Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-04 | CVE-2025-1898 | Classic Buffer Overflow vulnerability in Tenda TX3 Firmware 16.03.13.11 A vulnerability, which was classified as critical, was found in Tenda TX3 16.03.13.11_multi. | 7.5 |
| 2025-03-04 | CVE-2025-1893 | Unspecified vulnerability in Open5Gs A vulnerability was found in Open5GS up to 2.7.2. | 7.5 |
| 2025-03-04 | CVE-2025-1891 | Cross-Site Request Forgery (CSRF) vulnerability in Qzw1210 Shishuocms 1.1 A vulnerability was found in shishuocms 1.1 and classified as problematic. | 8.8 |
| 2025-03-04 | CVE-2025-27219 | Unspecified vulnerability in Ruby-Lang CGI In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. | 7.5 |
| 2025-03-04 | CVE-2025-27220 | Unspecified vulnerability in Ruby-Lang CGI In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method. | 7.5 |
| 2025-03-03 | CVE-2025-1882 | Register Interface Allows Software Access to Sensitive Data or Security Settings vulnerability in I-Drive I11 Firmware and I12 Firmware A vulnerability was found in i-Drive i11 and i12 up to 20250227. | 7.0 |
| 2025-03-03 | CVE-2024-51954 | Unspecified vulnerability in Esri Arcgis Server 10.9.1/11.1 There is an improper access control issue in ArcGIS Server versions 11.3 and below on Windows and Linux, which under unique circumstances, could potentially allow a remote, low privileged authenticated attacker to access secure services published a standalone (Unfederated) ArcGIS Server instance. If successful this compromise would have a high impact on Confidentiality, low impact on integrity and no impact to availability of the software. | 7.1 |
| 2025-03-03 | CVE-2025-1877 | Improper Resource Shutdown or Release vulnerability in Dlink Dap-1562 Firmware 1.10 A vulnerability, which was classified as critical, was found in D-Link DAP-1562 1.10. | 7.5 |
| 2025-03-03 | CVE-2025-25967 | Unspecified vulnerability in Ddsn Acora CMS 10.1.1 Acora CMS version 10.1.1 is vulnerable to Cross-Site Request Forgery (CSRF). | 8.8 |
| 2025-03-03 | CVE-2025-27501 | Server-Side Request Forgery (SSRF) vulnerability in Openziti OpenZiti is a free and open source project focused on bringing zero trust to any application. | 8.6 |