CVE Schwachstellen
CVE-Datenbank angereichert mit CISA KEV und NVD Daten
| CVE ID | CVSS | Schweregrad | KEV | Sichtungen |
|---|---|---|---|---|
| CVE-2025-43593 InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitati... | 7.8 | HIGH | — | 0 |
| CVE-2025-47104 InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerabil... | 5.5 | MEDIUM | — | 0 |
| CVE-2025-47105 InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerabil... | 5.5 | MEDIUM | — | 0 |
| CVE-2025-47106 InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability t... | 5.5 | MEDIUM | — | 0 |
| CVE-2024-37394 A stored cross-site scripting (XSS) vulnerability in the Project Dashboards of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into the ... | 5.4 | MEDIUM | — | 0 |
| CVE-2024-37395 A stored cross-site scripting (XSS) vulnerability in the Public Survey function of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into ... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-47102 Rejected reason: This CVE ID was issued in error by its CVE Numbering Authority and does not represent a valid vulnerability. | N/A | NONE | — | 0 |
| CVE-2022-4976 Archive::Unzip::Burst from 0.01 through 0.09 for Perl contains a bundled InfoZip library that is affected by several vulnerabilities. The bundled library is affected by CVE-2014-8139, CVE-2014-8140 a... | 9.8 | CRITICAL | — | 0 |
| CVE-2024-37396 A stored cross-site scripting (XSS) vulnerability in the Calendar function of REDCap 13.1.9 allows authenticated users to execute arbitrary web script or HTML by injecting a crafted payload into the '... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-0051 Improper input validation performed during the authentication process of FlashArray could lead to a system Denial of Service. | N/A | NONE | — | 0 |
| CVE-2025-0052 Improper input validation performed during the authentication process of FlashBlade could lead to a system Denial of Service. | N/A | NONE | — | 0 |
| CVE-2025-5971 A vulnerability was found in code-projects School Fees Payment System 1.0. It has been classified as critical. This affects an unknown part of the file /ajx.php. The manipulation of the argument name_... | 6.3 | MEDIUM | — | 0 |
| CVE-2025-5943 MicroDicom DICOM Viewer suffers from an out-of-bounds write vulnerability. Remote attackers are able to exploit this issue to potentially execute arbitrary code on affected installations of DICOM Vi... | 8.8 | HIGH | — | 0 |
| CVE-2024-1244 Improper input validation in the OSSEC HIDS agent for Windows prior to version 3.8.0 allows an attacker in with control over the OSSEC server or in possession of the agent's key to configure the agent... | N/A | NONE | — | 0 |
| CVE-2025-36852 A critical security vulnerability exists in remote cache extensions for common build systems utilizing bucket-based remote cache (such as those using Amazon S3, Google Cloud Storage, or similar object... | N/A | NONE | — | 0 |
| CVE-2025-3052 An arbitrary write vulnerability in Microsoft signed UEFI firmware allows for code execution of untrusted software. This allows an attacker to control its value, leading to arbitrary memory writes, in... | 8.2 | HIGH | — | 0 |
| CVE-2025-35940 The ArchiverSpaApi ASP.NET application uses a hard-coded JWT signing key. An unauthenticated remote attacker can generate and use a verifiable JWT token to access protected ArchiverSpaApi URL endpoin... | 8.1 | HIGH | — | 0 |
| CVE-2025-49785 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-49786 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-49787 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-5978 A vulnerability was found in Tenda FH1202 1.2.0.14. It has been classified as critical. Affected is the function fromVirtualSer of the file /goform/VirtualSer. The manipulation of the argument page le... | 8.8 | HIGH | — | 0 |
| CVE-2025-46837 Adobe Experience Manager versions 6.5.22 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts ... | 8.7 | HIGH | — | 0 |
| CVE-2025-46838 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46840 Adobe Experience Manager versions 6.5.22 and earlier are affected by an Improper Authorization vulnerability that could result in Privilege escalation. A low privileged attacker could leverage this vu... | 8.7 | HIGH | — | 0 |
| CVE-2025-49788 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-49789 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-46841 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46842 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46843 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46844 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46845 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46846 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46847 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-49790 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-46848 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46850 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46851 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46853 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46854 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46855 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46857 Adobe Experience Manager versions 6.5.22 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If a low privileged attacker is able to convince a victim to visit a URL refe... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-49791 Rejected reason: Not used | N/A | NONE | — | 0 |
| CVE-2025-46858 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46859 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46860 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46861 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46862 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46863 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-46864 Adobe Experience Manager versions 6.5.22 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by a low privileged attacker to inject malicious scripts int... | 5.4 | MEDIUM | — | 0 |
| CVE-2025-49792 Rejected reason: Not used | N/A | NONE | — | 0 |
This product uses data from the NVD API but is not endorsed or certified by the NVD.