8.3 and 9.0 could allow an authenticated user to obtain sensitive information that...

CVE Alert: CVE-2025-7204

July 11, 2025

Vulnerability Summary: CVE-2025-7204 In ConnectWise PSA versions older than 2025.9, a vulnerability exists where authenticated users could gain access to...

CVE Alert: CVE-2025-52364

July 11, 2025

Vulnerability Summary: CVE-2025-52364 Insecure Permissions vulnerability in Tenda CP3 Pro Firmware V22.5.4.93 allows the telnet service (telnetd) by default at...

CVE Alert: CVE-2025-2670

July 11, 2025

Vulnerability Summary: CVE-2025-2670 IBM OpenPages 9.0 is vulnerable to information disclosure of sensitive information due to a weaker than expected...

Vulnerability Summary: CVE-2025-53546 Folo organizes feeds content into one timeline. Using pull_request_target on .github/workflows/auto-fix-lint-format-commit.yml can be exploited by attackers, since...

CVE Alert: CVE-2025-44526

July 11, 2025

Vulnerability Summary: CVE-2025-44526 Realtek RTL8762EKF-EVB RTL8762E SDK V1.4.0 was discovered to utilize insufficient permission checks on critical fields within Bluetooth...

CVE Alert: CVE-2025-53654

July 11, 2025

Vulnerability Summary: CVE-2025-53654 Jenkins Statistics Gatherer Plugin 2.0.3 and earlier stores the AWS Secret Key unencrypted in its global configuration...

CVE Alert: CVE-2025-44177

July 11, 2025

Vulnerability Summary: CVE-2025-44177 A directory traversal vulnerability was discovered in White Star Software Protop version 4.4.2-2024-11-27, specifically in the /pt3upd/...

CVE Alert: CVE-2025-53653

July 11, 2025

Vulnerability Summary: CVE-2025-53653 Jenkins Aqua Security Scanner Plugin 3.2.8 and earlier stores Scanner Tokens for Aqua API unencrypted in job...

Vulnerabilities

CVE Alert: CVE-2025-3947

CVE Alert: CVE-2025-2522

CVE Alert: CVE-2025-2523

CVE Alert: CVE-2025-2521

CVE Alert: CVE-2025-7412

CVE Alert: CVE-2025-3946

CVE Alert: CVE-2025-7414

CVE Alert: CVE-2025-7416

CVE Alert: CVE-2025-53637

CVE Alert: CVE-2025-7415

CVE Alert: CVE-2025-7419

CVE Alert: CVE-2025-7417

CVE Alert: CVE-2025-7418

CVE Alert: CVE-2025-24798

CVE Alert: CVE-2025-1727

CVE Alert: CVE-2025-1112

CVE Alert: CVE-2025-7204

CVE Alert: CVE-2025-52364

CVE Alert: CVE-2025-2670

CVE Alert: CVE-2025-53546

CVE Alert: CVE-2025-44526

CVE Alert: CVE-2025-53654

CVE Alert: CVE-2025-44177

CVE Alert: CVE-2025-53653

CVE Alert: CVE-2025-10058 – smackcoders – WP Import – Ultimate CSV XML Importer for WordPress

CVE Alert: CVE-2025-10057 – smackcoders – WP Import – Ultimate CSV XML Importer for WordPress

CVE Alert: CVE-2025-10143 – catchthemes – Catch Dark Mode

CVE Alert: CVE-2025-10589 – N-Partner – N-Reporter

Cobalt Strike Beacon Detected – 38[.]173[.]19[.]175:8731

You may have missed