CVSS

Multi Flaws Found in HikCentral, Including a Bypass for Admin Access (CVE-2025-39247)

• Vulnerability Report

Multi Flaws Found in HikCentral, Including a Bypass for Admin Access (CVE-2025-39247)

Do Son August 29, 2025 0

The Hikvision Security Response Center (HSRC) has released a new advisory detailing three vulnerabilities affecting different versions...

Read More Read more about Multi Flaws Found in HikCentral, Including a Bypass for Admin Access (CVE-2025-39247)

Unpatched Telecom Flaws (CVSS 9.8) Enable Remote Code Execution: Critical Buffer Overflows Expose Core Infrastructure

• Vulnerability

Unpatched Telecom Flaws (CVSS 9.8) Enable Remote Code Execution: Critical Buffer Overflows Expose Core Infrastructure

Do Son June 4, 2025 2

Two newly disclosed vulnerabilities in popular telecommunications devices expose critical infrastructure to unauthenticated remote code execution and...

Read More Read more about Unpatched Telecom Flaws (CVSS 9.8) Enable Remote Code Execution: Critical Buffer Overflows Expose Core Infrastructure

Critical CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed

• Vulnerability Report

Critical CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed

Do Son June 4, 2025 0

IBM has released a security advisory addressing multiple vulnerabilities discovered in its QRadar Suite Software and Cloud...

Read More Read more about Critical CVSS 9.6: IBM QRadar & Cloud Pak Security Flaws Exposed

Critical 9.8 CVSS Authentication Bypass in HPE StoreOnce Software

• Vulnerability

Critical 9.8 CVSS Authentication Bypass in HPE StoreOnce Software

Do Son June 3, 2025 0

Hewlett Packard Enterprise (HPE) has issued a security bulletin detailing multiple severe vulnerabilities in its StoreOnce Software,...

Read More Read more about Critical 9.8 CVSS Authentication Bypass in HPE StoreOnce Software

Critical 10.0 CVSS Flaws Found in Netwrix Directory Manager v11 – Patch Immediately!

• Vulnerability

Critical 10.0 CVSS Flaws Found in Netwrix Directory Manager v11 – Patch Immediately!

Do Son May 31, 2025 0

Netwrix, a provider of identity governance and access management solutions, has issued a critical security advisory warning...

Read More Read more about Critical 10.0 CVSS Flaws Found in Netwrix Directory Manager v11 – Patch Immediately!

Critical (CVSS 9.8): IBM Tivoli Monitoring Flaw Risks Remote Code Execution

• Vulnerability

Critical (CVSS 9.8): IBM Tivoli Monitoring Flaw Risks Remote Code Execution

Do Son May 30, 2025 0

IBM has issued a critical security update for its Tivoli Monitoring suite, addressing a high-severity vulnerability that...

Read More Read more about Critical (CVSS 9.8): IBM Tivoli Monitoring Flaw Risks Remote Code Execution

Critical Vulnerability (CVSS 9.3): Icinga 2 Flaw Risks Certificate Impersonation

• Vulnerability

Critical Vulnerability (CVSS 9.3): Icinga 2 Flaw Risks Certificate Impersonation

Do Son May 30, 2025 0

A critical vulnerability in Icinga 2, the popular open-source monitoring system, has been disclosed, exposing systems to...

Read More Read more about Critical Vulnerability (CVSS 9.3): Icinga 2 Flaw Risks Certificate Impersonation

Industrial Systems at Risk: Critical Mitsubishi MELSEC Flaw (CVSS 9.1), No Patch

• Vulnerability

Industrial Systems at Risk: Critical Mitsubishi MELSEC Flaw (CVSS 9.1), No Patch

Do Son May 29, 2025 0

Mitsubishi Electric Corporation released a security advisory warning users of a serious vulnerability in its MELSEC iQ-F...

Read More Read more about Industrial Systems at Risk: Critical Mitsubishi MELSEC Flaw (CVSS 9.1), No Patch

Java Apps at Risk: Apache Commons BeanUtils Flaw Exposes RCE

• Vulnerability

Java Apps at Risk: Apache Commons BeanUtils Flaw Exposes RCE

Do Son May 29, 2025 0

A newly disclosed vulnerability in Apache Commons BeanUtils has raised serious concerns for Java-based applications relying on...

Read More Read more about Java Apps at Risk: Apache Commons BeanUtils Flaw Exposes RCE

Critical (CVSS 9.8): Cyrus IMAP Flaw Risks Full System Compromise on openSUSE

• Vulnerability

Critical (CVSS 9.8): Cyrus IMAP Flaw Risks Full System Compromise on openSUSE

Do Son May 28, 2025 0

A severe security vulnerability has been disclosed in the Cyrus IMAP mail server, affecting openSUSE Tumbleweed systems....

Read More Read more about Critical (CVSS 9.8): Cyrus IMAP Flaw Risks Full System Compromise on openSUSE

Amazon Redshift Alert: OAuth2 Vulnerability Exposes Data

• Vulnerability

Amazon Redshift Alert: OAuth2 Vulnerability Exposes Data

Do Son May 28, 2025 0

Amazon has released an important security update addressing a high severity vulnerability (CVSS 7.5) in the Amazon...

Read More Read more about Amazon Redshift Alert: OAuth2 Vulnerability Exposes Data

Critical (CVSS 9.8): Weidmueller Switch Flaws Risk Full System Compromise

• Vulnerability

Critical (CVSS 9.8): Weidmueller Switch Flaws Risk Full System Compromise

Do Son May 28, 2025 0

Weidmueller Interface GmbH & Co. KG, a global manufacturer of industrial connectivity and automation solutions, has disclosed...

Read More Read more about Critical (CVSS 9.8): Weidmueller Switch Flaws Risk Full System Compromise

Industrial Systems at Risk: Lenze VPN Flaws Lead to Root/SYSTEM Access

• Vulnerability

Industrial Systems at Risk: Lenze VPN Flaws Lead to Root/SYSTEM Access

Do Son May 28, 2025 0

CERT@VDE and Lenze SE have disclosed two local privilege escalation vulnerabilities affecting the Lenze VPN Client on...

Read More Read more about Industrial Systems at Risk: Lenze VPN Flaws Lead to Root/SYSTEM Access

Unpatched & Critical (CVSS 10): TI WooCommerce Wishlist Vulnerability Affects 100K+ Sites

• Vulnerability

Unpatched & Critical (CVSS 10): TI WooCommerce Wishlist Vulnerability Affects 100K+ Sites

Do Son May 27, 2025 0

Researchers have discovered a critical security vulnerability in the TI WooCommerce Wishlist plugin, a widely-used tool that...

Read More Read more about Unpatched & Critical (CVSS 10): TI WooCommerce Wishlist Vulnerability Affects 100K+ Sites

Critical (CVSS 9.8): Canon Printers Vulnerable to Arbitrary Code Execution

• Vulnerability

Critical (CVSS 9.8): Canon Printers Vulnerable to Arbitrary Code Execution

Do Son May 26, 2025 0

Canon has updated its January 2025 security advisory to include a newly identified critical vulnerability — CVE-2025-2146...

Read More Read more about Critical (CVSS 9.8): Canon Printers Vulnerable to Arbitrary Code Execution

Langroid Flaws (CVSS 9.8) Expose LLM Apps to RCE

• Vulnerability

Langroid Flaws (CVSS 9.8) Expose LLM Apps to RCE

Do Son May 22, 2025 0

Researchers have disclosed two critical vulnerabilities in Langroid, a popular Python framework designed for building large language...

Read More Read more about Langroid Flaws (CVSS 9.8) Expose LLM Apps to RCE

9.8 CVSS Score: Rockwell Automation Impacted by High-Severity log4net Vulnerability

• Vulnerability

9.8 CVSS Score: Rockwell Automation Impacted by High-Severity log4net Vulnerability

Do Son May 17, 2025 0

Rockwell Automation has issued a critical security advisory affecting the FactoryTalk Historian-ThingWorx Connector, due to a third-party...

Read More Read more about 9.8 CVSS Score: Rockwell Automation Impacted by High-Severity log4net Vulnerability