PT-2026-36747

CVE-2025-12993 - Apache HTTP Server Cross-Site Scripting Vulnerability CVE ID :CVE-2025-12993 Published : May 1, 2026, 9:16 p.m. | 54 minutes ago Description :Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-67968. Reason: This candidate is a reservation duplicate of...

CVE-2025-13890

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-12494. Reason: This candidate is a reservation duplicate of CVE-2025-12494. Notes: All CVE users should reference CVE-2025-12494 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

CVE-2025-39849

creationtimestamp| type| source ---|---|--- 2026-04-02 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0397/ 2026-04-07 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/ubuntu-linux-kernel-multiple-vulnerabilities20260408 2026-05-10 18:00:00+00:00| seen|...

IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.3 (7261761)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a vulnerability as referenced in the 7261761 advisory. - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expect...

CVE-2025-13965

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-12500. Reason: This candidate is a reservation duplicate of CVE-2025-12500. Notes: All CVE users should reference CVE-2025-12500 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

CVE-2025-71225

A race condition flaw was found in the Linux kernel's MD RAID1 driver. When updating the raiddisks count via sysfs during concurrent I/O errors, the freezearray function may return before all queued r1bio structures are released. This can cause freer1bio to access memory out of bounds and...

CVE-2025-67645

creationtimestamp| type| source ---|---|--- 2026-01-28 00:52:35+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdh2nxqvfl22 2026-01-28 01:32:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdh4vf33q22g...

ALSA-2026:0991 Moderate: glib2 security update

GLib provides the core application building blocks for libraries and applications written in C. It provides the core object system used in GNOME, the main loop implementation, and a large set of utility functions for strings and common data structures. Security Fixes: glib: Integer overflow in in...

CVE-2025-58923

creationtimestamp| type| source ---|---|--- 2026-01-20 20:22:11+00:00| seen| Telegram/0xDArAX3HG3crsZxcgbRQEYLhb2wCsLIArjPpvex34-6k...

CVE-2025-14883

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-68016. Reason: This candidate is a reservation duplicate of CVE-2025-68016. Notes: All CVE users should reference CVE-2025-68016 instead of this candidate. All references and descriptions in this candidate have been removed to prevent...

MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.13.el7.AXS7 (AXSA:2025-10836:65)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10836:65 advisory. can: bcm: Fix UAF in bcmprocshow CVE-2023-52922 udmabuf: fix a buf size overflow issue during udmabuf creation CVE-2025-37803 CVEs: CVE-2023-52922 ...

EUVD-2025-204842

A stack overflow in the src/main.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service DoS via injecting a crafted input into the filename parameter...

EUVD-2025-204573

DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2025-67037. Reason: This record is a reservation duplicate of CVE-2025-67037. Notes: All CVE users should reference CVE-2025-67037 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

EUVD-2025-204576

DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2025-67038. Reason: This record is a reservation duplicate of CVE-2025-67038. Notes: All CVE users should reference CVE-2025-67038 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

EUVD-2025-204577

DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2025-67041. Reason: This record is a reservation duplicate of CVE-2025-67041. Notes: All CVE users should reference CVE-2025-67041 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage...

EUVD-2025-204353

EasyPHP Webserver 14.1 contains a path traversal vulnerability that allows remote users with low privileges to access files outside the document root by bypassing SecurityManager restrictions. Attackers can send GET requests with encoded directory traversal sequences like /..%5c..%5c to read syst...

CVE-2025-14885

creationtimestamp| type| source ---|---|--- 2025-12-18 20:33:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mabzjy6dzz2c...

CVE-2025-68325

In the Linux kernel, the following vulnerability has been resolved: net/sched: schcake: Fix incorrect qlen reduction in cakedrop In cakedrop, qdisctreereducebacklog is used to update the qlen and backlog of the qdisc hierarchy. Its caller, cakeenqueue, assumes that the parent qdisc will enqueue t...

CVE-2025-68249

In the Linux kernel, the following vulnerability has been resolved: most: usb: hdmprobe: Fix calling putdevice before device initialization The early error path in hdmprobe can jump to errfreemdev before &mdev-;dev has been initialized with deviceinitialize. Calling putdevice&mdev-;dev there...

EUVD-2025-203476

AA maliciously crafted MODEL file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...