| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-49177 | Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: data leak in xfixes extension's xfixessetclientdisconnectmode | X.Org | xwayland | Medium | 6.1 | 2025-06-17 14:49:49 | Deep Dive |
| CVE-2025-49175 | Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: out-of-bounds read in x rendering extension animated cursors | X.Org | xwayland | Medium | 6.1 | 2025-06-17 14:39:39 | Deep Dive |
| CVE-2025-4404 | Freeipa: idm: privilege escalation from host to domain admin in freeipa | - | - | Critical | 9.1 | 2025-06-17 13:39:18 | Deep Dive |
| CVE-2025-6020 | Linux-pam: linux-pam directory traversal | - | - | High | 7.8 | 2025-06-17 12:44:09 | Deep Dive |
| CVE-2025-5309 | Remote Support & Privileged Remote Access server side template injection | BeyondTrust | Remote support & Privileged Remote Access | - | - | 2025-06-16 16:06:14 | Deep Dive |
| CVE-2025-49794 | Libxml: heap use after free (uaf) leads to denial of service (dos) | - | - | Critical | 9.1 | 2025-06-16 15:24:31 | Deep Dive |
| CVE-2025-49796 | Libxml: type confusion leads to denial of service (dos) | - | - | Critical | 9.1 | 2025-06-16 15:14:28 | Deep Dive |
| CVE-2025-40729 | Reflected Cross-Site Scripting (XSS) vulnerability in Customer Support System | Customer Support System | Customer Support System | - | - | 2025-06-16 08:30:21 | Deep Dive |
| CVE-2025-40728 | SQL injection vulnerability in Customer Support System | Customer Support System | Customer Support System | - | - | 2025-06-16 08:29:08 | Deep Dive |
| CVE-2025-6021 | Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2 | - | - | High | 7.5 | 2025-06-12 12:49:16 | Deep Dive |
| CVE-2025-5914 | Libarchive: double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c | - | - | High | 7.8 | 2025-06-09 19:53:49 | Deep Dive |
| CVE-2023-25997 | WordPress Sola Support Ticket plugin <= 3.18 - Arbitrary Content Deletion Vulnerability | SolaPlugins | Sola Support Ticket | Medium | 6.5 | 2025-06-06 12:54:44 | Deep Dive |
| CVE-2025-5018 | Hive Support <= 1.2.5 - Authenticated (Subscriber+) Missing Authorization via hs_update_ai_chat_settings and hive_lite_support_get_all_binbox | hivesupport | Hive Support | AI-Powered Help Desk, Live Chat and Chatbot | High | 7.1 | 2025-06-06 06:42:51 | Deep Dive |
| CVE-2025-5019 | Hive Support <= 1.2.5 - Cross-Site Request Forgery via hs_update_ai_chat_settings Function | hivesupport | Hive Support | AI-Powered Help Desk, Live Chat and Chatbot | Medium | 5.4 | 2025-06-06 06:42:49 | Deep Dive |
| CVE-2025-43026 | HP Support Assistant – Potential Escalation of Privilege | HP, Inc. | HP Support Assistant | - | - | 2025-06-05 19:41:31 | Deep Dive |
| CVE-2025-5222 | Icu: stack buffer overflow in the srbroot::addtag function | - | - | High | 7.0 | 2025-05-27 20:51:51 | Deep Dive |
| CVE-2025-48798 | Gimp: multiple use after free in xcf parser | - | - | High | 7.3 | 2025-05-27 14:05:13 | Deep Dive |
| CVE-2025-48797 | Gimp: multiple heap buffer overflows in tga parser | - | - | High | 7.3 | 2025-05-27 14:04:57 | Deep Dive |
| CVE-2025-48283 | WordPress Majestic Support plugin <= 1.1.0 - SQL Injection Vulnerability | Majestic Support | Majestic Support | Critical | 9.3 | 2025-05-23 12:43:16 | Deep Dive |
| CVE-2025-5024 | Gnome-remote-desktop: uncontrolled resource consumption due to malformed rdp pdus | Red Hat | Red Hat Enterprise Linux 10 | High | 7.4 | 2025-05-22 14:51:01 | Deep Dive |