Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-08 | CVE-2025-29827 | Improper Authorization vulnerability in Microsoft Azure Automation Improper Authorization in Azure Automation allows an authorized attacker to elevate privileges over a network. | 8.8 |
| 2025-05-08 | CVE-2025-29972 | Server-Side Request Forgery (SSRF) vulnerability in Microsoft Azure Storage Resource Provider Server-Side Request Forgery (SSRF) in Azure allows an authorized attacker to perform spoofing over a network. | 9.8 |
| 2025-05-08 | CVE-2025-33072 | Improper Access Control vulnerability in Microsoft Msagsfeedback.Azurewebsites.Net Improper access control in Azure allows an unauthorized attacker to disclose information over a network. | 7.5 |
| 2025-05-08 | CVE-2025-47732 | Deserialization of Untrusted Data vulnerability in Microsoft Dataverse Microsoft Dataverse Remote Code Execution Vulnerability | 9.8 |
| 2025-05-08 | CVE-2025-47733 | Server-Side Request Forgery (SSRF) vulnerability in Microsoft Power Apps Server-Side Request Forgery (SSRF) in Microsoft Power Apps allows an unauthorized attacker to disclose information over a network | 7.5 |
| 2025-05-08 | CVE-2025-4440 | A vulnerability was found in H3C GR-1800AX up to 100R008 and classified as critical. low complexity CWE-120 | 8.0 |
| 2025-05-08 | CVE-2025-4441 | Classic Buffer Overflow vulnerability in Dlink Dir-605L Firmware 2.13B01 A vulnerability was found in D-Link DIR-605L 2.13B01. | 9.8 |
| 2025-05-08 | CVE-2025-1329 | Out-of-bounds Write vulnerability in IBM Cics TX 11.1.0.0 IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyaddr function. | 7.8 |
| 2025-05-08 | CVE-2025-1330 | Out-of-bounds Write vulnerability in IBM Cics TX 11.1.0.0 IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyname function. | 7.8 |
| 2025-05-08 | CVE-2025-1331 | Use of Inherently Dangerous Function vulnerability in IBM Cics TX 11.1.0.0 IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function. | 7.8 |