CVE-2026-4425

creationtimestamp| type| source ---|---|--- 2026-03-30 16:16:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mic2pnbenz2g 2026-04-02 11:57:35+00:00| seen| https://bsky.app/profile/thecybermind.co/post/3mij5nyg3mq2e...

PT-2026-29105

🚨 CYBERDUDEBIVASH SENTINEL APEX ALERT 🚨 Threat: CVE-2026-4425 - EastLink DNS Server Denial of Service Intel Report: https://t.co/MuBOq3PHJ2...

@hmcts/media-viewer (>=4.2.16-exui-4425 <=4.2.16-exui-4425-rel1) potentially affected by CVE-2026-27738 +1 more via @angular/ssr (=20.3.18)

@angular/ssr NPM version =20.3.18 is affected by a known vulnerability. The following packages have a transitive dependency on @angular/ssr and may be impacted: - @hmcts/media-viewer =4.2.16-exui-4425, =4.2.16-exui-4425-rel1 Source cves: CVE-2026-27738, CVE-2026-33397 Source advisory:...

@hmcts/media-viewer (>=4.2.16-exui-4425 <=4.2.16-exui-4425-rel1) potentially affected by CVE-2026-33397 via @angular/ssr (=20.3.18)

@angular/ssr NPM version =20.3.18 is affected by a known vulnerability. The following packages have a transitive dependency on @angular/ssr and may be impacted: - @hmcts/media-viewer =4.2.16-exui-4425, =4.2.16-exui-4425-rel1 Source cves: CVE-2026-33397 Source advisory: OSV:GHSA-VFX2-HV2G-XJ5F...

EUVD-2026-4425

IAQS and I6 developed by JNC has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly operate system administrative functionalities...

MiracleLinux 4 : kernel-2.6.32-754.25.1.el6 (AXSA:2019-4425:06)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4425:06 advisory. Kernel: KVM: OOB memory access via mmio ring buffer CVE-2019-14821 Tenable has extracted the preceding description block directly from the MiracleLinux...

DLA-4425-1 python-django - security update

Bulletin has no description...

CVE-2025-4425

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

CVE-2025-4425

creationtimestamp| type| source ---|---|--- 2025-07-30 03:01:15+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lv5myi7qbb2d 2025-07-30 03:02:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lv5n23uovd2s...

CVE-2025-4425

CVE-2025-4425 concerns InsydeH2O firmware used in Lenovo devices. Concrete details across connected documents indicate a stack overflow in the SMI handler, enabling a local attacker with privileges to potentially gain deep system control. Public sources do not specify affected Lenovo models/versi...

CVE-2025-4425 SetupAutomationSmm: Stack overflow vulnerability in SMI handler

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

CVE-2025-4425 SetupAutomationSmm: Stack overflow vulnerability in SMI handler

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

Linux Distros Unpatched Vulnerability : CVE-2016-4425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service deep recursion, stack consumption, and crash via crafted JSON data...

CVE-2024-4425

CVE-2024-4425 affects CemiPark software (versions 4.5, 4.7, 5.03 and potentially others). The root cause is improper handling of credentials, with integration credentials (e.g., FTP or SIP) stored in plain-text. An attacker who gains unauthorized access to the device can retrieve clear-text passw...

GHSA-4425-3V92-M6Q6

creationtimestamp| type| source ---|---|--- 2024-01-26 23:50:15+00:00| seen| https://t.me/arpsyndicate/3119...

CVE-2021-4425

creationtimestamp| type| source ---|---|--- 2023-07-12 12:35:29+00:00| seen| https://t.me/cibsecurity/66467...

CVE-2021-4425

CVE-2021-4425 affects the Defender Security plugin for WordPress. The vulnerability is a Cross-Site Request Forgery due to missing or incorrect nonce validation in the verify_otp_login_time() function, across versions up to and including 2.4.6. This can allow unauthenticated attackers to verify a...

Security Bulletin: Reverse tabnabbing vulnerability in IBM Business Automation Workflow and IBM Business Process Manager (BPM) (CVE-2019-4425)

Summary A reverse tabnabbing vulnerability in IBM Business Automation Workflow and IBM BPM has been found. Vulnerability Details CVEID: CVE-2019-4425 DESCRIPTION: IBM Business Automation Workflow could allow a user to obtain highly sensitive information from another user by inserting links that...

Ubuntu: Security Advisory (USN-4425-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : jansson (EulerOS-SA-2019-2597)

According to the version of the jansson package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - Jansson 2.7 and earlier allows context-dependent attackers to cause a denial of service deep recursion, stack consumption, and crash via crafted JS...