CVE List - 2025 / December
Showing 301 - 400 of 3706 CVEs for December 2025 (Page 4 of 38)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-13636 | 2025-12-02 | Inappropriate implementation in Split View in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to perform UI spoofing via... |
| CVE-2025-13637 | 2025-12-02 | Inappropriate implementation in Downloads in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who convinced a user to engage in specific UI gestures to bypass download protections via a... |
| CVE-2025-13638 | 2025-12-02 | Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Low) |
| CVE-2025-13639 | 2025-12-02 | Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: Low) |
| CVE-2025-13640 | 2025-12-02 | Inappropriate implementation in Passwords in Google Chrome prior to 143.0.7499.41 allowed a local attacker to bypass authentication via physical access to the device. (Chromium security severity: Low) |
| CVE-2025-13720 | 2025-12-02 | Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.... |
| CVE-2025-13721 | 2025-12-02 | Race in v8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) |
| CVE-2025-13633 | 2025-12-02 | Use after free in Digital Credentials in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted... |
| CVE-2025-13542 | 2025-12-02 | DesignThemes LMS <= 1.0.4 - Unauthenticated Privilege Escalation |
| CVE-2025-13510 | 2025-12-02 | Iskra iHUB and iHUB Lite has a Missing Authentication for Critical Function vulnerabilitiy |
| CVE-2025-13658 | 2025-12-02 | Industrial Video & Control Longwatch has a Code Injection vulnerability |
| CVE-2025-64642 | 2025-12-02 | Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource |
| CVE-2025-64298 | 2025-12-02 | Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource |
| CVE-2025-61940 | 2025-12-02 | Mirion Medical EC2 Software NMIS BioDose Use of Client-Side Authentication |
| CVE-2025-64778 | 2025-12-02 | Mirion Medical EC2 Software NMIS BioDose Use of Hard-coded Credentials |
| CVE-2025-62575 | 2025-12-02 | Mirion Medical EC2 Software NMIS BioDose Incorrect Permission Assignment for Critical Resource |
| CVE-2025-66476 | 2025-12-02 | Vim for Windows Uncontrolled Search Path Element Remote Code Execution Vulnerability |
| CVE-2025-55181 | 2025-12-02 | Sending an HTTP request/response body with greater than 2^31 bytes triggers an infinite loop in proxygen::coro::HTTPQuicCoroSession which blocks the backing event loop and unconditionally appends data to a std::vector per-loop... |
| CVE-2025-65955 | 2025-12-02 | ImageMagick has a use-after-free/double-free risk in Options::fontFamily when clearing family |
| CVE-2025-50360 | 2025-12-03 | A heap buffer overflow in compiler.c and compiler.h in Pepper language 0.1.1commit 961a5d9988c5986d563310275adad3fd181b2bb7. Malicious execution of a pepper source file(.pr) could lead to arbitrary code execution or Denial of Service. |
| CVE-2025-50361 | 2025-12-03 | Buffer Overflow was found in SmallBASIC community SmallBASIC with SDL Before v12_28, and commit sha:298a1d495355959db36451e90a0ac74bcc5593fe in the function main.cpp, which can lead to potential information leakage and crash. |
| CVE-2025-53841 | 2025-12-03 | The GC-AGENTS-SERVICE running as part of Akamai´s Guardicore Platform Agent for Windows versions prior to v49.20.1, v50.15.0, v51.12.0, v52.2.0 is affected by a local privilege escalation vulnerability. The service will... |
| CVE-2025-53965 | 2025-12-03 | An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 2500, W920, W930, W1000, Modem 5123,... |
| CVE-2025-54326 | 2025-12-03 | An issue was discovered in Camera in Samsung Mobile Processor Exynos 1280 and 2200. Unnecessary registration of a hardware IP address in the Camera device driver can lead to a... |
| CVE-2025-55076 | 2025-12-03 | A local privilege escalation vulnerability exists in the InstallationHelper service included with Plugin Alliance Installation Manager v1.4.0 for macOS. The service accepts unauthenticated XPC connections and executes input via system(),... |
| CVE-2025-57198 | 2025-12-03 | AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the Machine.cgi endpoint. This vulnerability allows attackers to execute arbitrary commands via a crafted input. |
| CVE-2025-57199 | 2025-12-03 | AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the NetFailDetectD binary. This vulnerability allows attackers to execute arbitrary commands via a crafted input. |
| CVE-2025-57200 | 2025-12-03 | AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the test_mail function. This vulnerability allows attackers to execute arbitrary commands via a crafted input. |
| CVE-2025-57201 | 2025-12-03 | AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 was discovered to contain an authenticated command injection vulnerability in the SMB server function. This vulnerability allows attackers to execute arbitrary commands via a crafted... |
| CVE-2025-57202 | 2025-12-03 | A stored cross-site scripting (XSS) vulnerability in the PwdGrp.cgi endpoint of AVTECH SECURITY Corporation DGM1104 FullImg-1015-1004-1006-1003 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload... |
| CVE-2025-62686 | 2025-12-03 | A local privilege escalation vulnerability exists in the Plugin Alliance InstallationHelper service included with Plugin Alliance Installation Manager v1.4.0 on macOS. Due to the absence of a hardened runtime and... |
| CVE-2025-63401 | 2025-12-03 | Cross Site Scripting vulnerability in HCL Technologies Limited HCLTech DRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via missing directives |
| CVE-2025-63402 | 2025-12-03 | An issue in HCL Technologies Limited HCLTech GRAGON before v.7.6.0 allows a remote attacker to execute arbitrary code via APIs do not enforcing limits on the number or size of... |
| CVE-2025-64055 | 2025-12-03 | An issue was discovered in Fanvil x210 V2 2.12.20 allowing unauthenticated attackers on the local network to access administrative functions of the device (e.g. file upload, firmware update, reboot...) via... |
| CVE-2025-65267 | 2025-12-03 | In ERPNext v15.83.2 and Frappe Framework v15.86.0, improper validation of uploaded SVG avatar images allows attackers to embed malicious JavaScript. The payload executes when an administrator clicks the image link... |
| CVE-2025-65320 | 2025-12-03 | Abacre Restaurant Point of Sale (POS) up to 15.0.0.1656 are vulnerable to Cleartext Storage of Sensitive Information in Memory. The application leaves valid device-bound license keys in process memory during... |
| CVE-2025-65345 | 2025-12-03 | alexusmai laravel-file-manager 3.3.1 and below is vulnerable to Directory Traversal. The zip/archiving functionality allows an attacker to create archives containing files and directories outside the intended scope due to improper... |
| CVE-2025-65841 | 2025-12-03 | Aquarius Desktop 3.0.069 for macOS stores user authentication credentials in the local file ~/Library/Application Support/Aquarius/aquarius.settings using a weak obfuscation scheme. The password is "encrypted" through predictable byte-substitution that can be... |
| CVE-2025-65842 | 2025-12-03 | The Aquarius HelperTool (1.0.003) privileged XPC service on macOS contains multiple flaws that allow local privilege escalation. The service accepts XPC connections from any local process without validating the client's... |
| CVE-2025-65843 | 2025-12-03 | Aquarius Desktop 3.0.069 for macOS contains an insecure file handling vulnerability in its support data archive generation feature. The application follows symbolic links placed inside the ~/Library/Logs/Aquarius directory and treats... |
| CVE-2025-65868 | 2025-12-03 | XML external entity (XXE) injection in eyoucms v1.7.1 allows remote attackers to cause a denial of service via crafted body of a POST request. |
| CVE-2025-66431 | 2025-12-03 | WebPros Plesk before 18.0.73.5 and 18.0.74 before 18.0.74.2 on Linux allows remote authenticated users to execute arbitrary code as root via domain creation. The attacker needs "Create and manage sites"... |
| CVE-2025-13645 | 2025-12-03 | Modula 2.13.1 - 2.13.2 - Authenticated (Author+) Arbitrary File Deletion |
| CVE-2025-13448 | 2025-12-03 | CSSIgniter Shortcodes <= 2.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'element' Shortcode Attribute |
| CVE-2025-13646 | 2025-12-03 | Modula 2.13.1 - 2.13.2 - Authenticated (Author+) Arbitrary File Upload via Race Condition |
| CVE-2025-13495 | 2025-12-03 | FluentCart A New Era of eCommerce <= 1.3.1 - Authenticated (Administrator+) SQL Injection via 'groupKey' Parameter |
| CVE-2025-12585 | 2025-12-03 | MxChat – AI Chatbot for WordPress <= 2.5.5 - Unauthenticated Information Exposure |
| CVE-2025-10304 | 2025-12-03 | Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin <= 2.3.8 - Missing Authorization to Unauthenticated Backup Failure |
| CVE-2025-12954 | 2025-12-03 | Timetable and Event Schedule by MotoPress < 2.4.16 - Contributor+ Event Disclosure via IDOR |
| CVE-2025-13486 | 2025-12-03 | Advanced Custom Fields: Extended 0.9.0.5 - 0.9.1.1 - Unauthenticated Remote Code Execution in prepare_form |
| CVE-2025-13945 | 2025-12-03 | Improperly Controlled Sequential Memory Allocation in Wireshark |
| CVE-2025-13946 | 2025-12-03 | Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark |
| CVE-2025-29864 | 2025-12-03 | Protection Mechanism Failure vulnerability in ESTsoft ALZip on Windows allows SmartScreen bypass.This issue affects ALZip: from 12.01 before 12.29. |
| CVE-2025-12744 | 2025-12-03 | Abrt: command-injection in abrt leading to local privilege escalation |
| CVE-2025-13472 | 2025-12-03 | Missing authorization in BlazeMeter Jenkins Plugin |
| CVE-2025-13947 | 2025-12-03 | Webkit: webkitgtk: remote user-assisted information disclosure via file drag-and-drop |
| CVE-2025-39665 | 2025-12-03 | Livestatus Injection in dynmaps |
| CVE-2025-12887 | 2025-12-03 | Post SMTP – Complete SMTP Solution with Logs, Alerts, Backup SMTP & Mobile App <= 3.6.1 - Missing Authorization to Authenticated (Subscriber+) OAuth Token Update |
| CVE-2025-13342 | 2025-12-03 | Frontend Admin by DynamiApps <= 3.28.20 - Unauthenticated Arbitrary Options Update |
| CVE-2025-12358 | 2025-12-03 | ShopEngine <= 4.8.5 - Cross-Site Request Forgery to Wishlist Manipulation |
| CVE-2025-13109 | 2025-12-03 | HUSKY – Products Filter Professional for WooCommerce <= 1.3.7.2 - Authenticated (Subscriber+) Insecure Direct Object Reference via 'woof_add_query/woof_remove_query' |
| CVE-2025-13354 | 2025-12-03 | Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Taxonomy Term Manipulation |
| CVE-2025-13390 | 2025-12-03 | WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover |
| CVE-2025-13401 | 2025-12-03 | Autoptimize <= 3.1.13 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2025-13756 | 2025-12-03 | Fluent Booking – The Ultimate Appointments Scheduling, Events Booking, Events Calendar Solution <= 1.9.11 - Authenticated (Subscriber+) Missing Authorization to Calendar Import and Management |
| CVE-2025-13359 | 2025-12-03 | Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.1 - Authenticated (Contributor+) SQL Injection |
| CVE-2025-13948 | 2025-12-03 | opsre go-ldap-admin JWT docker-compose.yaml hard-coded key |
| CVE-2025-13949 | 2025-12-03 | ProudMuBai GoFilm FileController.go SingleUpload unrestricted upload |
| CVE-2025-55182 | 2025-12-03 | A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0 including the following packages: react-server-dom-parcel, react-server-dom-turbopack, and react-server-dom-webpack. The vulnerable code unsafely deserializes... |
| CVE-2025-7044 | 2025-12-03 | Privilege Escalation in MAAS via Websocket Request Manipulation |
| CVE-2025-13751 | 2025-12-03 | Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7_alpha1 through 2.7_rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing... |
| CVE-2024-32641 | 2025-12-03 | Masa CMS Vulnerable to Pre-Auth RCE via JSON API |
| CVE-2025-13492 | 2025-12-03 | HP Image Assistant - Potential Escalation of Privilege |
| CVE-2024-32642 | 2025-12-03 | Host header poisoning allows account takeover via password reset email |
| CVE-2024-32643 | 2025-12-03 | Masa CMS vulnerable to authentication bypass with /tag/ |
| CVE-2025-34319 | 2025-12-03 | TOTOLINK N300RT <= V2.1.8-B20201030.1539 Boa formWsc RCE |
| CVE-2025-20382 | 2025-12-03 | URL validation bypass through Views Dashboard in Splunk Enterprise |
| CVE-2025-20381 | 2025-12-03 | SPL commands allowlist controls bypass in Splunk MCP Server app through "run_splunk_query" MCP tool |
| CVE-2025-20385 | 2025-12-03 | Stored Cross-Site scripting (XSS) through Anchor Tag "href" in Navigation Bar Collections in Splunk Enterprise |
| CVE-2025-20386 | 2025-12-03 | Incorrect permission assignment on Splunk Enterprise for Windows during new installation or upgrade |
| CVE-2025-20384 | 2025-12-03 | Unauthenticated Log Injection in Splunk Enterprise |
| CVE-2025-20383 | 2025-12-03 | Improper access control through push notifications for reports and alerts in Splunk Secure Gateway app |
| CVE-2025-20387 | 2025-12-03 | Incorrect permissions assignment on Splunk Universal Forwarder for Windows during new installation or upgrade |
| CVE-2025-20389 | 2025-12-03 | Improper Input Validation in "label" column field in Splunk Secure Gateway App |
| CVE-2025-20388 | 2025-12-03 | Blind Server Side Request Forgery (SSRF) through Distributed Search Peers in Splunk Enterprise |
| CVE-2025-54065 | 2025-12-03 | GZDoom engine allows arbitrary code execution via ZScript actor states |
| CVE-2025-64443 | 2025-12-03 | DNS Rebinding vulnerability present when running MCP Gateway in sse or streaming mode |
| CVE-2025-64527 | 2025-12-03 | Envoy crashes when JWT authentication is configured with the remote JWKS fetching |
| CVE-2025-64763 | 2025-12-03 | Envoy forwards early CONNECT data in TCP proxy mode |
| CVE-2025-33201 | 2025-12-03 | NVIDIA Triton Inference Server contains a vulnerability where an attacker may cause an improper check for unusual or exceptional conditions issue by sending extra large payloads. A successful exploit of... |
| CVE-2025-33211 | 2025-12-03 | NVIDIA Triton Server for Linux contains a vulnerability where an attacker may cause an improper validation of specified quantity in input. A successful exploit of this vulnerability may lead to... |
| CVE-2025-66032 | 2025-12-03 | Claude Code Command Validation Bypass Allows Arbitrary Code Execution |
| CVE-2025-33208 | 2025-12-03 | NVIDIA TAO contains a vulnerability where an attacker may cause a resource to be loaded via an uncontrolled search path. A successful exploit of this vulnerability may lead to escalation... |
| CVE-2025-66208 | 2025-12-03 | Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy |
| CVE-2025-66220 | 2025-12-03 | Envoy’s TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte |
| CVE-2025-66222 | 2025-12-03 | DeepChat Cross-Site Scripting(XSS) escalate to Remote Code Execution(RCE) |
| CVE-2024-3884 | 2025-12-03 | Undertow: outofmemory when parsing form data encoding with application/x-www-form-urlencoded |
| CVE-2025-12084 | 2025-12-03 | Quadratic complexity in node ID cache clearing |
| CVE-2025-12819 | 2025-12-03 | Untrusted search path in auth_query connection in PgBouncer |
| CVE-2025-13992 | 2025-12-03 | Side-channel information leakage in Navigation and Loading in Google Chrome prior to 139.0.7258.66 allowed a remote attacker to bypass site isolation via a crafted HTML page. (Chromium security severity: Medium) |