Medium - CVE-2025-0752 - A flaw was found in OpenShift Service Mesh...
A flaw was found in OpenShift Service Mesh 2.6.3 and 2.5.6. Rate-limiter avoidance, access-control bypass, CPU and memory exhaustion, and replay attacks may be possible due to improper HTTP header...
Medium - CVE-2025-0754 - The vulnerability was found in OpenShift...
The vulnerability was found in OpenShift Service Mesh 2.6.3 and 2.5.6. This issue occurs due to improper sanitization of HTTP headers by Envoy, particularly the x-forwarded-for header. This lack of...
NA - CVE-2025-0065 - Improper Neutralization of Argument Delimiters...
Improper Neutralization of Argument Delimiters in the TeamViewer_service.exe component of TeamViewer Clients prior version 15.62 for Windows allows an attacker with local unprivileged access on a...
NA - CVE-2024-11954 - A vulnerability classified as problematic was...
A vulnerability classified as problematic was found in Pimcore 11.4.2. Affected by this vulnerability is an unknown functionality of the component Search Document. The manipulation leads to basic...
Medium - CVE-2024-11956 - A vulnerability, which was classified as...
A vulnerability, which was classified as critical, has been found in Pimcore customer-data-framework up to 4.2.0. Affected by this issue is some unknown functionality of the file...
NA - CVE-2024-7881 - An unprivileged context can trigger a data...
An unprivileged context can trigger a data memory-dependent prefetch engine to fetch the contents of a privileged location and consume those contents as an address that is also dereferenced.
NA - CVE-2025-0659 - A path
traversal vulnerability exists in the...
A path traversal vulnerability exists in the Rockwell Automation DataEdge Platform DataMosaix Private Cloud. By specifying the character sequence in the body of the vulnerable endpoint, it is...
NA - CVE-2025-23045 - Computer Vision Annotation Tool (CVAT) is an...
Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. An attacker with an account on an affected CVAT instance is able to run arbitrary code...