Lucene search
K

5 matches found

Cvelist
Cvelist
added yesterday18 views

CVE-2026-59225 Open WebUI: Arena task endpoints can bypass underlying model access controls

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.12 before 0.10.0, an authenticated non-admin user with read access to an arena wrapper model can reach a restricted underlying model through task endpoints such as /api/v1/tasks/moa/completions. The...

5.4CVSS
Exploits0References4
EUVD
EUVD
added 2025/11/11 12:17 a.m.2 views

EUVD-2025-59225

Malicious code in ida-ikan12-sluey npm...

6.6AI score
Exploits0
CVE
CVE
added 2025/10/14 5:1 p.m.22 views

CVE-2025-59225

CVE-2025-59225 is a Microsoft Excel Remote Code Execution vulnerability caused by a use-after-free. The vulnerability allows a local attacker to execute code on a vulnerable system. Various security advisories and update plugins confirm Excel-related fixes in October 2025 releases (MSRC/KB5002794...

7.8CVSS7.1AI score0.00347EPSS
Exploits0References1Affected Software5
Cvelist
Cvelist
added 2025/10/14 5:1 p.m.7 views

CVE-2025-59225 Microsoft Excel Remote Code Execution Vulnerability

...

7.8CVSS0.00347EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2025/10/14 2:0 p.m.10 views

Description of the security update for Excel 2016: October 14, 2025 (KB5002794)

Description of the security update for Excel 2016: October 14, 2025 KB5002794 Summary This security update resolves Microsoft Excel Information Disclosure Vulnerability and Microsoft Excel Remote Code Execution Vulnerability. To learn more about the vulnerabilities, see the following security...

7.8CVSS8.6AI score0.00596EPSS
Exploits0
Rows per page
Query Builder