EUVD-2025-34725

HCL BigFix Mobile 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy CSP. An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content...

CVE-2025-0277

CVE-2025-0277 affects HCL BigFix Mobile 3.3 and earlier. The issue arises from insecure directives in the Content Security Policy (CSP) , enabling an attacker to trick users into performing actions by insufficiently restricting sources of scripts and other content. What is vulnerable: CSP configu...

CVE-2025-0276 HCL BigFix Modern Client Management (MCM) is affected by an insecure Content Security Policy (CSP)

HCL BigFix Modern Client Management MCM 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy CSP. An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content...

EUVD-2025-34727

HCL BigFix Modern Client Management MCM 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy CSP. An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content...

CVE-2025-0276 HCL BigFix Modern Client Management (MCM) is affected by an insecure Content Security Policy (CSP)

HCL BigFix Modern Client Management MCM 3.3 and earlier are vulnerable to certain insecure directives within the Content Security Policy CSP. An attacker could trick users into performing actions by not properly restricting the sources of scripts and other content...

CVE-2025-11832

creationtimestamp| type| source ---|---|--- 2025-10-15 20:39:52+00:00| seen| https://sploitus.com/exploit?id=446D9BD0-9578-5735-AEE3-5832BAFECE63 2025-10-15 23:00:12+00:00| published-proof-of-concept| Telegram/8zMrwzbFlaQm9xXLz9w6tSk1EK-PUuGRZ72JVb8lphFHjk 2025-10-16 00:04:29+00:00| seen|...

EUVD-2025-34672

Applications using affected versions of Ehcache 3.x can experience degraded cache-write performance if the application using Ehcache utilizes keys sourced from malicious external parties in an unfiltered/unsalted way...

CVE-2025-53868

creationtimestamp| type| source ---|---|--- 2025-10-15 15:31:29+00:00| seen| https://vulnerability.circl.lu/bundle/834a30cc-c06c-49b3-9157-eb77f711c73f 2025-10-16 09:05:24+00:00| seen| https://circl.lu/pub/tr-96/ 2025-10-16 10:12:31+00:00| seen|...

CVE-2025-9967

creationtimestamp| type| source ---|---|--- 2025-10-15 10:05:19+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m37ylnj6to2k 2025-10-15 11:30:34+00:00| seen| https://gist.github.com/Darkcrai86/8f0c868123b8419c376a1246fe256a84 2025-10-19 21:02:36+00:00| seen|...

CVE-2025-59235

creationtimestamp| type| source ---|---|--- 2025-10-14 16:38:05+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2025-0315 2025-10-14 16:38:44+00:00| seen| https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review...

CVE-2025-23330

creationtimestamp| type| source ---|---|--- 2025-10-14 16:37:21+00:00| seen| https://infosec.exchange/users/quarkslab/statuses/115373496104721728 2025-10-14 16:37:26+00:00| seen| https://bsky.app/profile/quarkslab.bsky.social/post/3m365zvlfh22t 2025-10-15 02:13:52+00:00| seen|...

CVE-2025-23280

creationtimestamp| type| source ---|---|--- 2025-10-14 16:37:21+00:00| seen| https://infosec.exchange/users/quarkslab/statuses/115373496104721728 2025-10-14 16:37:26+00:00| seen| https://bsky.app/profile/quarkslab.bsky.social/post/3m365zvlfh22t 2025-10-15 00:30:25+00:00| seen|...

CVE-2025-59230

creationtimestamp| type| source ---|---|--- 2025-10-14 16:03:45+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310 2025-10-14 16:38:44+00:00| seen| https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review 2025-10-14 17:07:19+00:00| seen|...

CVE-2025-41718

creationtimestamp| type| source ---|---|--- 2025-10-14 13:44:29+00:00| seen| https://infosec.exchange/users/certvde/statuses/115372816375788701 2025-10-14 13:45:37+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3m35uf6piosw2...

CVE-2025-41699

creationtimestamp| type| source ---|---|--- 2025-10-14 13:43:53+00:00| seen| https://infosec.exchange/users/certvde/statuses/115372814013214488 2025-10-14 13:45:05+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3m35uerwse5t2...

CVE-2025-20719

creationtimestamp| type| source ---|---|--- 2025-10-14 13:27:50+00:00| seen| https://gist.github.com/Darkcrai86/aeaa61eb7be585f7778744c1d3a6c6b3 2025-10-14 13:44:50+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115372817715516192...

CERTFR-2025-ACT-043

creationtimestamp| type| source ---|---|--- 2025-10-13 12:13:08+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3m336sfepqs2y 2025-10-13 12:13:12+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/115366794855854060 2025-10-13 12:33:02+00:00| seen|...

JLSEC-2025-7 ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain...

ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file. A configuration...

CVE-2025-11522

creationtimestamp| type| source ---|---|--- 2025-10-09 09:02:49+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m2qscee2pg2m 2025-10-09 09:05:15+00:00| seen| https://gist.github.com/Darkcrai86/f20da5557be1d5295fb5f8b32d721d0f 2026-04-08 23:32:00+00:00| seen|...

CVE-2025-7634

creationtimestamp| type| source ---|---|--- 2025-10-09 06:03:16+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3m2qibd3ptv2s 2025-10-09 06:42:32+00:00| seen| https://gist.github.com/Darkcrai86/feb21292424b5d1ee93a2766e9280b45...