Poster - CVE CyberSecurity Database News (Page 267)

Jan 31, 2025 XSS

CVE-2025-22994 - O2OA 9.1.3 Cross-Site Scripting (XSS) in Meetings Settings Explained

In early 2025, a new security vulnerability—CVE-2025-22994—was disclosed, targeting the popular enterprise collaboration system O2OA (Open2OA) version 9.1.3. This vulnerability exists

Jan 31, 2025 API

CVE-2024-11741 - Grafana Alerting VictorOps Integration Vulnerability – What You Need to Know

Grafana is a popular open-source platform used for monitoring and observability across clouds, servers, and applications. Often chosen for its strong dashboards and alerting features,

Jan 31, 2025 Java

CVE-2025-23215 - PMD Release Signing Passphrase Exposed — What Happened, Risks, and How It's Fixed

The software security world was rocked by the disclosure of CVE-2025-23215, a major vulnerability involving the widely used static code analysis tool PMD. In this

Jan 31, 2025

CVE-2025-21680 - Out-of-Bounds Access in Linux Kernel `pktgen` get_imix_entries – Explained with Code and Exploit Details

In June 2024, a critical vulnerability was addressed in the Linux kernel’s pktgen module. This vulnerability, CVE-2025-21680, allowed potential out-of-bounds memory access due to

Jan 31, 2025

CVE-2025-21681 - Lockup in Linux Kernel Open vSwitch When Transmitting to Unregistering Netdev with Carrier

A critical vulnerability, CVE-2025-21681, was recently patched in the Linux kernel affecting the Open vSwitch (OVS) module. This bug could lead to a system lockup