Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-04 | CVE-2025-27219 | Unspecified vulnerability in Ruby-Lang CGI 0.3.6 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service (DoS) vulnerability. | 7.5 |
| 2025-03-04 | CVE-2025-27220 | Unspecified vulnerability in Ruby-Lang CGI 0.3.6 In the CGI gem before 0.4.2 for Ruby, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the Util#escapeElement method. | 7.5 |
| 2025-03-03 | CVE-2025-1882 | Register Interface Allows Software Access to Sensitive Data or Security Settings vulnerability in I-Drive I11 Firmware and I12 Firmware A vulnerability was found in i-Drive i11 and i12 up to 20250227. | 7.0 |
| 2025-03-03 | CVE-2024-51954 | Improper Access Control vulnerability in Esri Arcgis Server There is an improper access control issue in ArcGIS Server versions 10.9.1 through 11.3 on Windows and Linux, which under unique circumstances, could potentially allow a remote, low privileged authenticated attacker to access secure services published a standalone (Unfederated) ArcGIS Server instance. If successful this compromise would have a high impact on Confidentiality, low impact on integrity and no impact to availability of the software. | 7.1 |
| 2025-03-03 | CVE-2024-51961 | External Control of File Name or Path vulnerability in Esri Arcgis Server There is a local file inclusion vulnerability in ArcGIS Server 10.9.1 thru 11.3 that may allow a remote, unauthenticated attacker to craft a URL that could potentially disclose sensitive configuration information by reading internal files from the remote server. Due to the nature of the files accessible in this vulnerability the impact to confidentiality is High there is no impact to both integrity or availability. | 7.5 |
| 2025-03-03 | CVE-2025-1877 | Improper Resource Shutdown or Release vulnerability in Dlink Dap-1562 Firmware 1.10 A vulnerability, which was classified as critical, was found in D-Link DAP-1562 1.10. | 7.5 |
| 2025-03-03 | CVE-2025-25967 | Unspecified vulnerability in Ddsn Acora CMS 10.1.1 Acora CMS version 10.1.1 is vulnerable to Cross-Site Request Forgery (CSRF). | 8.8 |
| 2025-03-03 | CVE-2024-45782 | Classic Buffer Overflow vulnerability in multiple products A flaw was found in the HFS filesystem. | 7.8 |
| 2025-03-03 | CVE-2025-0678 | Out-of-bounds Write vulnerability in multiple products A flaw was found in grub2. | 7.8 |
| 2025-03-03 | CVE-2025-25301 | Server-Side Request Forgery (SSRF) vulnerability in Danielgatis Rembg Rembg is a tool to remove images background. | 7.5 |