Skip to main content
CVE-2025-32943 LOW POC Monitor

The vulnerability allows any authenticated user to leak the contents of arbitrary “.m3u8” files from the PeerTube server due to a path traversal in the HLS endpoint. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Path Traversal Peertube
NVD GitHub
CVSS 3.1
3.7
EPSS
0.1%
CVE-2025-32021 LOW POC PATCH Monitor

Weblate is a web based localization tool. Rated low severity (CVSS 2.2), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Nginx Information Disclosure Docker Weblate
NVD GitHub
CVSS 3.1
2.2
EPSS
0.3%
CVE-2025-30731 LOW PATCH Monitor

Vulnerability in the Oracle Applications Technology Stack product of Oracle E-Business Suite (component: Configuration). Rated low severity (CVSS 3.6), this vulnerability is no authentication required.

Oracle Authentication Bypass Applications Technology Stack
NVD
CVSS 3.1
3.6
EPSS
0.1%
CVE-2025-30700 LOW PATCH Monitor

Vulnerability in the Oracle Solaris product of Oracle Systems (component: Pluggable authentication module). Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity.

Oracle Authentication Bypass Solaris
NVD
CVSS 3.1
3.5
EPSS
0.3%
CVE-2025-31494 LOW PATCH Monitor

AutoGPT is a platform that allows users to create, deploy, and manage continuous artificial intelligence agents that automate complex workflows. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Autogpt Platform
NVD GitHub
CVSS 3.1
3.5
EPSS
0.2%
CVE-2025-30681 LOW PATCH Monitor

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. This Uncontrolled Resource Consumption vulnerability could allow attackers to cause denial of service by exhausting system resources.

Oracle Denial Of Service Mysql Cluster Mysql Server MySQL
NVD
CVSS 3.1
2.7
EPSS
0.3%
CVE-2025-30703 LOW PATCH Monitor

Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. This Incorrect Authorization vulnerability could allow attackers to bypass authorization checks to access restricted resources.

Oracle Authentication Bypass Mysql Server MySQL
NVD
CVSS 3.1
2.7
EPSS
0.2%
CVE-2025-32435 LOW PATCH Monitor

Hydra is a Continuous Integration service for Nix based projects. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

Information Disclosure Code Injection Hydra
NVD GitHub
CVSS 3.1
2.6
EPSS
0.2%
CVE-2024-45712 LOW PATCH Monitor

SolarWinds Serv-U is vulnerable to a client-side cross-site scripting (XSS) vulnerability. Rated low severity (CVSS 2.6), this vulnerability is remotely exploitable.

XSS Serv U
NVD
CVSS 3.1
2.6
EPSS
0.1%
CVE-2024-42193 LOW Monitor

HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in its handling of SSL certificate validation. Rated low severity (CVSS 2.1), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Authentication Bypass Bigfix Platform
NVD
CVSS 4.0
2.1
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy