Deserialization of Untrusted Data Vulnerability In b1gMail (CVE-2025-1741)
CVE number = CVE-2025-1741 A vulnerability classified as problematic was found in b1gMail up to 7.4.1-pl1. Affected by this vulnerability
Read MoreSecurity Vulnerabilities
The latest Security Vulnerabilities
Cisco Nexus 3000 and 9000 Series Switches Health Monitoring Diagnostics Denial of Service Vulnerability (CVE-2025-20111)
A vulnerability in the health monitoring diagnostics of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an unauthenticated, adjacent attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition.
Read More
Delta Electronics CNCSoft-G2 DPAX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability (CVE-2025-22880)
CVE-2025-22880 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Delta Electronics CNCSoft-G2.
Read More
Microsoft Windows Installer Service Link Following Local Privilege Escalation Vulnerability (CVE-2025-21373)
CVE-2025-21373 – This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows.
Read MoreMicrosoft Edge UI Misrepresentation Remote Code Execution Vulnerability (CVE-2025-21404)
CVE-2025-21404 – This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Edge.
Read More
RedHat Out-of-bounds Write vulnerability (CVE-2025-0690)
CVE number = CVE-2025-0690 The read command is used to read the keyboard input from the user, while reads it
Read MoreCisco Secure Email Gateway Email Filter Bypass Vulnerability (CVE-2025-20153)
A vulnerability (CVE-2025-20153) in the email filtering mechanism of Cisco Secure Email Gateway could allow an unauthenticated, remote attacker to bypass the configured rules and allow emails that should have been denied to flow through an affected device.
Read MoreCisco BroadWorks Application Delivery Platform Cross-Site Scripting Vulnerability (CVE-2025-20211)
A vulnerability (CVE-2025-20211) in the web-based management interface of Cisco BroadWorks Application Delivery Platform could allow an unauthenticated, remote attacker to conduct a cross-site scripting attack against a user of the interface.
Read More
Qualys TRU Discovers Two New Vulnerabilities in OpenSSH (CVE-2025-26465 & CVE-2025-26466)
The Qualys Threat Research Unit (TRU) has discovered two vulnerabilities in OpenSSH. The first, identified as CVE-2025-26465, enables an active machine-in-the-middle attack on the OpenSSH client when the VerifyHostKeyDNS option is turned on. The second, CVE-2025-26466, impacts both the OpenSSH client and server, allowing a pre-authentication denial-of-service attack.
Read More
NVIDIA Container Toolkit mount_files Time-Of-Check Time-Of-Use Race Condition Privilege Escalation Vulnerability (CVE-2025-23359)
CVE-2025-23359 – This vulnerability allows remote attackers to escalate privileges on affected installations of NVIDIA Container Toolkit.
Read More