Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-05-13 CVE-2025-29975 Improper link resolution before file access ('link following') in Microsoft PC Manager allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-59
7.8
7.8
2025-05-13 CVE-2025-29976 Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-269
7.8
7.8
2025-05-13 CVE-2025-29978 Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
7.8
7.8
2025-05-13 CVE-2025-30310 Type Confusion vulnerability in Adobe Dreamweaver
Dreamweaver Desktop versions 21.4 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confusion') vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-843
7.8
7.8
2025-05-13 CVE-2025-30318 Out-of-bounds Write vulnerability in Adobe Indesign
InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-787
7.8
7.8
2025-05-13 CVE-2024-23815 A vulnerability has been identified in Desigo CC (All versions if access from Installed Clients to Desigo CC server is allowed from networks outside of a highly protected zone), Desigo CC (All versions if access from Installed Clients to Desigo CC server is only allowed within highly protected zones).
network
low complexity
CWE-306
7.5
7.5
2025-05-13 CVE-2025-24007 A vulnerability has been identified in SIRIUS 3RK3 Modular Safety System (MSS) (All versions), SIRIUS Safety Relays 3SK2 (All versions).
network
low complexity
CWE-327
7.5
7.5
2025-05-13 CVE-2025-30174 A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions), SIMATIC PCS neo V5.0 (All versions), SINEC NMS (All versions), SINEMA Remote Connect (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions), Totally Integrated Automation Portal (TIA Portal) V18 (All versions), Totally Integrated Automation Portal (TIA Portal) V19 (All versions), Totally Integrated Automation Portal (TIA Portal) V20 (All versions), User Management Component (UMC) (All versions < V2.15.1.1).
network
low complexity
CWE-125
7.5
7.5
2025-05-13 CVE-2025-30175 A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions), SIMATIC PCS neo V5.0 (All versions), SINEC NMS (All versions), SINEMA Remote Connect (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions), Totally Integrated Automation Portal (TIA Portal) V18 (All versions), Totally Integrated Automation Portal (TIA Portal) V19 (All versions), Totally Integrated Automation Portal (TIA Portal) V20 (All versions), User Management Component (UMC) (All versions < V2.15.1.1).
network
low complexity
CWE-787
7.5
7.5
2025-05-13 CVE-2025-30176 A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions), SIMATIC PCS neo V5.0 (All versions), SINEC NMS (All versions), SINEMA Remote Connect (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions), Totally Integrated Automation Portal (TIA Portal) V18 (All versions), Totally Integrated Automation Portal (TIA Portal) V19 (All versions), Totally Integrated Automation Portal (TIA Portal) V20 (All versions), User Management Component (UMC) (All versions < V2.15.1.1).
network
low complexity
CWE-125
7.5
7.5