Affected Products The following products are affected by CVE-2025-61915 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below. No affected product recoded yet
Affected Products The following products are affected by CVE-2025-66216 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below. No affected product recoded yet
AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, an integer underflow vulnerability exists in the MQTT parsing logic of AIS-catcher. This vulnerability allows an attacker to trigger a massive Heap Buffer Overflow by sending a malformed MQTT packet with a manipulated Topic Length field. This leads to an immediate Denial of Service (DoS) […]
Critical Alert: Apache Kvrocks ‘RESET’ Command Flaw Grants Admin Privileges The Apache Software Foundation has issued a critical security advisory for Apache Kvrocks, a distributed key-value NoSQL database compatible with the Redis protocol. Two significant vulnerabilities ha … Read more Published Date: Nov 29, 2025 (1 hour, 46 minutes ago) Vulnerabilities has been mentioned in this article. […]
CISA Flags Actively Exploited OpenPLC Flaw (CVE-2021-26829) The Cybersecurity and Infrastructure Security Agency (CISA) has issued a new mandate for federal agencies to secure their industrial control systems following evidence of active exploitation in the wi … Read more Published Date: Nov 29, 2025 (2 hours, 3 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-58034 […]
The following table lists the changes that have been made to the CVE-2025-66034 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Nov. 29, 2025 Action […]
The following table lists the changes that have been made to the CVE-2025-66027 vulnerability over time. Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability’s severity, exploitability, or other characteristics. New CVE Received by [email protected] Nov. 29, 2025 Action […]
PubNet is a self-hosted Dart & Flutter package service. Prior to version 1.1.3, the /api/storage/upload endpoint in PubNet allows unauthenticated users to upload packages as any user by providing arbitrary author-id values. This enables identity spoofing, privilege escalation, and supply chain attacks. This issue has been patched in version 1.1.3.
ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.2 – #164, an authorization bypass vulnerability in the AJAX flagging system allows any unauthenticated user to flag any content (users, videos, photos, collections) on the platform. This can lead to mass flagging attacks, content disruption, and moderation system abuse. This issue has […]
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Prior to versions 1.16.17, 1.17.10, and 1.18.4, CiliumNetworkPolicys which use egress.toGroups.aws.securityGroupsIds to reference AWS security group IDs that do not exist or are not attached to any network interface may unintentionally allow broader outbound access than intended by the policy authors. In such […]
Unit A5, Endeavour Business Park
Penner Road, Havant
PO9 1QN
Company Registration Number: 5334133
Company VAT Number: 855 7246 95
