CVSS: 8.7EPSS: %CPEs: 1EXPL: 0CVE-2025-34350 – UnForm Server < 10.1.15 Doc Flow Unauthenticated File Read
https://notcve.org/view.php?id=CVE-2025-34350
25 Nov 2025 — This issue may lead to sensitive information disclosure and, in some environments, enable further lateral movement. • https://unform.com/download/uf101_readme.txt • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 8.0EPSS: %CPEs: 1EXPL: 0CVE-2025-33203
https://notcve.org/view.php?id=CVE-2025-33203
25 Nov 2025 — A successful exploit of this vulnerability may lead to information disclosure and denial of service. • https://nvd.nist.gov/vuln/detail/CVE-2025-33203 • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 7.8EPSS: %CPEs: 1EXPL: 0CVE-2025-33204
https://notcve.org/view.php?id=CVE-2025-33204
25 Nov 2025 — A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering. • https://nvd.nist.gov/vuln/detail/CVE-2025-33204 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 2.3EPSS: %CPEs: -EXPL: 0CVE-2025-33200
https://notcve.org/view.php?id=CVE-2025-33200
25 Nov 2025 — A successful exploit of this vulnerability might lead to information disclosure. • https://nvd.nist.gov/vuln/detail/CVE-2025-33200 • CWE-226: Sensitive Information in Resource Not Removed Before Reuse •
CVSS: 3.3EPSS: %CPEs: -EXPL: 0CVE-2025-33198
https://notcve.org/view.php?id=CVE-2025-33198
25 Nov 2025 — A successful exploit of this vulnerability might lead to information disclosure. • https://nvd.nist.gov/vuln/detail/CVE-2025-33198 • CWE-226: Sensitive Information in Resource Not Removed Before Reuse •
CVSS: 4.4EPSS: %CPEs: -EXPL: 0CVE-2025-33196
https://notcve.org/view.php?id=CVE-2025-33196
25 Nov 2025 — A successful exploit of this vulnerability might lead to information disclosure. • https://nvd.nist.gov/vuln/detail/CVE-2025-33196 • CWE-226: Sensitive Information in Resource Not Removed Before Reuse •
CVSS: 5.7EPSS: %CPEs: -EXPL: 0CVE-2025-33194
https://notcve.org/view.php?id=CVE-2025-33194
25 Nov 2025 — A successful exploit of this vulnerability might lead to information disclosure or denial of service. • https://nvd.nist.gov/vuln/detail/CVE-2025-33194 • CWE-180: Incorrect Behavior Order: Validate Before Canonicalize •
CVSS: 5.7EPSS: %CPEs: -EXPL: 0CVE-2025-33193
https://notcve.org/view.php?id=CVE-2025-33193
25 Nov 2025 — A successful exploit of this vulnerability might lead to information disclosure. • https://nvd.nist.gov/vuln/detail/CVE-2025-33193 • CWE-354: Improper Validation of Integrity Check Value •
CVSS: 7.8EPSS: %CPEs: -EXPL: 0CVE-2025-33189
https://notcve.org/view.php?id=CVE-2025-33189
25 Nov 2025 — A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, information disclosure, or escalation of privileges. • https://nvd.nist.gov/vuln/detail/CVE-2025-33189 • CWE-787: Out-of-bounds Write •
CVSS: 8.0EPSS: %CPEs: -EXPL: 0CVE-2025-33188
https://notcve.org/view.php?id=CVE-2025-33188
25 Nov 2025 — A successful exploit of this vulnerability might lead to information disclosure, data tampering, or denial of service. • https://nvd.nist.gov/vuln/detail/CVE-2025-33188 • CWE-269: Improper Privilege Management •