Vulnerabilities

CVE Alert: CVE-2025-31177

May 8, 2025

Vulnerability Summary: CVE-2025-31177 gnuplot is affected by a heap buffer overflow at function utf8_copy_one. Affected Endpoints: No affected endpoints listed....

CVE Alert: CVE-2025-4043

May 8, 2025

Vulnerability Summary: CVE-2025-4043 An admin user can gain unauthorized write access to the /etc/rc.local file on the device, which is...

CVE Alert: CVE-2023-7303

May 8, 2025

Vulnerability Summary: CVE-2023-7303 A vulnerability, which was classified as problematic, was found in q2apro q2apro-on-site-notifications up to 1.4.6. This affects...

CVE Alert: CVE-2025-43878

May 8, 2025

Vulnerability Summary: CVE-2025-43878 When running in Appliance mode, an authenticated attacker assigned the Administrator or Resource Administrator role may be...

CVE Alert: CVE-2025-41433

May 8, 2025

Vulnerability Summary: CVE-2025-41433 When a Session Initiation Protocol (SIP) message routing framework (MRF) application layer gateway (ALG) profile is configured...

CVE Alert: CVE-2025-35995

May 8, 2025

Vulnerability Summary: CVE-2025-35995 When a BIG-IP PEM system is licensed with URL categorization, and the URL categorization policy or an...

CVE Alert: CVE-2025-36525

May 8, 2025

Vulnerability Summary: CVE-2025-36525 When a BIG-IP APM virtual server is configured to use a PingAccess profile, undisclosed requests can cause...

CVE Alert: CVE-2025-36504

May 8, 2025

Vulnerability Summary: CVE-2025-36504 When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an...

CVE Alert: CVE-2025-41399

May 8, 2025

Vulnerability Summary: CVE-2025-41399 When a Stream Control Transmission Protocol (SCTP) profile is configured on a virtual server, undisclosed requests can...

CVE Alert: CVE-2025-46821

May 8, 2025

Vulnerability Summary: CVE-2025-46821 Envoy is a cloud-native edge/middle/service proxy. Prior to versions 1.34.1, 1.33.3, 1.32.6, and 1.31.8, Envoy's URI template...

CVE Alert: CVE-2025-36557

May 8, 2025

Vulnerability Summary: CVE-2025-36557 When an HTTP profile with the Enforce RFC Compliance option is configured on a virtual server, undisclosed...

CVE Alert: CVE-2025-41431

May 8, 2025

Vulnerability Summary: CVE-2025-41431 When connection mirroring is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel...

CVE Alert: CVE-2025-41414

May 8, 2025

Vulnerability Summary: CVE-2025-41414 When HTTP/2 client and server profile is configured on a virtual server, undisclosed requests can cause TMM...

CVE Alert: CVE-2025-0936

May 8, 2025

Vulnerability Summary: CVE-2025-0936 On affected platforms running Arista EOS with a gNMI transport enabled, running the gNOI File TransferToRemote RPC...

CVE Alert: CVE-2025-46727

May 8, 2025

Vulnerability Summary: CVE-2025-46727 Rack is a modular Ruby web server interface. Prior to versions 2.2.14, 3.0.16, and 3.1.14, `Rack::QueryParser` parses...

CVE Alert: CVE-2025-46265

May 8, 2025

Vulnerability Summary: CVE-2025-46265 On F5OS, an improper authorization vulnerability exists where remotely authenticated users (LDAP, RADIUS, TACACS+) may be authorized...

CVE Alert: CVE-2025-35939

May 8, 2025

Vulnerability Summary: CVE-2025-35939 Craft CMS stores arbitrary content provided by unauthenticated users in session files. This content could be accessed...

CVE Alert: CVE-2025-32441

May 8, 2025

Vulnerability Summary: CVE-2025-32441 Rack is a modular Ruby web server interface. Prior to version 2.2.14, when using the `Rack::Session::Pool` middleware,...

CVE Alert: CVE-2025-0984

May 8, 2025

Vulnerability Summary: CVE-2025-0984 Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Input During Web Page Generation (XSS or...

CVE Alert: CVE-2025-4345

May 8, 2025

Vulnerability Summary: CVE-2025-4345 A vulnerability was found in D-Link DIR-600L up to 2.07B01 and classified as critical. This issue affects...

CVE Alert: CVE-2025-4347

May 8, 2025

Vulnerability Summary: CVE-2025-4347 A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been declared as critical. Affected...

CVE Alert: CVE-2025-4348

May 8, 2025

Vulnerability Summary: CVE-2025-4348 A vulnerability was found in D-Link DIR-600L up to 2.07B01. It has been rated as critical. Affected...

CVE Alert: CVE-2025-4344

May 8, 2025

Vulnerability Summary: CVE-2025-4344 A vulnerability, which was classified as critical, was found in D-Link DIR-600L up to 2.07B01. This affects...

CVE Alert: CVE-2025-4355

May 8, 2025

Vulnerability Summary: CVE-2025-4355 A vulnerability was found in Tenda DAP-1520 1.10B04_BETA02. It has been classified as critical. This affects the...

Vulnerabilities

CVE Alert: CVE-2025-31177

CVE Alert: CVE-2025-4043

CVE Alert: CVE-2023-7303

CVE Alert: CVE-2025-43878

CVE Alert: CVE-2025-41433

CVE Alert: CVE-2025-35995

CVE Alert: CVE-2025-36525

CVE Alert: CVE-2025-36504

CVE Alert: CVE-2025-41399

CVE Alert: CVE-2025-46821

CVE Alert: CVE-2025-36557

CVE Alert: CVE-2025-41431

CVE Alert: CVE-2025-41414

CVE Alert: CVE-2025-0936

CVE Alert: CVE-2025-46727

CVE Alert: CVE-2025-46265

CVE Alert: CVE-2025-35939

CVE Alert: CVE-2025-32441

CVE Alert: CVE-2025-0984

CVE Alert: CVE-2025-4345

CVE Alert: CVE-2025-4347

CVE Alert: CVE-2025-4348

CVE Alert: CVE-2025-4344

CVE Alert: CVE-2025-4355

[QILIN] – Ransomware Victim: WH Rogers Sheet Metal

CVE Alert: CVE-2025-7519

CVE Alert: CVE-2025-7606

CVE Alert: CVE-2025-7609

CVE Alert: CVE-2025-7608

You may have missed