Critical - CVE-2025-20309 - A vulnerability in Cisco Unified Communications...
A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote...
NA - CVE-2025-45814 - Missing authentication checks in the query.fcgi...
Missing authentication checks in the query.fcgi endpoint of NS3000 v8.1.1.125110 , v7.2.8.124852 , and v7.x and NS2000 v7.02.08 allows attackers to execute a session hijacking attack.
High - CVE-2025-49713 - Access of resource using incompatible type...
Access of resource using incompatible type ('type confusion') in Microsoft Edge (Chromium-based) allows an unauthorized attacker to execute code over a network.
NA - CVE-2025-34074 - An authenticated remote code execution...
An authenticated remote code execution vulnerability exists in Lucee’s administrative interface due to insecure design in the scheduled task functionality. An administrator with access to...
NA - CVE-2025-34075 - An authenticated virtual machine escape...
An authenticated virtual machine escape vulnerability exists in HashiCorp Vagrant when using the default synced folder configuration. By design, Vagrant automatically mounts the host system’s...
NA - CVE-2025-34078 - A local privilege escalation vulnerability...
A local privilege escalation vulnerability exists in NSClient++ 0.5.2.35 when both the web interface and ExternalScripts features are enabled. The configuration file (nsclient.ini) stores the...