CVE List - 2025 / September
Showing 3601 - 3700 of 4322 CVEs for September 2025 (Page 37 of 44)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2025-57353 | 2025-09-24 | The Runtime components of messageformat package for Node.js before 3.0.2 contain a prototype pollution vulnerability. Due to insufficient validation of nested message keys during the processing of message data, an... |
| CVE-2025-57354 | 2025-09-24 | A vulnerability exists in the 'counterpart' library for Node.js and the browser due to insufficient sanitization of user-controlled input in translation key processing. The affected versions prior to 0.18.6 allow... |
| CVE-2025-59305 | 2025-09-24 | Improper authorization in the background migration endpoints of Langfuse 3.1 before d67b317 allows any authenticated user to invoke migration control functions. This can lead to data corruption or denial of... |
| CVE-2025-60020 | 2025-09-24 | nncp before 8.12.0 allows path traversal (for reading or writing) during freqing and file saving via a crafted path in packet data. |
| CVE-2025-43779 | 2025-09-24 | A reflected cross-site scripting (XSS) vulnerability in the Liferay Portal 7.4.0 through 7.4.3.112, and Liferay DXP 2024.Q1.1 through 2024.Q1.18 and 7.4 GA through update 92 allows a remote authenticated attacker... |
| CVE-2025-43819 | 2025-09-24 | A Insufficient Session Expiration vulnerability in the Liferay Portal 7.4.3.121 through 7.3.3.131, and Liferay DXP 2024.Q4.0 through 2024.Q4.3, 2024.Q3.1 through 2024.Q3.13, 2024.Q2.0 through 2024.Q2.13, and 2024.Q1.1 through 2024.Q1.12 is allow... |
| CVE-2025-58317 | 2025-09-24 | File Parsing Memory Corruption in CNCSoft-G2 |
| CVE-2025-58319 | 2025-09-24 | File Parsing Memory Corruption in CNCSoft-G2 |
| CVE-2025-48459 | 2025-09-24 | Apache IoTDB: Deserialization of untrusted Data |
| CVE-2025-48392 | 2025-09-24 | Apache IoTDB: DoS Vulnerability |
| CVE-2025-9031 | 2025-09-24 | Timing-Based Username Enumeration in DivvyDrive Information Technologies' DivvyDrive Web |
| CVE-2025-41715 | 2025-09-24 | Missing Authentication for Database Access in Web Application |
| CVE-2025-41716 | 2025-09-24 | Unauthenticated User Enumeration via Missing Authentication |
| CVE-2025-58457 | 2025-09-24 | Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands |
| CVE-2024-58241 | 2025-09-24 | Bluetooth: hci_core: Disable works on hci_unregister_dev |
| CVE-2025-39889 | 2025-09-24 | Bluetooth: l2cap: Check encryption key size on incoming connection |
| CVE-2025-39890 | 2025-09-24 | wifi: ath12k: fix memory leak in ath12k_service_ready_ext_event |
| CVE-2025-9054 | 2025-09-24 | MultiLoca - WooCommerce Multi Locations Inventory Management <= 4.2.8 - Missing Authorization to Unauthenticated Arbitrary Options Update via 'wcmlim_settings_ajax_handler' |
| CVE-2025-9353 | 2025-09-24 | Themify Builder <= 7.6.9 - Authenticated (Contributor+) Stored Cross-Site Scripting |
| CVE-2025-10906 | 2025-09-24 | Magnetism Studios Endurance NSXPC com.MagnetismStudios.endurance.helper loadModuleNamed:WithReply missing authentication |
| CVE-2025-23248 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A... |
| CVE-2025-23255 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary where a user may cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A... |
| CVE-2025-23271 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A... |
| CVE-2025-23272 | 2025-09-24 | NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead... |
| CVE-2025-23273 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local authenticated user may cause a divide by zero error by submitting a specially crafted JPEG file.... |
| CVE-2025-23274 | 2025-09-24 | NVIDIA nvJPEG contains a vulnerability in jpeg encoding where a user may cause an out-of-bounds read by providing a maliciously crafted input image with dimensions that cause integer overflows in... |
| CVE-2025-23275 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local authenticated user may cause a GPU out-of-bounds write by providing certain image dimensions. A successful exploit... |
| CVE-2025-23308 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm where an attacker may cause a heap-based buffer overflow by getting the user to run nvdisasm on a malicious... |
| CVE-2025-23338 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm where a user may cause an out-of-bounds write by running nvdisasm on a malicious ELF file. A successful exploit... |
| CVE-2025-23339 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may cause a stack-based buffer overflow by getting the user to run cuobjdump on a malicious... |
| CVE-2025-23340 | 2025-09-24 | NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A... |
| CVE-2025-23346 | 2025-09-24 | NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a NULL pointer dereference. A successful exploit of this vulnerability may lead to a limited denial... |
| CVE-2025-23348 | 2025-09-24 | NVIDIA Megatron-LM for all platforms contains a vulnerability in the pretrain_gpt script, where malicious data created by an attacker may cause a code injection issue. A successful exploit of this... |
| CVE-2025-23349 | 2025-09-24 | NVIDIA Megatron-LM for all platforms contains a vulnerability in the tasks/orqa/unsupervised/nq.py component, where an attacker may cause a code injection. A successful exploit of this vulnerability may lead to code... |
| CVE-2025-23353 | 2025-09-24 | NVIDIA Megatron-LM for all platforms contains a vulnerability in the msdp preprocessing script where malicious data created by an attacker may cause an injection. A successful exploit of this vulnerability... |
| CVE-2025-23354 | 2025-09-24 | NVIDIA Megatron-LM for all platforms contains a vulnerability in the ensemble_classifer script where malicious data created by an attacker may cause an injection. A successful exploit of this vulnerability may... |
| CVE-2025-48868 | 2025-09-24 | Horilla vulnerable to authenticated RCE via eval() in project_bulk_archive |
| CVE-2025-8869 | 2025-09-24 | Fallback tar extraction in pip doesn't check symbolic links point to extraction directory |
| CVE-2025-21476 | 2025-09-24 | Buffer Copy Without Checking Size of Input in Computer Vision |
| CVE-2025-21481 | 2025-09-24 | Buffer Copy Without Checking Size of Input in HLOS |
| CVE-2025-21482 | 2025-09-24 | Cryptographic Issues in Core |
| CVE-2025-21483 | 2025-09-24 | Improper Restriction of Operations within the Bounds of a Memory Buffer in Data Network Stack & Connectivity |
| CVE-2025-21484 | 2025-09-24 | Buffer Over-read in Data Network Stack & Connectivity |
| CVE-2025-21487 | 2025-09-24 | Buffer Over-read in Data Network Stack & Connectivity |
| CVE-2025-21488 | 2025-09-24 | Buffer Over-read in Data Network Stack & Connectivity |
| CVE-2025-27030 | 2025-09-24 | Buffer Over-read in Audio |
| CVE-2025-27032 | 2025-09-24 | Improper Access Control Applied to Mirrored or Aliased Memory Regions in Hypervisor |
| CVE-2025-27033 | 2025-09-24 | Buffer Over-read in Video |
| CVE-2025-27034 | 2025-09-24 | Improper Validation of Array Index in Multi-Mode Call Processor |
| CVE-2025-27036 | 2025-09-24 | Buffer Over-read in Video |
| CVE-2025-27037 | 2025-09-24 | Use After Free in Camera Driver |
| CVE-2025-27077 | 2025-09-24 | Use After Free in Automotive Software platform based on QNX |
| CVE-2025-47314 | 2025-09-24 | Improper Input Validation in Automotive Software platform based on QNX |
| CVE-2025-47315 | 2025-09-24 | Use After Free in Automotive Software platform based on QNX |
| CVE-2025-47316 | 2025-09-24 | Double Free in Video |
| CVE-2025-47317 | 2025-09-24 | Buffer Over-read in BT Controller |
| CVE-2025-47318 | 2025-09-24 | Buffer Over-read in BT Controller |
| CVE-2025-47326 | 2025-09-24 | Buffer Over-read in WLAN HAL |
| CVE-2025-47327 | 2025-09-24 | Use After Free in Camera |
| CVE-2025-47328 | 2025-09-24 | Buffer Over-read in WLAN HAL |
| CVE-2025-47329 | 2025-09-24 | Release of Invalid Pointer or Reference in Android Core |
| CVE-2025-10360 | 2025-09-24 | Insufficiently Protected Credentials in Puppet Enterprise 2025.4 and 2025.5 |
| CVE-2025-10585 | 2025-09-24 | Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
| CVE-2025-10500 | 2025-09-24 | Use after free in Dawn in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
| CVE-2025-10501 | 2025-09-24 | Use after free in WebRTC in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
| CVE-2025-10502 | 2025-09-24 | Heap buffer overflow in ANGLE in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via malicious network traffic. (Chromium security severity: High) |
| CVE-2025-10890 | 2025-09-24 | Side-channel information leakage in V8 in Google Chrome prior to 140.0.7339.207 allowed a remote attacker to leak cross-origin data via a crafted HTML page. (Chromium security severity: High) |
| CVE-2025-10891 | 2025-09-24 | Integer overflow in V8 in Google Chrome prior to 140.0.7339.207 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
| CVE-2025-10892 | 2025-09-24 | Integer overflow in V8 in Google Chrome prior to 140.0.7339.207 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
| CVE-2025-10909 | 2025-09-24 | Mangati NovoSGA SVG File admin cross site scripting |
| CVE-2025-20364 | 2025-09-24 | A vulnerability in the Device Analytics action frame processing of Cisco Wireless Access Point (AP) Software could allow an unauthenticated, adjacent attacker to inject wireless 802.11 action frames with arbitrary... |
| CVE-2025-20365 | 2025-09-24 | A vulnerability in the IPv6 Router Advertisement (RA) packet processing of Cisco Access Point Software could allow an unauthenticated, adjacent attacker to modify the IPv6 gateway on an affected device.... |
| CVE-2025-20339 | 2025-09-24 | Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability |
| CVE-2025-20334 | 2025-09-24 | A vulnerability in the HTTP API subsystem of Cisco IOS XE Software could allow a remote attacker to inject commands that will execute with root privileges into the underlying operating... |
| CVE-2025-20315 | 2025-09-24 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, causing a denial... |
| CVE-2025-20160 | 2025-09-24 | A vulnerability in the implementation of the TACACS+ protocol in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to view sensitive data or bypass... |
| CVE-2025-20352 | 2025-09-24 | A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software and Cisco IOS XE Software could allow the following: An authenticated, remote attacker with low privileges... |
| CVE-2025-20312 | 2025-09-24 | A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on... |
| CVE-2025-20327 | 2025-09-24 | A vulnerability in the web UI of Cisco IOS Software could allow an authenticated, remote attacker with low privileges to cause a denial of service (DoS) condition on an affected... |
| CVE-2025-20311 | 2025-09-24 | A vulnerability in the handling of certain Ethernet frames in Cisco IOS XE Software for Catalyst 9000 Series Switches could allow an unauthenticated, adjacent attacker to cause an egress port... |
| CVE-2025-20313 | 2025-09-24 | Multiple vulnerabilities in Cisco IOS XE Software of could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to the device to execute persistent... |
| CVE-2025-20149 | 2025-09-24 | A vulnerability in the CLI of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, local attacker to cause an affected device to reload unexpectedly, resulting in... |
| CVE-2025-20240 | 2025-09-24 | A vulnerability in the Web Authentication feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting attack (XSS) on an affected device.... |
| CVE-2025-20338 | 2025-09-24 | A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with administrative privileges to execute arbitrary commands as root on the underlying operating system... |
| CVE-2025-20293 | 2025-09-24 | A vulnerability in the Day One setup process of Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers for Cloud (9800-CL) could allow an unauthenticated, remote attacker to access... |
| CVE-2025-20316 | 2025-09-24 | A vulnerability in the access control list (ACL) programming of Cisco IOS XE Software for Cisco Catalyst 9500X and 9600X Series Switches could allow an unauthenticated, remote attacker to bypass... |
| CVE-2025-48869 | 2025-09-24 | Horilla Unauthorized Access to Candidate Resume Files Due to Broken Access Control |
| CVE-2025-48867 | 2025-09-24 | Horilla Stored Cross-Site Scripting (XSS) Vulnerability in Project and Task Modules |
| CVE-2025-59343 | 2025-09-24 | tar-fs has a symlink validation bypass if destination directory is predictable with a specific tarball |
| CVE-2025-52906 | 2025-09-24 | TOTOLINK X6000R Command Injection Vulnerability |
| CVE-2025-20314 | 2025-09-24 | A vulnerability in Cisco IOS XE Software could allow an authenticated, local attacker with level-15 privileges or an unauthenticated attacker with physical access to an affected device to execute persistent... |
| CVE-2025-52907 | 2025-09-24 | TOTOLINK X6000R Security Bypass Vulnerability |
| CVE-2025-59524 | 2025-09-24 | Horilla Stored XSS Vulnerability via File Upload in Reimbursement Panel |
| CVE-2025-59525 | 2025-09-24 | Horilla has Improper Input Sanitization Leading to XSS and Admin Account Takeover |
| CVE-2025-55178 | 2025-09-24 | Llama Stack prior to version v0.2.20 accepted unverified parameters in the resolve_ast_by_type function which could potentially allow for remote code execution. |
| CVE-2025-55322 | 2025-09-24 | OmniParser Remote Code Execution Vulnerability |
| CVE-2025-59251 | 2025-09-24 | Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability |
| CVE-2025-59828 | 2025-09-24 | Claude Code Vulnerable to Arbitrary Code Execution via Plugin Autoloading with Specific Yarn Versions |
| CVE-2025-59824 | 2025-09-24 | Omni Wireguard SideroLink potential escape |
| CVE-2025-59827 | 2025-09-24 | FlagForgeCTF is Missing Authorization in main-v2 |