CVE-2025-49202 - Apache HTTP Server Deserialization Vulnerability
CVE ID : CVE-2025-49202
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49202
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49203 - Apache HTTP Server Cross-Site Request Forgery
CVE ID : CVE-2025-49203
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49203
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49204 - Apache HTTP Server Unvalidated User Input
CVE ID : CVE-2025-49204
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49204
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49205 - Apache HTTP Server Cross-Site Request Forgery
CVE ID : CVE-2025-49205
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49205
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49206 - Apache HTTP Server Unvalidated User Input
CVE ID : CVE-2025-49206
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49206
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49207 - Apache HTTP Server Cross-Site Request Forgery
CVE ID : CVE-2025-49207
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49207
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49208 - Apache HTTP Server Unauthenticated Remote Code Execution
CVE ID : CVE-2025-49208
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49208
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49209 - Apache HTTP Server Unvalidated User Input
CVE ID : CVE-2025-49209
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49209
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49210 - Apache HTTP Server Unvalidated User Input
CVE ID : CVE-2025-49210
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49210
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : Rejected reason: Not used
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-49223 - Billboard.js Prototype Pollution Vulnerability
CVE ID : CVE-2025-49223
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : billboard.js before 3.15.1 was discovered to contain a prototype pollution via the function generate, which could allow attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-49223
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : billboard.js before 3.15.1 was discovered to contain a prototype pollution via the function generate, which could allow attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary properties.
Severity: 0.0 | NA
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-5552 - ChestnutCMS Groovy Deserialization Remote Vulnerability
CVE ID : CVE-2025-5552
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : A vulnerability was found in ChestnutCMS up to 15.1. It has been declared as critical. This vulnerability affects unknown code of the file /dev-api/groovy/exec of the component API Endpoint. The manipulation leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-5552
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : A vulnerability was found in ChestnutCMS up to 15.1. It has been declared as critical. This vulnerability affects unknown code of the file /dev-api/groovy/exec of the component API Endpoint. The manipulation leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-5553 - PHPGurukul Rail Pass Management System SQL Injection
CVE ID : CVE-2025-5553
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : A vulnerability classified as critical was found in PHPGurukul Rail Pass Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download-pass.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-5553
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : A vulnerability classified as critical was found in PHPGurukul Rail Pass Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download-pass.php. The manipulation of the argument searchdata leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 7.3 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-5554 - PHPGurukul Rail Pass Management System SQL Injection Vulnerability
CVE ID : CVE-2025-5554
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : A vulnerability, which was classified as critical, has been found in PHPGurukul Rail Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/pass-bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-5554
Published : June 4, 2025, 3:15 a.m. | 19 minutes ago
Description : A vulnerability, which was classified as critical, has been found in PHPGurukul Rail Pass Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/pass-bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Severity: 6.3 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20984 - Samsung Cloud for Galaxy Watch Default Permission Vulnerability
CVE ID : CVE-2025-20984
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Incorrect default permission in Samsung Cloud for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to access data in Samsung Cloud for Galaxy Watch.
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20984
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Incorrect default permission in Samsung Cloud for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to access data in Samsung Cloud for Galaxy Watch.
Severity: 6.8 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20985 - Microsoft Xbox ThemeManager Privilege Escalation Vulnerability
CVE ID : CVE-2025-20985
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper privilege management in ThemeManager prior to SMR Jun-2025 Release 1 allows local privileged attackers to reuse trial items.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20985
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper privilege management in ThemeManager prior to SMR Jun-2025 Release 1 allows local privileged attackers to reuse trial items.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20986 - Samsung Galaxy Watch Screen Capture Access Control Vulnerability
CVE ID : CVE-2025-20986
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper access control in ScreenCapture for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to take screenshots.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20986
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper access control in ScreenCapture for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to take screenshots.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20987 - Samsung Galaxy Fingerprint Vulnerability - Authentication Bypass
CVE ID : CVE-2025-20987
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper access control in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a auth_token.
Severity: 5.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20987
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper access control in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a auth_token.
Severity: 5.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20988 - Qualcomm Fingerprint Trustlet OOB Read Vulnerability
CVE ID : CVE-2025-20988
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Out-of-bounds read in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to read out-of-bounds memory.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20988
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Out-of-bounds read in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to read out-of-bounds memory.
Severity: 5.5 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20989 - Fingerprint Trustlet Log Forgery Vulnerability
CVE ID : CVE-2025-20989
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper logging in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a hmac_key.
Severity: 5.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20989
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper logging in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a hmac_key.
Severity: 5.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20991 - Android Bluetooth Improper Export of Components Vulnerability
CVE ID : CVE-2025-20991
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper export of Android application components in Bluetooth prior to SMR Jun-2025 Release 1 allows local attackers to make devices discoverable.
Severity: 4.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20991
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Improper export of Android application components in Bluetooth prior to SMR Jun-2025 Release 1 allows local attackers to make devices discoverable.
Severity: 4.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE-2025-20992 - Samsung Camera Out-of-Bounds Read Vulnerability
CVE ID : CVE-2025-20992
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Out-of-bound read in libsecimaging.camera.samsung.so prior to SMR Feb-2025 Release 1 allows local attackers to read out-of-bounds memory.
Severity: 4.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
CVE ID : CVE-2025-20992
Published : June 4, 2025, 5:15 a.m. | 2 hours, 19 minutes ago
Description : Out-of-bound read in libsecimaging.camera.samsung.so prior to SMR Feb-2025 Release 1 allows local attackers to read out-of-bounds memory.
Severity: 4.0 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more...