CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-14847link is external MongoDB and MongoDB Server Improper Handling of Length Parameter Inconsistency Vulnerability This type of vulnerability is a frequent...

PT-2025-34595 · Mitsubishi · Melsec Iq-F Series Cpu Module

Name of the Vulnerable Software and Affected Versions: Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module affected versions not specified Description: An improper handling of a length parameter inconsistency exists in the web server function of the product. This allows a remote,...

PT-2023-25587 · Samsung · Samsung Mobile Processor Exynos +1

Name of the Vulnerable Software and Affected Versions: Samsung Exynos Mobile Processor and Wearable Processor versions 9810, 9610, 9820, 980, 850, 1080, 2100, 2200, 1280, 1380, 1330, 9110, W920 Description: An issue was discovered in Samsung Exynos Mobile Processor and Wearable Processor. Imprope...

SUSE CVE-2020-11907

The Treck TCP/IP stack before 6.0.1.66 improperly handles a Length Parameter Inconsistency in TCP...

PT-2022-18245 · Unknown · Rosariosis Student Information System +1

Name of the Vulnerable Software and Affected Versions: rosariosis versions prior to 10.0 RosarioSIS Student Information System versions prior to 10.1 Description: The issue is related to improper handling of length parameter inconsistency in the GitHub repository francoisjacquet/rosariosis...