Common Vulnerabilities and Exposures (CVE)
CVE-2025-21413
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21411
Windows Telephony Service Remote Code Execution Vulnerability
CVE-2022-35737
SQLite 1.0.12 through 3.39.x before 3.39.2 sometimes allows an array-bounds overflow if billions of bytes are used in a string argument to a C API.
CVE-2025-21104
Dell NetWorker, versions prior to 19.11.0.4 and version 19.12, contains an URL Redirection to Untrusted Site ('Open Redirect') Vulnerability in NetWorker Management Console. An unauthenticated attacker with remote access could potentially e...
CVE-2026-26187
lakeFS is an open-source tool that transforms object storage into a Git-like repositories. Prior to 1.77.0, the local block adapter (pkg/block/local/adapter.go) allows authenticated users to read and write files outside their designated sto...
CVE-2022-42916
In curl before 7.86.0, the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support, curl can be instructed to use HTTPS directly (instead of using an insecure cleartext HTTP step) even when HTTP is provided i...
CVE-2025-24989
An improper access control vulnerability in Power Pages allows an unauthorized attacker to elevate privileges over a network potentially bypassing the user registration control. This vulnerability has already been mitigated in the service a...
CVE-2025-21355
Missing Authentication for Critical Function in Microsoft Bing allows an unauthorized attacker to execute code over a network
CVE-2025-21401
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2025-24042
Visual Studio Code JS Debug Extension Elevation of Privilege Vulnerability
CVE-2025-21414
Windows Core Messaging Elevation of Privileges Vulnerability
CVE-2025-21254
Internet Connection Sharing (ICS) Denial of Service Vulnerability