Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-05-13 CVE-2025-31930 A vulnerability has been identified in IEC 1Ph 7.4kW Child socket (8EM1310-2EH04-0GA0) (All versions < V2.135), IEC 1Ph 7.4kW Child socket/ shutter (8EM1310-2EN04-0GA0) (All versions < V2.135), IEC 1Ph 7.4kW Parent cable 7m (8EM1310-2EJ04-3GA1) (All versions < V2.135), IEC 1Ph 7.4kW Parent cable 7m incl.
low complexity
CWE-1188
8.8
8.8
2025-05-13 CVE-2025-32454 A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.14), Teamcenter Visualization V2312 (All versions < V2312.0010), Teamcenter Visualization V2406 (All versions < V2406.0008), Teamcenter Visualization V2412 (All versions < V2412.0004).
local
low complexity
CWE-125
7.8
7.8
2025-05-13 CVE-2025-40566 A vulnerability has been identified in SIMATIC PCS neo V4.1 (All versions < V4.1 Update 3), SIMATIC PCS neo V5.0 (All versions < V5.0 Update 1).
network
low complexity
CWE-613
8.8
8.8
2025-05-13 CVE-2025-40574 A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions).
local
low complexity
CWE-732
7.8
7.8
2025-05-13 CVE-2025-40581 A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed).
local
low complexity
CWE-288
7.1
7.1
2025-05-13 CVE-2025-40582 A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions with SINEMA Remote Connect Edge Client installed).
local
low complexity
CWE-78
7.8
7.8
2025-05-13 CVE-2025-41645 An unauthenticated remote attacker could use a demo account of the portal to hijack devices that were created in that account by mistake.
network
low complexity
CWE-669
8.6
8.6
2025-05-13 CVE-2025-4317 The TheGem theme for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the thegem_get_logo_url() function in all versions up to, and including, 5.10.3.
network
low complexity
CWE-434
8.8
8.8
2025-05-13 CVE-2025-4473 The Frontend Dashboard plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the ajax_request() function in versions 1.0 to 2.2.7.
network
low complexity
CWE-285
8.8
8.8
2025-05-13 CVE-2025-4474 The Frontend Dashboard plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the fed_admin_setting_form_function() function in versions 1.0 to 2.2.7.
network
low complexity
CWE-285
8.8
8.8