Vulnerabilities > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-18 | CVE-2024-56347 | IBM AIX 7.2 and 7.3 nimsh service SSL/TLS protection mechanisms could allow a remote attacker to execute arbitrary commands due to improper process controls. | 9.6 |
| 2025-03-18 | CVE-2024-8997 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Vestel EVC04 Configuration Interface allows SQL Injection.This issue affects EVC04 Configuration Interface: through 18.03.2025. | 9.8 |
| 2025-03-18 | CVE-2024-23943 | An unauthenticated remote attacker can gain access to the cloud API due to a lack of authentication for a critical function in the affected devices. | 9.1 |
| 2025-03-17 | CVE-2025-29911 | Out-of-bounds Write vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29912 | Heap-based Buffer Overflow vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29913 | Integer Underflow (Wrap or Wraparound) vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29909 | Unspecified vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-2385 | SQL Injection vulnerability in Code-Projects Modern BAG 1.0 A vulnerability has been found in code-projects Modern Bag 1.0 and classified as critical. | 9.8 |
| 2025-03-17 | CVE-2025-2386 | SQL Injection vulnerability in PHPgurukul Local Services Search Engine Management System 1.0 A vulnerability was found in PHPGurukul Local Services Search Engine Management System 1.0 and classified as critical. | 9.8 |
| 2025-03-17 | CVE-2025-2383 | SQL Injection vulnerability in PHPgurukul Doctor Appointment Management System 1.0.0 A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Appointment Management System 1.0. | 9.8 |