VULNMAP - Security Vulnerabilities

CVE List - 2025 / April

Showing 1301 - 1400 of 4038 CVEs for April 2025 (Page 14 of 41)

CVE ID Date Title
CVE-2025-22458 2025-04-08 DLL hijacking in Ivanti Endpoint Manager before version 2024 SU1...
CVE-2025-22459 2025-04-08 Improper certificate validation in Ivanti Endpoint Manager before version 2024...
CVE-2025-22461 2025-04-08 SQL injection in Ivanti Endpoint Manager before version 2024 SU1...
CVE-2025-22464 2025-04-08 An untrusted pointer dereference vulnerability in Ivanti Endpoint Manager before...
CVE-2025-22465 2025-04-08 Reflected XSS in Ivanti Endpoint Manager before version 2024 SU1...
CVE-2025-22466 2025-04-08 Reflected XSS in Ivanti Endpoint Manager before version 2024 SU1...
CVE-2025-32020 2025-04-08 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in crud-query-parser
CVE-2025-32024 2025-04-08 bep/imagemeta allows excessively large EXIF data structures
CVE-2025-1095 2025-04-08 IBM Personal Communications command execution
CVE-2025-32025 2025-04-08 bep/imagemeta allows a potentially large memory allocation in PNG and WebP parsing
CVE-2025-2285 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-2286 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-2287 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-2288 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-2293 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-32026 2025-04-08 Element Web could load a malicious instance of Element Call leaking media encryption keys
CVE-2025-2829 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-3285 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-3286 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-3287 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-3288 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-3289 2025-04-08 Local Code Execution Vulnerability in Arena®
CVE-2025-32017 2025-04-08 Umbraco has a Management API Vulnerability to Path Traversal With Authenticated Users
CVE-2025-32018 2025-04-08 Arbitrary file write from Cursor Agent through a prompt injection from malicious @Docs
CVE-2025-27078 2025-04-08 Authenticated Remote Command Execution caused by Insecure Function Usage in System Binary
CVE-2025-27079 2025-04-08 Arbitrary File Creation vulnerability allows for Authenticated Remote Code Execution in CLI Interface
CVE-2025-32028 2025-04-08 HAX CMS PHP allows Insecure File Upload to Lead to Remote Code Execution
CVE-2025-27441 2025-04-08 Zoom Workplace Apps - Cross Site Scripting
CVE-2025-27442 2025-04-08 Zoom Workplace Apps - Cross Site Scripting
CVE-2025-27443 2025-04-08 Zoom Workplace Apps for Windows - Insecure Default Variable Initialization
CVE-2025-30670 2025-04-08 Zoom Workplace Apps for Windows - Null Pointer
CVE-2025-30671 2025-04-08 Zoom Workplace Apps for Windows - Null Pointer
CVE-2025-27082 2025-04-08 Authenticated Remote Code Execution Vulnerabilities in AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface via Arbitrary File Write
CVE-2025-25227 2025-04-08 [20250402] - Joomla Core - MFA Authentication Bypass
CVE-2025-25226 2025-04-08 [20250401] - Joomla Framework - SQL injection vulnerability in quoteNameStr method of Database package
CVE-2025-27083 2025-04-08 Authenticated Command Injection Vulnerabilities in AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface
CVE-2025-27085 2025-04-08 Arbitrary File Download Vulnerabilities in Web-Based Management Interface of AOS-10 GW and AOS-8 Controller/Mobility Conductor
CVE-2025-27084 2025-04-08 Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal (CP) of an AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-based Management Interface
CVE-2024-52980 2025-04-08 Elasticsearch Uncontrolled Resource Consumption vulnerability
CVE-2024-52974 2025-04-08 An issue has been identified where a specially crafted request...
CVE-2024-48887 2025-04-08 A unverified password change vulnerability in Fortinet FortiSwitch GUI may...
CVE-2024-52981 2025-04-08 An issue was discovered in Elasticsearch, where a large recursion...
CVE-2025-32117 2025-04-08 WordPress Widgetize Pages Light plugin <= 3.0 - Reflected Cross Site Scripting (XSS) vulnerability
CVE-2025-32164 2025-04-08 WordPress m1.DownloadList plugin <= 0.21 - Sensitive Data Exposure vulnerability
CVE-2025-32211 2025-04-08 WordPress Broadstreet plugin <= 1.51.2 - Cross Site Scripting (XSS) vulnerability
CVE-2025-32279 2025-04-08 WordPress Live Forms plugin <= 4.8.5 - Broken Access Control vulnerability
CVE-2025-26663 2025-04-08 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVE-2025-26664 2025-04-08 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
CVE-2025-26665 2025-04-08 Windows upnphost.dll Elevation of Privilege Vulnerability
CVE-2025-26666 2025-04-08 Windows Media Remote Code Execution Vulnerability
CVE-2025-26669 2025-04-08 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
CVE-2025-26667 2025-04-08 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
CVE-2025-26668 2025-04-08 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2025-26681 2025-04-08 Win32k Elevation of Privilege Vulnerability
CVE-2025-26680 2025-04-08 Windows Standards-Based Storage Management Service Denial of Service Vulnerability
CVE-2025-26686 2025-04-08 Windows TCP/IP Remote Code Execution Vulnerability
CVE-2025-26687 2025-04-08 Win32k Elevation of Privilege Vulnerability
CVE-2025-26688 2025-04-08 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability
CVE-2025-27471 2025-04-08 Microsoft Streaming Service Denial of Service Vulnerability
CVE-2025-27470 2025-04-08 Windows Standards-Based Storage Management Service Denial of Service Vulnerability
CVE-2025-27473 2025-04-08 HTTP.sys Denial of Service Vulnerability
CVE-2025-27472 2025-04-08 Windows Mark of the Web Security Feature Bypass Vulnerability
CVE-2025-27474 2025-04-08 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
CVE-2025-27476 2025-04-08 Windows Digital Media Elevation of Privilege Vulnerability
CVE-2025-27475 2025-04-08 Windows Update Stack Elevation of Privilege Vulnerability
CVE-2025-27477 2025-04-08 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-27478 2025-04-08 Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2025-27479 2025-04-08 Kerberos Key Distribution Proxy Service Denial of Service Vulnerability
CVE-2025-27740 2025-04-08 Active Directory Certificate Services Elevation of Privilege Vulnerability
CVE-2025-27741 2025-04-08 NTFS Elevation of Privilege Vulnerability
CVE-2025-27744 2025-04-08 Microsoft Office Elevation of Privilege Vulnerability
CVE-2025-27742 2025-04-08 NTFS Information Disclosure Vulnerability
CVE-2025-27745 2025-04-08 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-27746 2025-04-08 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-27748 2025-04-08 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-27747 2025-04-08 Microsoft Word Remote Code Execution Vulnerability
CVE-2025-27749 2025-04-08 Microsoft Office Remote Code Execution Vulnerability
CVE-2025-27743 2025-04-08 Microsoft System Center Elevation of Privilege Vulnerability
CVE-2025-27751 2025-04-08 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-27752 2025-04-08 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-27750 2025-04-08 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-29791 2025-04-08 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-29793 2025-04-08 Microsoft SharePoint Remote Code Execution Vulnerability
CVE-2025-29792 2025-04-08 Microsoft Office Elevation of Privilege Vulnerability
CVE-2025-29794 2025-04-08 Microsoft SharePoint Remote Code Execution Vulnerability
CVE-2025-29821 2025-04-08 Microsoft Dynamics Business Central Information Disclosure Vulnerability
CVE-2025-29820 2025-04-08 Microsoft Word Remote Code Execution Vulnerability
CVE-2025-29822 2025-04-08 Microsoft OneNote Security Feature Bypass Vulnerability
CVE-2025-29823 2025-04-08 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-29824 2025-04-08 Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2025-24074 2025-04-08 Microsoft DWM Core Library Elevation of Privilege Vulnerability
CVE-2025-24073 2025-04-08 Microsoft DWM Core Library Elevation of Privilege Vulnerability
CVE-2025-21174 2025-04-08 Windows Standards-Based Storage Management Service Denial of Service Vulnerability
CVE-2025-21197 2025-04-08 Windows NTFS Information Disclosure Vulnerability
CVE-2025-21191 2025-04-08 Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2025-21205 2025-04-08 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21203 2025-04-08 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
CVE-2025-21204 2025-04-08 Windows Process Activation Elevation of Privilege Vulnerability
CVE-2025-21221 2025-04-08 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21222 2025-04-08 Windows Telephony Service Remote Code Execution Vulnerability