Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Message Queuing allows an authorized attacker to execute code over a network...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...

PT-2025-32800

Name of the Vulnerable Software and Affected Versions: Windows versions affected versions not specified Description: A race condition exists due to improper synchronization when using shared resources within the Windows Win32K - GRFX component. This allows an authorized attacker to elevate...

PT-2025-32771 · Microsoft · Windows Nt Rras +1

Name of the Vulnerable Software and Affected Versions: Windows Routing and Remote Access Service RRAS affected versions not specified Description: A heap-based buffer overflow exists in Windows Routing and Remote Access Service RRAS. This issue allows an unauthorized attacker to execute code over...

Linux Distros Unpatched Vulnerability : CVE-2025-21536

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and pri...

PT-2025-32742 · Microsoft · Exchange Server

Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: Improper validation of syntactic correctness of input allows an unauthorized attacker to perform spoofing over a network. Recommendations: At the moment, there is no...

PT-2025-32759 · Microsoft · Sql Server

Name of the Vulnerable Software and Affected Versions: SQL Server affected versions not specified Description: The software contains an improper neutralization of special elements used in an SQL command, leading to a potential SQL injection issue. This allows an authorized attacker to elevate...

PT-2025-32795 · Microsoft · Windows Directx +1

Name of the Vulnerable Software and Affected Versions: Windows DirectX affected versions not specified Description: Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network. Recommendations: At the moment, there is no...

Linux Distros Unpatched Vulnerability : CVE-2021-2020

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily...

Linux Distros Unpatched Vulnerability : CVE-2022-21423

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.28 and prior. Easily exploitable...

Linux Distros Unpatched Vulnerability : CVE-2022-21462

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily...

CVE-2025-52586

The MOD3 command traffic between the monitoring application and the inverter is transmitted in plaintext without encryption or obfuscation. This vulnerability may allow an attacker with access to a local network to intercept, manipulate, replay, or forge critical data, including read/write...

CVE-2025-52586 EG4 Electronics EG4 Inverters Cleartext Transmission of Sensitive Information

The MOD3 command traffic between the monitoring application and the inverter is transmitted in plaintext without encryption or obfuscation. This vulnerability may allow an attacker with access to a local network to intercept, manipulate, replay, or forge critical data, including read/write...

Linux Distros Unpatched Vulnerability : CVE-2024-21238

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.39 and prior, 8.4.1 an...

Linux Distros Unpatched Vulnerability : CVE-2025-30682

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and...

Linux Distros Unpatched Vulnerability : CVE-2021-35635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily...

CVE-2025-20215

A vulnerability in the meeting-join functionality of Cisco Webex Meetings could have allowed an unauthenticated, network-proximate attacker to complete a meeting-join process in place of an intended targeted user, provided the requisite conditions were satisfied. Cisco has addressed this...

CVE-2025-20215

Cisco Webex Meetings is affected by a certificate validation issue in the meeting-join flow. The vulnerability could let an unauthenticated, network-proximate attacker impersonate another user during the join process by monitoring local or adjacent networks and interrupting the join sequence unti...

PT-2025-32189 · Cisco · Cisco Webex Meetings

Name of the Vulnerable Software and Affected Versions: Cisco Webex Meetings affected versions not specified Description: A vulnerability in the meeting-join functionality of Cisco Webex Meetings could allow an unauthenticated, network-proximate attacker to complete a meeting-join process in place...