Browse CVEs
16,461 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-66040 | Spotipy is a Python library for the Spotify Web API. Prio... | Low | 3.6 | Medium Risk | Patched | 27-Nov-25 |
| CVE-2025-66371 | Peppol-py XXE Attack | Medium | 5.0 | Medium Risk | Patched | 28-Nov-25 |
| CVE-2025-66372 | Mustang before 2.16.3 allows exfiltrating files via XXE a... | Low | 2.8 | Medium Risk | Patched | 28-Nov-25 |
| CVE-2025-12183 | Out-of-bounds memory operations in org.lz4:lz4-java 1.8.0... | Unknown | - | Medium Risk | 28-Nov-25 | |
| CVE-2025-66034 | fontTools is a library for manipulating fonts, written in... | Medium | 6.3 | Medium Risk | Patched | 29-Nov-25 |
| CVE-2025-66221 | Werkzeug is a comprehensive WSGI web application library.... | Medium | 5.3 | Medium Risk | Partial | 29-Nov-25 |
| CVE-2025-64715 | Cilium is a networking, observability, and security solut... | Medium | 4.0 | Medium Risk | Patched | 29-Nov-25 |
| CVE-2025-66401 | MCP Watch Command Injection Vulnerability | Critical | 9.8 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-66405 | Portkey.ai Gateway SSRF Vulnerability | Critical | 9.8 | Medium Risk | Patched | 01-Dec-25 |
| CVE-2025-66301 | Grav File-Based Web Platform Vulnerability | Critical | 9.6 | Medium Risk | Patched | 01-Dec-25 |