Search and filter the CVE database
Popular tags:
Showing 20 of 830 CVEs | How we assess risk →
| CVE ID | Title | Score | Severity | Date ▼ |
|---|---|---|---|---|
| CVE-2025-68390 | Elasticsearch Resource Denial of Service | 4.9 | MEDIUM | 2025-12-18 |
| CVE-2025-58130 | Apache Fineract Insufficiently Protected Credentia... | 9.1 | CRITICAL | 2025-12-12 |
| CVE-2025-53960 | Apache StreamPark Encryption Key Weakness | 5.9 | MEDIUM | 2025-12-12 |
| CVE-2025-23408 | Apache Fineract Weak Password Requirements Vulnera... | 6.5 | MEDIUM | 2025-12-12 |
| CVE-2025-14516 | Yalantis uCrop SSRF Vulnerability | 6.3 | MEDIUM | 2025-12-11 |
| CVE-2025-66675 | Apache Struts Denial of Service | 8.2 | HIGH | 2025-12-10 |
| CVE-2025-64559 | Adobe Experience Manager XSS | 5.4 | MEDIUM | 2025-12-10 |
| CVE-2025-42928 | SAP jConnect Deserialization Vulnerability | 9.1 | CRITICAL | 2025-12-09 |
| CVE-2025-67469 | kubiq PDF Thumbnail Generator Vulnerability | 8.8 | HIGH | 2025-12-09 |
| CVE-2025-64783 | DNG SDK Integer Overflow Vulnerability | 7.8 | HIGH | 2025-12-09 |
| CVE-2025-48583 | Android Framework Component Vulnerability | 7.8 | HIGH | 2025-12-08 |
| CVE-2025-55948 | X-SpringBoot 6.0 RBAC Desynchronization Exploit | 7.3 | HIGH | 2025-12-04 |
| CVE-2024-3884 | Undertow Remote Denial of Service Flaw | 7.5 | HIGH | 2025-12-03 |
| CVE-2025-13875 | oci-helper Path Traversal | 6.3 | MEDIUM | 2025-12-02 |
| CVE-2025-66401 | MCP Watch Command Injection | 9.8 | CRITICAL | 2025-12-01 |
| CVE-2025-64775 | Apache Struts Denial of Service | 7.5 | HIGH | 2025-12-01 |
| CVE-2025-13806 | NutzBoot Unauthorized Transfer | 7.3 | HIGH | 2025-12-01 |
| CVE-2025-13811 | jsnjfz WebStack-Guns SQL Injection | 6.3 | MEDIUM | 2025-12-01 |
| CVE-2025-13804 | NutzBoot InfoLeak | 4.3 | MEDIUM | 2025-12-01 |
| CVE-2025-13791 | ZipSlip Vulnerability | 6.3 | MEDIUM | 2025-11-30 |