Lucene search
K

25 matches found

CVE
CVE
added 2026/03/10 5:4 p.m.26 views

CVE-2026-25170

Technical details for CVE-2026-25170 are not publicly provided in the supplied documents. Monitor updates from Microsoft and national advisories for affected products, fixes, and confirmed impact.

7CVSS5.8AI score0.00293EPSS
Exploits0References1Affected Software7
ATTACKERKB
ATTACKERKB
added 2026/03/10 5:4 p.m.2 views

CVE-2026-25170

Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7CVSS5.8AI score0.00293EPSS
Exploits0References2Affected Software9
Cvelist
Cvelist
added 2026/03/10 5:4 p.m.31 views

CVE-2026-25170 Windows Hyper-V Elevation of Privilege Vulnerability

...

7CVSS0.00293EPSS
Exploits0References1
Circl
Circl
added 2026/03/06 2:14 p.m.3 views

CVE-2018-25170

creationtimestamp| type| source ---|---|--- 2026-03-06 14:14:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgfipnviud27...

8.8CVSS5.8AI score0.00134EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:46 a.m.9 views

CVE-2024-25170

An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...

9.1CVSS6.8AI score0.00874EPSS
Exploits2References1
NVD
NVD
added 2025/03/03 2:15 p.m.6 views

CVE-2025-25170

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DotsquaresLtd Migrate Posts migrate-post allows Reflected XSS.This issue affects Migrate Posts: from n/a through = 1.0...

7.1CVSS0.00363EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 1:30 p.m.48 views

CVE-2025-25170

CVE-2025-25170 affects the WordPress Migrate Posts plugin (versions

7.1CVSS5.9AI score0.00363EPSS
Exploits0References1
Circl
Circl
added 2024/02/28 9:26 p.m.7 views

CVE-2024-25170

creationtimestamp| type| source ---|---|--- 2024-02-28 21:26:58+00:00| seen| https://t.me/ctinow/195880 2024-02-28 21:27:08+00:00| seen| https://t.me/ctinow/195890...

9.1CVSS4.8AI score0.00874EPSS
Exploits2References2
OSV
OSV
added 2024/02/28 12:0 a.m.8 views

CVE-2024-25170

An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...

9.1CVSS6.7AI score0.00874EPSS
Exploits2References5
Vulnrichment
Vulnrichment
added 2024/02/28 12:0 a.m.13 views

CVE-2024-25170

An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...

6.8AI score0.00874EPSS
Exploits2References3
CVE
CVE
added 2024/02/28 12:0 a.m.5718 views

CVE-2024-25170

Mezzanine v6.0.0 contains a vulnerability where attackers can bypass access controls by manipulating the Host header. Descriptions across Red Hat, GHSA, OSV, NVD, and related advisories consistently reference Host header-based bypass with potential unauthorized access to information or systems. T...

9.1CVSS6.7AI score0.00874EPSS
Exploits2References3Affected Software1
Circl
Circl
added 2023/03/13 7:23 p.m.6 views

CVE-2023-25170

creationtimestamp| type| source ---|---|--- 2023-03-13 19:23:14+00:00| seen| https://t.me/cibsecurity/59912...

8.8CVSS8.1AI score0.00216EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/13 4:55 p.m.6 views

CVE-2023-25170 PrestaShop has possible CSRF token fixation

PrestaShop is an open source e-commerce web application that, prior to version 8.0.1, is vulnerable to cross-site request forgery CSRF. When authenticating users, PrestaShop preserves session attributes. Because this does not clear CSRF tokens upon login, this might enable same-site attackers to...

5CVSS8.6AI score0.00216EPSS
Exploits0References1
CVE
CVE
added 2023/03/13 4:55 p.m.76 views

CVE-2023-25170

PrestaShop prior to version 8.0.1 is vulnerable to Cross-site request forgery (CSRF) due to CSRF tokens not being cleared on login, allowing potential session-fixation-like attacks by attackers with network access. Affected component is the authentication/session management flow; root cause is to...

8.8CVSS6.6AI score0.00216EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2022/02/25 7:15 p.m.4 views

CVE-2022-25170

The affected product is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code...

7.8CVSS6.4AI score0.00937EPSS
Exploits0References1
CVE
CVE
added 2022/02/25 6:10 p.m.112 views

CVE-2022-25170

CVE-2022-25170 affects FATEK Automation FvDesigner. The vulnerability is a stack-based buffer overflow while processing project files, enabling arbitrary code execution. Affected product/version: FvDesigner versions 1.5.100 and prior. Impact: potential for high-severity code execution; CVSS v3.1 ...

7.8CVSS8AI score0.00937EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/02/25 6:10 p.m.6 views

CVE-2022-25170 ICSA-22-055-01 FATEK Automation FvDesigner

The affected product is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code...

7.8CVSS8AI score0.00937EPSS
Exploits0References1
Circl
Circl
added 2021/02/08 10:39 p.m.6 views

CVE-2021-25170

creationtimestamp| type| source ---|---|--- 2021-02-08 22:39:38+00:00| seen| https://t.me/cibsecurity/23240...

7.8CVSS7.5AI score0.00326EPSS
Exploits0References1
CVE
CVE
added 2021/02/08 6:4 p.m.51 views

CVE-2021-25170

The CVE-2021-25170 entry concerns the Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0, where a local buffer overflow exists in the libifc.so websetremoteimageinfo function. Affected component: BMC firmware on HPE Apollo 70; root cause: buffer overf...

7.8CVSS7.7AI score0.00326EPSS
Exploits0References1Affected Software1
Circl
Circl
added 2020/11/06 8:51 p.m.7 views

CVE-2020-25170

creationtimestamp| type| source ---|---|--- 2020-11-06 20:51:08+00:00| seen| https://t.me/cibsecurity/15985...

7.8CVSS7.5AI score0.00965EPSS
Exploits0References1
Rows per page
Query Builder