High - CVE-2025-6464 - The Forminator Forms – Contact Form, Payment...
The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.44.2 via deserialization...
Critical - CVE-2024-13786 - The education theme for WordPress is vulnerable...
The education theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.6.10 via deserialization of untrusted input in the...
Medium - CVE-2025-6017 - A flaw was found in Red Hat Advanced Cluster...
A flaw was found in Red Hat Advanced Cluster Management through versions 2.10, before 2.10.7, 2.11, before 2.11.4, and 2.12, before 2.12.4. This vulnerability allows an unprivileged user to view...
NA - CVE-2025-24328 - Sending a crafted SOAP "set" operation message...
Sending a crafted SOAP "set" operation message within the Mobile Network Operator (MNO) internal Radio Access Network (RAN) management network can cause Nokia Single RAN baseband OAM service...
NA - CVE-2025-24329 - Sending a crafted SOAP "provision" operation...
Sending a crafted SOAP "provision" operation message archive field within the Mobile Network Operator (MNO) internal Radio Access Network (RAN) management network can cause path traversal issue in...
NA - CVE-2025-24330 - Sending a crafted SOAP "provision" operation...
Sending a crafted SOAP "provision" operation message PlanId field within the Mobile Network Operator (MNO) internal Radio Access Network (RAN) management network can cause path traversal issue in...
NA - CVE-2025-24331 - The Single RAN baseband OAM service is intended...
The Single RAN baseband OAM service is intended to run as an unprivileged service. However, it initially starts with root privileges and assigns certain capabilities before dropping to an...
NA - CVE-2025-24332 - Nokia Single RAN AirScale baseband allows an...
Nokia Single RAN AirScale baseband allows an authenticated administrative user access to all physical boards after performing a single login to the baseband system board. The baseband does not...
NA - CVE-2025-24333 - Nokia Single RAN baseband software earlier than...
Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting...
NA - CVE-2025-24334 - The Nokia Single RAN baseband software earlier...
The Nokia Single RAN baseband software earlier than 23R2-SR 1.0 MP can be made to reveal the exact software release version by sending a specific HTTP POST request through the Mobile Network...