Browse CVEs
16,461 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-62728 | SQL injection vulnerability in Hive Metastore Server (HMS... | Medium | 5.4 | Medium Risk | Unpatched (19d) | 26-Nov-25 |
| CVE-2025-66030 | Forge (also called `node-forge`) is a native implementati... | Medium | 5.3 | Medium Risk | Partial | 26-Nov-25 |
| CVE-2025-66035 | Angular is a development platform for building mobile and... | Unknown | - | Medium Risk | 26-Nov-25 | |
| CVE-2025-66019 | pypdf is a free and open-source pure-python PDF library. ... | Unknown | - | Medium Risk | Patched | 26-Nov-25 |
| CVE-2025-66021 | OWASP Java HTML Sanitizer is a configureable HTML Sanitiz... | Unknown | - | Medium Risk | 26-Nov-25 | |
| CVE-2025-12419 | Mattermost OAuth Bypass | Critical | 9.9 | Medium Risk | Patched | 27-Nov-25 |
| CVE-2025-12421 | Mattermost Authentication Bypass | Critical | 9.9 | Medium Risk | Patched | 27-Nov-25 |
| CVE-2025-54057 | Improper Neutralization of Script-Related HTML Tags in a ... | Medium | 6.1 | Medium Risk | Patched | 27-Nov-25 |
| CVE-2025-3261 | ThingsBoard in versions prior to v4.2.1 allows an authent... | Medium | 5.4 | Medium Risk | Patched | 27-Nov-25 |
| CVE-2025-12559 | Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1,... | Medium | 4.3 | Medium Risk | Patched | 27-Nov-25 |