Skip to main content
CVE-2025-27708 MEDIUM This Month

Out-of-bounds read in the firmware for some Intel(R) Converged Security and Management Engine (CSME) Firmware (FW) within Ring 0: Kernel may allow an information disclosure. System software adversary with a privileged user combined with a low complexity attack may enable data exposure. [CVSS 4.1 MEDIUM]

Linux Information Disclosure
NVD VulDB
CVSS 3.1
4.1
EPSS
0.0%
CVE-2025-31648 LOW Monitor

Improper handling of values in the microcode flow for some Intel(R) Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. [CVSS 3.9 LOW]

Privilege Escalation
NVD VulDB
CVSS 3.1
3.9
EPSS
0.0%
CVE-2026-26013 LOW PATCH Monitor

LangChain is a framework for building agents and LLM-powered applications. Prior to 1.2.11, the ChatOpenAI.get_num_tokens_from_messages() method fetches arbitrary image_url values without validation when computing token counts for vision-enabled models. This allows attackers to trigger Server-Side Request Forgery (SSRF) attacks by providing malicious image URLs in user input. This vulnerability...

SSRF Langchain AI / ML
NVD GitHub VulDB
CVSS 3.1
3.7
EPSS
0.0%
CVE-2026-23686 LOW Monitor

Netweaver Application Server Java versions up to 7.50 is affected by http response splitting (CVSS 3.4).

SAP
NVD
CVSS 3.1
3.4
EPSS
0.0%
CVE-2026-21249 LOW PATCH Monitor

External control of file name or path in Windows NTLM allows an unauthorized attacker to perform spoofing locally. [CVSS 3.3 LOW]

Windows Microsoft
NVD
CVSS 3.1
3.3
EPSS
0.0%
CVE-2025-25058 LOW Monitor

Ethernet 800-Serie versions up to 2.2.2.0 contains a vulnerability that allows attackers to an information disclosure (CVSS 3.3).

Linux ESXi Information Disclosure
NVD
CVSS 3.1
3.3
EPSS
0.0%
CVE-2025-33030 LOW Monitor

Improper conditions check in some firmware for some Intel(R) NPU Drivers within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable data corruption. [CVSS 3.3 LOW]

Privilege Escalation
NVD VulDB
CVSS 3.1
3.3
EPSS
0.0%
CVE-2026-24320 LOW Monitor

Due to improper memory management in SAP NetWeaver and ABAP Platform (Application Server ABAP), an authenticated attacker could exploit logical errors in memory management by supplying specially crafted input containing unique characters, which are improperly converted. [CVSS 3.1 LOW]

SAP Memory Corruption
NVD
CVSS 3.1
3.1
EPSS
0.0%
CVE-2026-1762 LOW Monitor

A vulnerability in GE Vernova Enervista UR Setup on Windows allows File Manipulation.This issue affects Enervista: 8.6 and prior versions. [CVSS 2.9 LOW]

Windows
NVD
CVSS 3.1
2.9
EPSS
0.0%
CVE-2026-23901 LOW PATCH Monitor

Observable Timing Discrepancy vulnerability in Apache Shiro. This issue affects Apache Shiro: from 1.*, 2.* before 2.0.7. [CVSS 2.5 LOW]

Apache
NVD
CVSS 3.1
2.5
EPSS
0.0%
CVE-2025-32739 LOW Monitor

Improper conditions check in some firmware for some Intel(R) Graphics Drivers and Intel LTS kernels within Ring 1: Device Drivers may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable denial of service. [CVSS 2.8 LOW]

Denial Of Service Intel
NVD
CVSS 4.0
2.0
EPSS
0.0%
CVE-2025-52534 Monitor

Improper bound check within AMD CPU microcode can allow a malicious guest to write to host memory, potentially resulting in loss of integrity.

Information Disclosure
NVD
EPSS
0.1%
CVE-2025-11004 This Week

The Simplicity Device Manager Tool has a Reflected XSS (Cross-site-scripting) vulnerability in several API endpoints. The attacker needs to be on the same network to execute this attack.

XSS
NVD
EPSS
0.1%
CVE-2024-21953 Monitor

Improper input validation in IOMMU could allow a malicious hypervisor to reconfigure IOMMU registers resulting in loss of guest data integrity.

Information Disclosure
NVD
EPSS
0.0%
CVE-2025-48515 This Week

Insufficient parameter sanitization in AMD Secure Processor (ASP) Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution.

Integer Overflow RCE
NVD
EPSS
0.0%
CVE-2025-48509 Monitor

Missing Checks in certain functions related to RMP initialization can allow a local admin privileged attacker to cause misidentification of I/O memory, potentially resulting in a loss of guest memory integrity

Information Disclosure
NVD
EPSS
0.0%
CVE-2025-29952 Monitor

Improper Initialization within the AMD Secure Encrypted Virtualization (SEV) firmware can allow an admin privileged attacker to corrupt RMP covered memory, potentially resulting in loss of guest memory integrity

Information Disclosure
NVD
EPSS
0.0%
CVE-2025-0031 This Week

A use after free in the SEV firmware could allow a malicous hypervisor to activate a migrated guest with the SINGLE_SOCKET policy on a different socket than the migration agent potentially resulting in loss of integrity.

Use After Free
NVD
EPSS
0.0%
CVE-2025-0029 Monitor

Improper handling of error condition during host-induced faults can allow a local high-privileged attack to selectively drop guest DMA writes, potentially resulting in a loss of SEV-SNP guest memory integrity

Information Disclosure
NVD
EPSS
0.0%
CVE-2025-54514 Monitor

Improper isolation of shared resources on a system on a chip by a malicious local attacker with high privileges could potentially lead to a partial loss of integrity.

Information Disclosure
NVD
EPSS
0.0%
CVE-2025-52536 Monitor

Improper Prevention of Lock Bit Modification in SEV firmware could allow a privileged attacker to downgrade firmware potentially resulting in a loss of integrity.

Information Disclosure
NVD
EPSS
0.0%
CVE-2025-48517 Monitor

Insufficient Granularity of Access Control in SEV firmware could allow a privileged user with a malicious hypervisor to create a SEV-ES guest with an ASID in the range meant for SEV-SNP guests potentially resulting in a partial loss of confidentiality.

Authentication Bypass
NVD
EPSS
0.0%
CVE-2025-48514 Monitor

Insufficient Granularity of Access Control in SEV firmware can allow a privileged attacker to create a SEV-ES Guest to attack SNP guest, potentially resulting in a loss of confidentiality.

Authentication Bypass
NVD
EPSS
0.0%
CVE-2025-29949 This Week

Insufficient input parameter sanitization in AMD Secure Processor (ASP) Boot Loader (legacy recovery mode only) could allow an attacker to write out-of-bounds to corrupt Secure DRAM potentially resulting in denial of service.

Denial Of Service
NVD
EPSS
0.0%
CVE-2025-29948 Monitor

Improper access control in AMD Secure Encrypted Virtualization (SEV) firmware could allow a malicious hypervisor to bypass RMP protections, potentially resulting in a loss of SEV-SNP guest memory integrity.

Authentication Bypass
NVD
EPSS
0.0%
CVE-2025-29939 Monitor

Improper access control in secure encrypted virtualization (SEV) could allow a privileged attacker to write to the reverse map page (RMP) during secure nested paging (SNP) initialization, potentially resulting in a loss of guest memory confidentiality and integrity.

Authentication Bypass
NVD
EPSS
0.0%
CVE-2025-0012 Monitor

Improper handling of overlap between the segmented reverse map table (RMP) and system management mode (SMM) memory could allow a privileged attacker corrupt or partially infer SMM memory resulting in loss of integrity or confidentiality.

Information Disclosure
NVD
EPSS
0.0%
CVE-2024-36311 Monitor

A Time-of-check time-of-use (TOCTOU) race condition in the SMM communications buffer could allow a privileged attacker to bypass input validation and perform an out of bounds read or write, potentially resulting in loss of confidentiality, integrity, or availability.

Race Condition
NVD
EPSS
0.0%
CVE-2024-36355 This Week

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 (sleep) wake up, potentially resulting in arbitrary code execution.

Buffer Overflow RCE
NVD
EPSS
0.0%
CVE-2021-26381 Monitor

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption.

Linux Memory Corruption
NVD
EPSS
0.0%
CVE-2025-29951 This Week

A buffer overflow in the AMD Secure Processor (ASP) bootloader could allow an attacker to overwrite memory, potentially resulting in privilege escalation and arbitrary code execution.

Buffer Overflow Privilege Escalation RCE
NVD
EPSS
0.0%
CVE-2025-29950 Monitor

Improper input validation in system management mode (SMM) could allow a privileged attacker to overwrite stack memory leading to arbitrary code execution.

RCE
NVD
EPSS
0.0%
CVE-2025-29946 Monitor

Insufficient or Incomplete Data Removal in Hardware Component in SEV firmware doesn't fully flush IOMMU. This can potentially lead to a loss of confidentiality and integrity in guest memory.

Information Disclosure
NVD
EPSS
0.0%
CVE-2024-36310 Monitor

Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity.

Buffer Overflow
NVD
EPSS
0.0%
CVE-2021-26410 Monitor

Improper syscall input validation in ASP (AMD Secure Processor) may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure.

Linux Information Disclosure
NVD
EPSS
0.0%
CVE-2025-6010 Awaiting Data

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. No vendor patch available.

Information Disclosure
NVD
Prev Page 6 of 6

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy