-Infinity
0

NVIDIA NvContainerNVIDIA NvContainer service for Windows contains a vulnerability in its usage of OpenSSL, where an at…

2.5
First published (updated )

ArcSight Enterprise Security Manager ExpressReference to Expired Domain Vulnerability in OpenText™ ArcSight Enterprise Security Manager

2.3
First published (updated )

CVE-2025-3840Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

2.1
EPSS
0.02%
First published (updated )

Soffid ConsoleIn Soffid Console 3.6.31 before 3.6.32, authorization to use the pam service is mishandled.

2.5
EPSS
0.01%
First published (updated )

Sonos APISonos api.sonos.com through 2025-04-21, when the /login/v3/oauth endpoint is used, accepts a redirec…

3.4
EPSS
0.03%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

IBM Maximo Asset ManagementIBM Maximo Asset Management server-side request forgery

3.8
First published (updated )

ConvertigoTwsCachedXPathAPI in Convertigo through 8.3.4 does not restrict the use of commons-jxpath APIs.

2.2
EPSS
0.01%
First published (updated )

libheifNull Pointer Dereference

2.9
EPSS
0.01%
First published (updated )

libheifNull Pointer Dereference

2.9
EPSS
0.01%
First published (updated )

LibrawIn LibRaw before 0.21.4, tag 0x412 processing in phase_one_correct in decoders/load_mfbacks.cpp does…

2.9
EPSS
0.01%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

LibrawIn LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp allows out-of-buffer access …

2.9
EPSS
0.01%
First published (updated )

LibrawIn LibRaw before 0.21.4, phase_one_correct in decoders/load_mfbacks.cpp has out-of-bounds reads for …

2.9
EPSS
0.01%
First published (updated )

LibrawIn LibRaw before 0.21.4, metadata/tiff.cpp has an out-of-bounds read in the Fujifilm 0xf00c tag pars…

2.9
EPSS
0.01%
First published (updated )

go/github.com/songquanpeng/one-apiXSS

2.4
First published (updated )

7-Zip7-Zip through 24.09 does not report an error for certain invalid xz files, involving stream flags an…

2.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

7-Zip7-Zip through 24.09 does not report an error for certain invalid xz files, involving block flags and…

2.5
First published (updated )

cJSONcJSON 1.7.15 might allow a denial of service via a crafted JSON document such as {"a": true, "b": [ …

2.9
First published (updated )

mjsonmystrtod in mjson 1.2.7 requires more than a billion iterations during processes of certain digit st…

2.9
First published (updated )

Macro-video Technologies V380E6_C1 IP cameraAn issue in Macro-video Technologies Co.,Ltd V380E6_C1 IP camera (Hw_HsAKPIQp_WF_XHR) 1020302 allows…

2.6
First published (updated )

Macro-video Technologies V380 ProAn issue in Macro-video Technologies Co.,Ltd V380 Pro android application 2.1.44 and V380 Pro androi…

3.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

HCL DRYiCE MyXalyticsHCL MyXalytics is affected by a failure to restrict URL access vulnerability

2.5
First published (updated )

HCL DRYiCE MyXalyticsHCL MyXalytics is affected by SSL∕TLS Protocol affected with BREACH & LUCKY13 vulnerabilities

2.6
First published (updated )

Linux Kernelcan: etas_es58x: es58x_rx_err_msg(): fix memory leak in error path

3.3
First published (updated )

Dell EMC Elastic Cloud StorageDell ECS version 3.8.1.4 and prior contain an Improper Certificate Validation vulnerability. An unau…

3.1
First published (updated )

Ultimate DashboardUltimate Dashboard < 3.8.6 - Admin+ Stored XSS

3.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Ultimate DashboardUltimate Dashboard < 3.8.6 - Admin+ Stored XSS

3.5
First published (updated )

Ultimate DashboardUltimate Dashboard < 3.8.6 - Admin+ Stored XSS

3.5
First published (updated )

Subscribe2 Form, Email Subscribers & NewslettersEmail Subscribers < 5.7.52 - Admin+ Stored XSS

3.5
First published (updated )

VisiCutVisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated b…

3.3
EPSS
0.01%
First published (updated )

libxml2In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a …

2.9
EPSS
0.02%
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203