CVE List - 2025 / May
Showing 1901 - 2000 of 3984 CVEs for May 2025 (Page 20 of 40)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-20084 | 2025-05-13 | Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-20095 | 2025-05-13 | Incorrect Default Permissions for some Intel(R) RealSense™ SDK software before... |
| CVE-2025-20100 | 2025-05-13 | Improper access control in the memory controller configurations for some... |
| CVE-2025-20101 | 2025-05-13 | Out-of-bounds read for some Intel(R) Graphics Drivers may allow an... |
| CVE-2025-20103 | 2025-05-13 | Insufficient resource pool in the core management mechanism for some... |
| CVE-2025-20104 | 2025-05-13 | Race condition in some Administrative Tools for some Intel(R) Network... |
| CVE-2025-20108 | 2025-05-13 | Uncontrolled search path element for some Intel(R) Network Adapter Driver... |
| CVE-2025-20611 | 2025-05-13 | Exposure of sensitive information to an unauthorized actor for some... |
| CVE-2025-20612 | 2025-05-13 | Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-20616 | 2025-05-13 | Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-20618 | 2025-05-13 | Stack-based buffer overflow for some Intel(R) PROSet/Wireless WiFi Software for... |
| CVE-2025-20623 | 2025-05-13 | Exposure of sensitive information caused by shared microarchitectural predictor state... |
| CVE-2025-20624 | 2025-05-13 | Exposure of sensitive information to an unauthorized actor for some... |
| CVE-2025-20629 | 2025-05-13 | Insecure inherited permissions in the NVM Update Utility for some... |
| CVE-2025-21081 | 2025-05-13 | Protection mechanism failure for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-21094 | 2025-05-13 | Improper input validation in the UEFI firmware DXE module for... |
| CVE-2025-21099 | 2025-05-13 | Uncontrolled search path for some Intel(R) Graphics software may allow... |
| CVE-2025-21100 | 2025-05-13 | Improper initialization in the UEFI firmware for the Intel(R) Server... |
| CVE-2025-22446 | 2025-05-13 | Inadequate encryption strength for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-22448 | 2025-05-13 | Insecure inherited permissions for some Intel(R) Simics(R) Package Manager software... |
| CVE-2025-22843 | 2025-05-13 | Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-22844 | 2025-05-13 | Improper access control for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-22848 | 2025-05-13 | Improper conditions check for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-22892 | 2025-05-13 | Uncontrolled resource consumption for some OpenVINO™ model server software maintained... |
| CVE-2025-22895 | 2025-05-13 | Exposure of sensitive information to an unauthorized actor for some... |
| CVE-2025-23233 | 2025-05-13 | Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R)... |
| CVE-2025-24308 | 2025-05-13 | Improper input validation in the UEFI firmware error handler for... |
| CVE-2025-24495 | 2025-05-13 | Incorrect initialization of resource in the branch prediction unit for... |
| CVE-2024-28036 | 2025-05-13 | Improper conditions check for some Intel(R) Arc™ GPU may allow... |
| CVE-2024-28954 | 2025-05-13 | Incorrect default permissions for some Intel(R) Graphics Driver installers may... |
| CVE-2024-28956 | 2025-05-13 | Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient... |
| CVE-2024-29222 | 2025-05-13 | Out-of-bounds write for some Intel(R) Graphics Driver software may allow... |
| CVE-2024-31073 | 2025-05-13 | Uncontrolled search path for some Intel(R) oneAPI Level Zero software... |
| CVE-2024-31150 | 2025-05-13 | Out-of-bounds read for some Intel(R) Graphics Driver software may allow... |
| CVE-2024-36292 | 2025-05-13 | Improper buffer restrictions for some Intel(R) Data Center GPU Flex... |
| CVE-2024-39758 | 2025-05-13 | Improper access control for some Intel(R) Arc™ & Iris(R) Xe... |
| CVE-2024-39833 | 2025-05-13 | Uncontrolled search path for some Intel(R) QAT software before version... |
| CVE-2024-43101 | 2025-05-13 | Improper access control for some Intel(R) Data Center GPU Flex... |
| CVE-2024-43420 | 2025-05-13 | Exposure of sensitive information caused by shared microarchitectural predictor state... |
| CVE-2024-45332 | 2025-05-13 | Exposure of sensitive information caused by shared microarchitectural predictor state... |
| CVE-2024-45333 | 2025-05-13 | Improper access control for some Intel(R) Data Center GPU Flex... |
| CVE-2024-45371 | 2025-05-13 | Improper access control for some Intel(R) Arc™ & Iris(R) Xe... |
| CVE-2024-46895 | 2025-05-13 | Uncontrolled search path for some Intel(R) Arc™ & Iris(R) Xe... |
| CVE-2024-47550 | 2025-05-13 | Incorrect default permissions for some Endurance Gaming Mode software installers... |
| CVE-2024-47795 | 2025-05-13 | Uncontrolled search path for some Intel(R) oneAPI DPC++/C++ Compiler software... |
| CVE-2024-47800 | 2025-05-13 | Uncontrolled search path for some Intel(R) Graphics Driver software may... |
| CVE-2024-48869 | 2025-05-13 | Improper restriction of software interfaces to hardware features for some... |
| CVE-2025-26646 | 2025-05-13 | .NET, Visual Studio, and Build Tools for Visual Studio Spoofing Vulnerability |
| CVE-2025-4574 | 2025-05-13 | Crossbeam-channel: crossbeam-channel vulnerable to double free on drop |
| CVE-2024-45516 | 2025-05-14 | An issue was discovered in Zimbra Collaboration (ZCS) 9.0.0 before... |
| CVE-2024-54779 | 2025-05-14 | Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding... |
| CVE-2024-54780 | 2025-05-14 | Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding... |
| CVE-2024-55569 | 2025-05-14 | An issue was discovered in Samsung Mobile Processor, Wearable Processor,... |
| CVE-2024-56427 | 2025-05-14 | An issue was discovered in Samsung Mobile Processor and Wearable... |
| CVE-2024-57096 | 2025-05-14 | An issue in wps office before v.19302 allows a local... |
| CVE-2024-57273 | 2025-05-14 | Netgate pfSense CE (prior to 2.8.0 beta release) and corresponding... |
| CVE-2024-58101 | 2025-05-14 | Samsung Galaxy Buds and Galaxy Buds 2 audio devices are... |
| CVE-2025-25370 | 2025-05-14 | An issue in realme GT 2 (RMX3311) running Android 14... |
| CVE-2025-26783 | 2025-05-14 | An issue was discovered in RRC in Samsung Mobile Processor,... |
| CVE-2025-26784 | 2025-05-14 | An issue was discovered in NAS in Samsung Mobile Processor,... |
| CVE-2025-26785 | 2025-05-14 | An issue was discovered in NAS in Samsung Mobile Processor,... |
| CVE-2025-27891 | 2025-05-14 | An issue was discovered in Samsung Mobile Processor, Wearable Processor,... |
| CVE-2025-29686 | 2025-05-14 | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01... |
| CVE-2025-29688 | 2025-05-14 | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01... |
| CVE-2025-29689 | 2025-05-14 | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01... |
| CVE-2025-29690 | 2025-05-14 | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01... |
| CVE-2025-29691 | 2025-05-14 | A cross-site scripting (XSS) vulnerability in OA System before v2025.01.01... |
| CVE-2025-32363 | 2025-05-14 | mediDOK before 2.5.18.43 allows remote attackers to achieve remote code... |
| CVE-2025-44024 | 2025-05-14 | Cross-Site Scripting (XSS) vulnerability was discovered in the Pichome system... |
| CVE-2025-44184 | 2025-05-14 | SourceCodester Best Employee Management System V1.0 is vulnerable to Cross... |
| CVE-2025-44186 | 2025-05-14 | SourceCodester Best Employee Management System 1.0 is vulnerable to Cross... |
| CVE-2025-44879 | 2025-05-14 | WS-WN572HP3 V230525 was discovered to contain a buffer overflow in... |
| CVE-2025-3623 | 2025-05-14 | Uncanny Automator <= 6.4.0.1 - Authenticated (Subscriber+) PHP Object Injection in automator_api_decode_message Function |
| CVE-2025-4520 | 2025-05-14 | Uncanny Automator <= 6.4.0.2 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Update |
| CVE-2024-52290 | 2025-05-14 | Stored XSS in Configuration Key Functionality |
| CVE-2024-13940 | 2025-05-14 | Ninja Forms Webhooks <= 3.0.7 - Authenticated (Admin+) Server-Side Request Forgery via Form Webhook |
| CVE-2024-8988 | 2025-05-14 | PeepSo Core: File Uploads <= 6.4.6.0 - Insecure Direct Object Reference to Unauthenticated Sensitive Information Exposure via file_download |
| CVE-2025-2875 | 2025-05-14 | CWE-610: Externally Controlled Reference to a Resource in Another Sphere... |
| CVE-2025-4430 | 2025-05-14 | Unauthorized file manipulation in EZD RP |
| CVE-2024-24780 | 2025-05-14 | Apache IoTDB: Remote Code Execution with untrusted URI of User-defined function |
| CVE-2025-26795 | 2025-05-14 | Apache IoTDB JDBC driver: Exposure of Sensitive Information in IoTDB JDBC driver |
| CVE-2025-26864 | 2025-05-14 | Apache IoTDB: Exposure of Sensitive Information in IoTDB OpenID Authentication |
| CVE-2025-47292 | 2025-05-14 | Cap Collectif vulnerable to insecure deserialization leading to remote code execution |
| CVE-2025-3833 | 2025-05-14 | SQL Injection |
| CVE-2025-3834 | 2025-05-14 | SQL Injection |
| CVE-2025-3769 | 2025-05-14 | Latepoint <= 5.1.92 - Unauthenticated Insecure Direct Object Reference |
| CVE-2025-47445 | 2025-05-14 | WordPress Eventin <= 4.0.26 - Arbitrary File Download Vulnerability |
| CVE-2025-3931 | 2025-05-14 | Yggdrasil: local privilege escalation in yggdrasil |
| CVE-2023-53146 | 2025-05-14 | media: dw2102: Fix null-ptr-deref in dw2102_i2c_transfer() |
| CVE-2025-47436 | 2025-05-14 | Apache ORC: Potential Heap Buffer Overflow during C++ LZO Decompression |
| CVE-2025-3600 | 2025-05-14 | Unsafe Reflection Vulnerability in Telerik UI for ASP.NET AJAX |
| CVE-2024-10864 | 2025-05-14 | SQL Injection vulnerability has been discovered in OpenText™ Advanced Authentication. |
| CVE-2024-10865 | 2025-05-14 | Reflected Cross-Site Scripting vulnerability in OpenText Advanced Authentication |
| CVE-2024-52601 | 2025-05-14 | iTop portal Insecure Direct Object Reference vulnerability |
| CVE-2024-56157 | 2025-05-14 | iTop vulnerable to Self XSS in CSV Import |
| CVE-2025-24021 | 2025-05-14 | iTop doesn't have mass assignment of fields in the portal form |
| CVE-2025-24022 | 2025-05-14 | iTop server vulnerable to portal code injection |
| CVE-2025-24026 | 2025-05-14 | iTop Inefficient Regular Expression Complexity vulnerability |
| CVE-2025-24785 | 2025-05-14 | iTop dashboard vulnerable to denial of service |
| CVE-2025-24969 | 2025-05-14 | iTop portal user can see any other contact's picture |