Search
Search Results (310882 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2025-59220 | 1 Microsoft | 7 Windows, Windows 10, Windows 11 and 4 more | 2025-09-20 | 7 High |
| Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-59216 | 1 Microsoft | 4 Windows, Windows 11, Windows Server and 1 more | 2025-09-20 | 7 High |
| Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-59215 | 1 Microsoft | 5 Graphics Component, Windows, Windows 11 and 2 more | 2025-09-20 | 7 High |
| Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally. | ||||
| CVE-2025-59720 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59721 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59722 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59723 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59724 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59725 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59726 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-59727 | 2025-09-20 | N/A | ||
| Not used | ||||
| CVE-2025-56706 | 1 Edimax | 2 Br-6473ax, Br-6473ax Firmware | 2025-09-19 | 8 High |
| Edimax BR-6473AX v1.0.28 was discovered to contain a remote code execution (RCE) vulnerability via the Object parameter in the openwrt_getConfig function. | ||||
| CVE-2025-10290 | 2 Apple, Mozilla | 3 Ios, Firefox Focus, Focus For Ios | 2025-09-19 | 6.5 Medium |
| Opening links via the contextual menu in Focus iOS for certain URL schemes would fail to load but would not refresh the toolbar correctly, allowing attackers to spoof websites if users were coerced into opening a link explicitly through a long-press This vulnerability affects Focus for iOS < 143.0. | ||||
| CVE-2025-10527 | 2 Mozilla, Redhat | 4 Firefox, Firefox Esr, Thunderbird and 1 more | 2025-09-19 | 7.1 High |
| This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | ||||
| CVE-2025-10528 | 2 Mozilla, Redhat | 4 Firefox, Firefox Esr, Thunderbird and 1 more | 2025-09-19 | 7.3 High |
| This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | ||||
| CVE-2025-10529 | 2 Mozilla, Redhat | 4 Firefox, Firefox Esr, Thunderbird and 1 more | 2025-09-19 | 6.5 Medium |
| This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | ||||
| CVE-2025-10530 | 1 Mozilla | 2 Firefox, Thunderbird | 2025-09-19 | 6.5 Medium |
| This vulnerability affects Firefox < 143 and Thunderbird < 143. | ||||
| CVE-2025-10531 | 1 Mozilla | 2 Firefox, Thunderbird | 2025-09-19 | 5.4 Medium |
| This vulnerability affects Firefox < 143 and Thunderbird < 143. | ||||
| CVE-2025-10532 | 2 Mozilla, Redhat | 4 Firefox, Firefox Esr, Thunderbird and 1 more | 2025-09-19 | 6.5 Medium |
| This vulnerability affects Firefox < 143, Firefox ESR < 140.3, Thunderbird < 143, and Thunderbird < 140.3. | ||||
| CVE-2025-10687 | 2 Jkev, Sourcecodester | 2 Responsive E-learning System, Responsive E-learning System | 2025-09-19 | 7.3 High |
| A vulnerability was found in SourceCodester Responsive E-Learning System 1.0. This affects an unknown part of the file /admin/add_teacher.php. The manipulation of the argument Username results in sql injection. It is possible to launch the attack remotely. The exploit has been made public and could be used. | ||||