Browse CVEs
16,491 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-6011 | A timing side channel in Vault and Vault Enterprise’s (“V... | Low | 3.7 | Medium Risk | 01-Aug-25 | |
| CVE-2025-54590 | webfinger.js is a TypeScript-based WebFinger client that ... | Unknown | - | Medium Risk | 01-Aug-25 | |
| CVE-2025-48072 | OpenEXR provides the specification and reference implemen... | Critical | 9.1 | Medium Risk | Patched | 31-Jul-25 |
| CVE-2025-48071 | OpenEXR provides the specification and reference implemen... | High | 7.8 | Medium Risk | Patched | 31-Jul-25 |
| CVE-2025-51503 | A Stored Cross-Site Scripting (XSS) vulnerability in Micr... | High | 7.6 | Medium Risk | 31-Jul-25 | |
| CVE-2025-24853 | A carefully crafted request when creating a header link u... | High | 7.5 | Medium Risk | Patched | 31-Jul-25 |
| CVE-2025-48073 | OpenEXR provides the specification and reference implemen... | Medium | 6.2 | Medium Risk | Patched | 31-Jul-25 |
| CVE-2025-24854 | A carefully crafted request using the Image plugin could ... | Medium | 6.1 | Medium Risk | Patched | 31-Jul-25 |
| CVE-2025-54576 | OAuth2-Proxy is an open-source tool that can act as eithe... | Critical | 9.1 | Medium Risk | Patched | 30-Jul-25 |
| CVE-2025-54581 | vproxy is an HTTP/HTTPS/SOCKS5 proxy server. In versions ... | High | 7.5 | Medium Risk | 30-Jul-25 |