CVSS: -EPSS: %CPEs: -EXPL: 0CVE-2025-50675
https://notcve.org/view.php?id=CVE-2025-50675
07 Aug 2025 — The directory is accessible with full read, write, and execute permissions for all users, allowing unprivileged users to manipulate files within the directory, including executable files like GPMAW3.exe, Fragment.exe, and the uninstaller GPsetup64_17028.exe. ... By exploiting this flaw, an attacker could gain administrative privileges and execute arbitrary code in the context of the admin, resulting in privilege escalation. • https://www.gpmaw.com/html/downloads.html •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-6634 – TGA File Parsing Memory Corruption Vulnerability
https://notcve.org/view.php?id=CVE-2025-6634
06 Aug 2025 — A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process. • https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0016 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.7EPSS: 0%CPEs: 1EXPL: 0CVE-2025-6633 – RBG File Parsing Out-of-Bounds Write Vulnerability
https://notcve.org/view.php?id=CVE-2025-6633
06 Aug 2025 — A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process. • https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0016 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 1%CPEs: 1EXPL: 1CVE-2025-7769 – Improper Neutralization of Special Elements used in a Command ('Command Injection') in Tigo Energy Cloud Connect Advanced
https://notcve.org/view.php?id=CVE-2025-7769
06 Aug 2025 — Tigo Energy's CCA is vulnerable to a command injection vulnerability in the /cgi-bin/mobile_api endpoint when the DEVICE_PING command is called, allowing remote code execution due to improper handling of user input. When used with default credentials, this enables attackers to execute arbitrary commands on the device that could cause potential unauthorized access, service disruption, and data exposure. • https://packetstorm.news/files/id/207909 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-6632 – PSD File Parsing Out-of-Bounds Read Vulnerability
https://notcve.org/view.php?id=CVE-2025-6632
06 Aug 2025 — A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process. • https://www.autodesk.com/trust/security-advisories/adsk-sa-2025-0016 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2025-20331 – Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabiliy
https://notcve.org/view.php?id=CVE-2025-20331
06 Aug 2025 — An attacker could exploit this vulnerability by injecting malicious code into specific pages of the interface. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ise_xss_acc_cont-YsR4uT4U •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-3354 – IBM Tivoli Monitoring code execution
https://notcve.org/view.php?id=CVE-2025-3354
06 Aug 2025 — A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash. • https://www.ibm.com/support/pages/node/7241472 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-3320 – IBM Tivoli Monitoring code execution
https://notcve.org/view.php?id=CVE-2025-3320
06 Aug 2025 — A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash. • https://www.ibm.com/support/pages/node/7241472 • CWE-122: Heap-based Buffer Overflow •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23319
https://notcve.org/view.php?id=CVE-2025-23319
06 Aug 2025 — A successful exploit of this vulnerability might lead to remote code execution, denial of service, data tampering, or information disclosure. • https://nvd.nist.gov/vuln/detail/CVE-2025-23319 • CWE-805: Buffer Access with Incorrect Length Value •
CVSS: 9.4EPSS: 6%CPEs: 1EXPL: 0CVE-2025-23317
https://notcve.org/view.php?id=CVE-2025-23317
06 Aug 2025 — A successful exploit of this vulnerability might lead to remote code execution, denial of service, data tampering, or information disclosure. • https://nvd.nist.gov/vuln/detail/CVE-2025-23317 • CWE-122: Heap-based Buffer Overflow •