Skip to main content
CVE-2025-27363 HIGH KEV PATCH THREAT Act Now

Arbitrary code execution in FreeType 2.13.0 and earlier via heap buffer overflow when parsing TrueType GX/variable font subglyph structures. Confirmed actively exploited in the wild (CISA KEV). Attack requires high complexity but no authentication, affecting widespread deployments including Android, Debian, and applications embedding FreeType for font rendering. EPSS score of 76.15% (99th percentile) reflects significant real-world exploitation risk. Vendor patches available; immediate upgrade to post-2.13.0 versions critical.

Buffer Overflow RCE Memory Corruption
NVD
CVSS 3.1
8.1
EPSS
76.2%
Threat
5.4
CVE-2025-26633 HIGH POC KEV THREAT Act Now

A security feature bypass in Microsoft Management Console (MMC) allows attackers to evade security warnings and execute malicious code locally. KEV-listed and tracked as CVE-2025-26633, this vulnerability has been actively exploited by the Water Gamayun threat group (also tracked as EncryptHub) using crafted .msc files to deploy info-stealing malware. Public PoC is available and EPSS is 7.1%.

Authentication Bypass Microsoft
NVD Exploit-DB VulDB
CVSS 3.1
7.0
EPSS
7.1%
Threat
4.6
CVE-2025-24985 HIGH POC KEV PATCH THREAT Act Now

An integer overflow in the Windows Fast FAT Driver allows unauthenticated local code execution through crafted FAT filesystem images. KEV-listed with public PoC, this vulnerability (CVE-2025-24985) can be triggered by mounting a malicious USB drive or VHD file, making it a potent vector for physical access attacks and social engineering scenarios.

Windows
NVD
CVSS 3.1
7.8
EPSS
1.1%
Threat
4.6
CVE-2025-24993 HIGH KEV THREAT Act Now

A heap-based buffer overflow in the Windows NTFS driver allows unauthenticated local code execution, providing kernel-level access when a user mounts a crafted NTFS filesystem image. This KEV-listed vulnerability (CVE-2025-24993) targets the most widely used Windows filesystem, making it a significant threat through malicious USB drives, VHD files, or network shares.

Windows Buffer Overflow
NVD
CVSS 3.1
7.8
EPSS
1.5%
CVE-2025-24983 HIGH KEV PATCH THREAT Act Now

A use-after-free vulnerability in the Windows Win32 Kernel Subsystem enables local privilege escalation from authorized user to SYSTEM level. This KEV-listed vulnerability (CVE-2025-24983) requires the attacker to win a race condition but has been actively exploited in targeted attacks. Microsoft has released patches for all supported Windows versions.

Linux Windows
NVD
CVSS 3.1
7.0
EPSS
0.7%
CVE-2025-25928 HIGH POC This Week

A Cross-Site Request Forgery (CSRF) in the component /admin/users/user.form of Openmrs 2.4.3 Build 0ff0ed allows attackers to execute arbitrary operations via a crafted request. [CVSS 8.0 HIGH]

CSRF RCE
NVD GitHub
CVSS 3.1
8.0
EPSS
0.1%
CVE-2025-25680 HIGH POC This Week

tuya_ipc_direct_connect function of the anyka_ipc process. The vulnerability is affected by code injection (CVSS 7.7).

RCE
NVD GitHub
CVSS 3.1
7.7
EPSS
0.3%
CVE-2025-24076 HIGH POC This Week

Improper access control in Windows Cross Device Service allows an authorized attacker to elevate privileges locally. [CVSS 7.3 HIGH]

Windows
NVD Exploit-DB
CVSS 3.1
7.3
EPSS
1.6%
CVE-2024-51321 HIGH POC This Week

In Zucchetti Ad Hoc Infinity 2.4, an improper check on the m_cURL parameter allows an attacker to redirect the victim to an attacker-controlled website after the authentication. [CVSS 7.6 HIGH]

Open Redirect
NVD
CVSS 3.1
7.6
EPSS
0.1%
CVE-2024-51319 HIGH POC This Week

the /servlet/Report of Zucchetti Ad Hoc Infinity 2.4 is affected by php remote file inclusion (CVSS 7.3).

RCE
NVD
CVSS 3.1
7.3
EPSS
0.3%
CVE-2025-25749 HIGH POC This Week

HotelDruid version 3.0.7 and earlier fails to enforce strong password requirements, allowing users to create weak passwords that are easily guessable. This affects anyone using the hotel management software, potentially exposing guest data and booking information. An attacker could exploit weak user passwords to gain unauthorized access to the system and compromise sensitive hotel operations and customer information.

RCE
NVD
CVSS 3.1
7.1
EPSS
0.5%
CVE-2024-13862 HIGH POC This Week

The S3Bubble Media Streaming (AWS|Elementor|YouTube|Vimeo Functionality) WordPress plugin through 8.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin [CVSS 7.1 HIGH]

WordPress XSS
NVD WPScan
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-13836 HIGH POC This Week

The WP Login Control WordPress plugin through 2.0.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. [CVSS 7.1 HIGH]

WordPress XSS
NVD WPScan
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-13574 HIGH POC This Week

The XV Random Quotes WordPress plugin through 1.40 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. [CVSS 7.1 HIGH]

WordPress XSS
NVD WPScan
CVSS 3.1
7.1
EPSS
0.1%
CVE-2024-13864 HIGH POC This Week

The Countdown Timer WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin [CVSS 7.1 HIGH]

WordPress XSS
NVD WPScan
CVSS 3.1
7.1
EPSS
0.0%
CVE-2025-24070 HIGH POC PATCH This Week

Weak authentication in ASP.NET Core & Visual Studio allows an unauthorized attacker to elevate privileges over a network. [CVSS 7.0 HIGH]

Authentication Bypass .NET Microsoft Red Hat Suse
NVD HeroDevs
CVSS 3.1
7.0
EPSS
0.3%
CVE-2025-24051 HIGH This Week

Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. [CVSS 8.8 HIGH]

Windows Buffer Overflow
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2025-27617 HIGH PATCH This Week

Pimcore is an open source data and experience management platform. versions up to 11.5.4 is affected by sql injection (CVSS 8.8).

RCE SQLi
NVD GitHub
CVSS 3.1
8.8
EPSS
0.5%
CVE-2025-24056 HIGH This Week

Heap-based buffer overflow in Windows Telephony Server allows an unauthorized attacker to execute code over a network. [CVSS 8.8 HIGH]

Windows Buffer Overflow
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2024-55590 HIGH This Week

in Fortinet FortiIsolator version 2.4.0 versions up to 2.4.5 is affected by os command injection (CVSS 8.8).

Fortinet
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2025-26645 HIGH This Week

Relative path traversal in Remote Desktop Client allows an unauthorized attacker to execute code over a network. [CVSS 8.8 HIGH]

Path Traversal
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2025-1707 HIGH This Week

Review Schema (WordPress plugin) versions up to 2.2.4 is affected by php remote file inclusion (CVSS 8.8).

WordPress PHP
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2025-27396 HIGH This Week

A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0). Affected devices do not properly limit the elevation of privileges required to perform certain valid functionality. [CVSS 8.8 HIGH]

Privilege Escalation Siemens
NVD
CVSS 3.1
8.8
EPSS
0.3%
CVE-2025-27434 HIGH This Week

Due to insufficient input validation, SAP Commerce (Swagger UI) allows an unauthenticated attacker to inject the malicious code from remote sources, which can be leveraged by an attacker to execute a cross-site scripting (XSS) attack. [CVSS 8.8 HIGH]

RCE XSS
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2025-26661 HIGH This Week

Due to missing authorization check, SAP NetWeaver (ABAP Class Builder) allows an attacker to gain higher access levels than they should have, resulting in escalation of privileges. On successful exploitation, this could result in disclosure of highly sensitive information. [CVSS 8.8 HIGH]

Authentication Bypass SAP
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2024-52961 HIGH This Week

An improper neutralization of special elements used in an OS Command vulnerability [CWE-78] vulnerability in Fortinet FortiSandbox 5.0.0, FortiSandbox 4.4.0 through 4.4.6, FortiSandbox 4.2.1 through 4.2.7, FortiSandbox 4.0.0 through 4.0.5, FortiSandbox 3.2 all versions, FortiSandbox 3.1 all versions, FortiSandbox 3.0 all versions allows an authenticated attacker with at least read-only permission to execute unauthorized commands via crafted requests. [CVSS 8.8 HIGH]

Fortinet
NVD
CVSS 3.1
8.8
EPSS
0.2%
CVE-2025-1828 HIGH PATCH This Week

Crypt::Random Perl package 1.05 through 1.55 may use rand() function, which is not cryptographically strong, for cryptographic functions. [CVSS 8.8 HIGH]

Windows Suse
NVD GitHub
CVSS 3.1
8.8
EPSS
0.1%
CVE-2023-37933 HIGH This Week

An improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability [CWE-79] in FortiADC GUI version 7.4.0, 7.2.0 through 7.2.1 and before 7.1.3 allows an authenticated attacker to perform an XSS attack via crafted HTTP or HTTPs requests. [CVSS 8.8 HIGH]

XSS
NVD
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-2233 HIGH This Week

Samsung SmartThings Improper Verification of Cryptographic Signature Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to bypass authentication on affected installations of Samsung SmartThings. [CVSS 8.8 HIGH]

Authentication Bypass Samsung
NVD
CVSS 3.0
8.8
EPSS
0.1%
CVE-2025-27912 HIGH This Week

An issue was discovered in Datalust Seq before 2024.3.13545. Missing Content-Type validation can lead to CSRF when (1) Entra ID or OpenID Connect authentication is in use and a user visits a compromised/malicious site, or (2) when username/password or Active Directory authentication is in use and a user visits a compromised/malicious site under the same effective top-level domain as the Seq server. Exploitation of the vulnerability allows the attacker to conduct impersonation attacks and perf...

CSRF
NVD GitHub
CVSS 3.1
8.8
EPSS
0.1%
CVE-2025-27773 HIGH PATCH This Week

SimpleSAMLphp SAML2 library is a PHP library for SAML2 related functionality. versions up to 4.17.0 is affected by improper verification of cryptographic signature (CVSS 8.6).

PHP
NVD GitHub
CVSS 3.1
8.6
EPSS
0.2%
CVE-2025-27440 HIGH This Week

Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. [CVSS 8.5 HIGH]

Privilege Escalation
NVD
CVSS 3.1
8.5
EPSS
0.2%
CVE-2025-27439 HIGH This Week

Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. [CVSS 8.5 HIGH]

Privilege Escalation
NVD
CVSS 3.1
8.5
EPSS
0.2%
CVE-2025-0151 HIGH This Week

Use after free in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network access. [CVSS 8.5 HIGH]

Use After Free Privilege Escalation Denial Of Service
NVD
CVSS 3.1
8.5
EPSS
0.1%
CVE-2025-24084 HIGH This Week

Untrusted pointer dereference in Windows Subsystem for Linux allows an unauthorized attacker to execute code locally. [CVSS 8.4 HIGH]

Linux Windows
NVD
CVSS 3.1
8.4
EPSS
0.2%
CVE-2025-24049 HIGH PATCH This Week

Improper neutralization of special elements used in a command ('command injection') in Azure Command Line Integration (CLI) allows an unauthorized attacker to elevate privileges locally. [CVSS 8.4 HIGH]

Command Injection Microsoft Suse
NVD
CVSS 3.1
8.4
EPSS
0.2%
CVE-2024-56182 HIGH This Week

A vulnerability has been identified in SIMATIC Field PG M5 (All versions), SIMATIC Field PG M6 (All versions < V26.01.12), SIMATIC IPC BX-21A (All versions < V31.01.07), SIMATIC IPC BX-32A (All versions < V29.01.07), SIMATIC IPC BX-39A (All versions < V29.01.07), SIMATIC IPC BX-59A (All versions < V32.01.04), SIMATIC IPC PX-32A (All versions < V29.01.07), SIMATIC IPC PX-39A (All versions < V29.01.07), SIMATIC IPC PX-39A PRO (All versions < V29.01.07), SIMATIC IPC RC-543A (All versions), SIMATIC IPC RC-543B (All versions < V35.01.12), SIMATIC IPC RW-543A (All versions), SIMATIC IPC RW-543B (All versions < V35.02.10), SIMATIC IPC127E (All versions), SIMATIC IPC227E (All versions), SIMATIC IPC227G (All versions < V28.01.14), SIMATIC IPC277E (All versions), SIMATIC IPC277G (All versions < V28.01.14), SIMATIC IPC277G PRO (All versions < V28.01.14), SIMATIC IPC3000 SMART V3 (All versions), SIMATIC IPC327G (All versions < V28.01.14), SIMATIC IPC347G (All versions), SIMATIC IPC377G (All versions < V28.01.14), SIMATIC IPC427E (All versions), SIMATIC IPC477E (All versions), SIMATIC IPC477E PRO (All versions), SIMATIC IPC527G (All versions), SIMATIC IPC627E (All versions < V25.02.15), SIMATIC IPC647E (All versions < V25.02.15), SIMATIC IPC677E (All versions < V25.02.15), SIMATIC IPC847E (All versions < V25.02.15), SIMATIC ITP1000 (All versions). [CVSS 8.2 HIGH]

Information Disclosure
NVD VulDB
CVSS 4.0
8.4
EPSS
0.0%
CVE-2024-56181 HIGH This Week

A vulnerability has been identified in SIMATIC Field PG M5 (All versions), SIMATIC IPC BX-21A (All versions < V31.01.07), SIMATIC IPC BX-32A (All versions < V29.01.07), SIMATIC IPC BX-39A (All versions < V29.01.07), SIMATIC IPC BX-59A (All versions < V32.01.04), SIMATIC IPC PX-32A (All versions < V29.01.07), SIMATIC IPC PX-39A (All versions < V29.01.07), SIMATIC IPC PX-39A PRO (All versions < V29.01.07), SIMATIC IPC RC-543A (All versions), SIMATIC IPC RC-543B (All versions < V35.01.12), SIMATIC IPC RW-543A (All versions), SIMATIC IPC RW-543B (All versions < V35.02.10), SIMATIC IPC127E (All versions), SIMATIC IPC227E (All versions), SIMATIC IPC227G (All versions < V28.01.14), SIMATIC IPC277E (All versions), SIMATIC IPC277G (All versions < V28.01.14), SIMATIC IPC277G PRO (All versions < V28.01.14), SIMATIC IPC3000 SMART V3 (All versions), SIMATIC IPC327G (All versions < V28.01.14), SIMATIC IPC347G (All versions), SIMATIC IPC377G (All versions < V28.01.14), SIMATIC IPC427E (All versions), SIMATIC IPC477E (All versions), SIMATIC IPC477E PRO (All versions), SIMATIC IPC527G (All versions), SIMATIC IPC627E (All versions < V25.02.15), SIMATIC IPC647E (All versions < V25.02.15), SIMATIC IPC677E (All versions < V25.02.15), SIMATIC IPC847E (All versions < V25.02.15), SIMATIC ITP1000 (All versions). [CVSS 8.2 HIGH]

Information Disclosure
NVD VulDB
CVSS 4.0
8.4
EPSS
0.0%
CVE-2025-27493 HIGH This Week

A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9), SiPass integrated ACC-AP (All versions < V6.4.9). Affected devices improperly sanitize user input for specific commands on the telnet command line interface. [CVSS 8.2 HIGH]

Code Injection
NVD
CVSS 3.1
8.2
EPSS
0.0%
CVE-2025-24064 HIGH This Week

Use after free in DNS Server allows an unauthorized attacker to execute code over a network. [CVSS 8.1 HIGH]

Use After Free Denial Of Service
NVD
CVSS 3.1
8.1
EPSS
0.5%
CVE-2025-24035 HIGH CERT-EU This Week

Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network. [CVSS 8.1 HIGH]

Windows
NVD
CVSS 3.1
8.1
EPSS
0.5%
CVE-2025-24045 HIGH CERT-EU This Week

Sensitive data storage in improperly locked memory in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network. [CVSS 8.1 HIGH]

Windows
NVD
CVSS 3.1
8.1
EPSS
0.4%
CVE-2023-40723 HIGH CERT-EU This Week

An exposure of sensitive information to an unauthorized actor in Fortinet FortiSIEM version 6.7.0 versions up to 6.7.4 is affected by information exposure (CVSS 8.1).

Fortinet
NVD
CVSS 3.1
8.1
EPSS
0.1%
CVE-2025-2190 HIGH This Week

The mobile application (com.transsnet.store) has a man-in-the-middle attack vulnerability, which may lead to code injection risks. [CVSS 8.1 HIGH]

Code Injection
NVD
CVSS 3.1
8.1
EPSS
0.1%
CVE-2025-24061 HIGH This Week

Protection mechanism failure in Windows Mark of the Web (MOTW) allows an unauthorized attacker to bypass a security feature locally. [CVSS 7.8 HIGH]

Windows
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2025-24057 HIGH This Week

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. [CVSS 7.8 HIGH]

Buffer Overflow
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2025-21180 HIGH This Week

Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally. [CVSS 7.8 HIGH]

Windows Buffer Overflow
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2025-24083 HIGH This Week

Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally. [CVSS 7.8 HIGH]

Authentication Bypass Microsoft
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2025-24082 HIGH This Week

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. [CVSS 7.8 HIGH]

Use After Free Denial Of Service Microsoft
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2025-24081 HIGH This Week

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. [CVSS 7.8 HIGH]

Use After Free Denial Of Service Microsoft
NVD
CVSS 3.1
7.8
EPSS
0.3%
Page 1 of 4 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy