Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2025-05-28 CVE-2025-32803 In some cases, Kea log files or lease files may be world-readable. This issue affects Kea versions 2.4.0 through 2.4.1, 2.6.0 through 2.6.2, and 2.7.0 through 2.7.8.
local
low complexity
4.0
2025-05-28 CVE-2025-32801 Kea configuration and API directives can be used to load a malicious hook library.
local
low complexity
7.8
2025-05-28 CVE-2025-32802 Kea configuration and API directives can be used to overwrite arbitrary files, subject to permissions granted to Kea.
local
low complexity
6.1
2025-05-28 CVE-2024-38341 IBM Sterling Secure Proxy 6.0.0.0 through 6.0.3.1, 6.1.0.0 through 6.1.0.0, and 6.2.0.0 through 6.2.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
high complexity
CWE-328
5.9
2025-05-28 CVE-2024-51453 IBM Sterling Secure Proxy 6.2.0.0 through 6.2.0.1 could allow a remote attacker to traverse directories on the system.
network
low complexity
CWE-22
4.3
2025-05-28 CVE-2025-3357 IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 19 could allow a remote attacker to execute arbitrary code due to improper validation of an index value of a dynamically allocated array.
network
low complexity
CWE-1285
critical
9.8
2025-05-28 CVE-2025-5297 A vulnerability, which was classified as critical, has been found in SourceCodester Computer Store System 1.0.
local
low complexity
CWE-121
5.3
2025-05-28 CVE-2025-5298 Injection vulnerability in Campcodes Online Hospital Management System 1.0
A vulnerability, which was classified as critical, was found in Campcodes Online Hospital Management System 1.0.
network
low complexity
campcodes CWE-74
critical
9.8
2025-05-28 CVE-2025-5299 A vulnerability was found in SourceCodester Client Database Management System 1.0.
network
low complexity
CWE-434
7.3
2025-05-28 CVE-2025-5295 A vulnerability classified as critical was found in FreeFloat FTP Server 1.0.0.
network
low complexity
CWE-120
7.3