CVSS: 9.8EPSS: %CPEs: 1EXPL: 0CVE-2025-62786 – Wazuh Vulnerable to Heap-based Buffer Out-Of-Bounds WRITE in decode_win_permissions
https://notcve.org/view.php?id=CVE-2025-62786
29 Oct 2025 — A compromised agent can potentially leverage this issue to perform remote code execution, by sending a specially crafted message to the wazuh manager. An attacker who is able to craft and send an agent message to the wazuh manager can leverage this issue to potentially achieve remote code execution on the wazuh manager (the exploitability of this vulnerability depends on the specifics of the respective heap allocator). • https://github.com/wazuh/wazuh/commit/2257d7998aaff34263169d16f4afc491564a771c • CWE-124: Buffer Underwrite ('Buffer Underflow') •
CVSS: 7.8EPSS: %CPEs: 1EXPL: 0CVE-2025-10934 – GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-10934
29 Oct 2025 — GIMP XWD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. ... An attacker can leverage this vulnerability to execute code in the context of the current process. An attacker can leverage this v... • https://gitlab.gnome.org/GNOME/gimp/-/commit/5c3e2122d53869599d77ef0f1bdece117b24fd7c • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.4EPSS: %CPEs: -EXPL: 0CVE-2025-61161
https://notcve.org/view.php?id=CVE-2025-61161
29 Oct 2025 — DLL hijacking vulnerability in Evope Collector 1.1.6.9.0 and related components load the wtsapi32.dll library from an uncontrolled search path (C:\ProgramData\Evope). This allows local unprivileged attackers to execute arbitrary code or escalate privileges to SYSTEM by placing a crafted DLL in that location. • https://xavilok.es/dll-hijacking-in-evopeservice--system-to-gui-shell • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: %CPEs: -EXPL: 0CVE-2025-62229 – Xorg: xmayland: use-after-free in xpresentnotify structure creation
https://notcve.org/view.php?id=CVE-2025-62229
29 Oct 2025 — This can cause memory corruption or a crash, potentially allowing an attacker to execute arbitrary code or cause a denial of service. ... An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of present_notify objects. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of roo... • https://access.redhat.com/security/cve/CVE-2025-62229 • CWE-416: Use After Free •
CVSS: 7.8EPSS: %CPEs: -EXPL: 0CVE-2025-62230 – Xorg: xwayland: use-after-free in xkb client resource removal
https://notcve.org/view.php?id=CVE-2025-62230
29 Oct 2025 — An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of resource objects. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of root. • https://access.redhat.com/security/cve/CVE-2025-62230 • CWE-416: Use After Free •
CVSS: 8.8EPSS: %CPEs: 6EXPL: 0CVE-2025-62231 – Xorg: xmayland: value overflow in xkbsetcompatmap()
https://notcve.org/view.php?id=CVE-2025-62231
29 Oct 2025 — An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of XkbSetCompatMap requests. ... An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of root. • https://access.redhat.com/security/cve/CVE-2025-62231 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-62368 – Taiga Authenticated Remote Code Execution
https://notcve.org/view.php?id=CVE-2025-62368
28 Oct 2025 — In versions 6.8.3 and earlier, a remote code execution vulnerability exists in the Taiga API due to unsafe deserialization of untrusted data. • https://github.com/taigaio/taiga-back/security/advisories/GHSA-cpcf-9276-fwc5 • CWE-502: Deserialization of Untrusted Data •
CVSS: 9.0EPSS: 0%CPEs: -EXPL: 1CVE-2025-56399 – Lavavel File Manager 3.3.1 Shell Upload
https://notcve.org/view.php?id=CVE-2025-56399
28 Oct 2025 — alexusmai laravel-file-manager 3.3.1 and before allows an authenticated attacker to achieve Remote Code Execution (RCE) through a crafted file upload. A file with a '.png` extension containing PHP code can be uploaded via the file manager interface. ... The attacker can then use the rename API to change the file extension to `.php`, and upon accessing it via a public URL, the server executes the embedded code. An authenticated remote code... • https://packetstorm.news/files/id/211003 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.4EPSS: 0%CPEs: -EXPL: 0CVE-2025-61128
https://notcve.org/view.php?id=CVE-2025-61128
28 Oct 2025 — Stack-based buffer overflow vulnerability in WAVLINK QUANTUM D3G/WL-WN530HG3 firmware M30HG3_V240730, and possibly other wavlink models allows attackers to execute arbitrary code via crafted referrer value POST to login.cgi. • https://gist.github.com/shinobu-alpha/6dd5ad7f83c16360f6564db0bc121e99 • CWE-121: Stack-based Buffer Overflow •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2025-12332 – SourceCodester Student Grades Management System admin.php delete_user cross site scripting
https://notcve.org/view.php?id=CVE-2025-12332
27 Oct 2025 — The attack may be performed from remote. • https://github.com/sanin-s1r3n/CVE-Research/blob/main/CVE-4 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-94: Improper Control of Generation of Code ('Code Injection') •