Browse CVEs
16,497 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-6014 | Vault and Vault Enterprise’s (“Vault”) TOTP Secrets Engin... | Medium | 6.5 | Medium Risk | 01-Aug-25 | |
| CVE-2025-51502 | Reflected Cross-Site Scripting (XSS) in Microweber CMS 2.... | Medium | 6.1 | Medium Risk | 01-Aug-25 | |
| CVE-2025-51501 | Reflected Cross-Site Scripting (XSS) in the id parameter ... | Medium | 6.1 | Medium Risk | 01-Aug-25 | |
| CVE-2025-6015 | Vault and Vault Enterprise’s (“Vault”) login MFA rate lim... | Medium | 5.7 | Medium Risk | 01-Aug-25 | |
| CVE-2025-48074 | OpenEXR provides the specification and reference implemen... | Medium | 5.5 | Medium Risk | Patched | 01-Aug-25 |
| CVE-2025-6004 | Vault and Vault Enterprise’s (“Vault”) user lockout featu... | Medium | 5.3 | Medium Risk | 01-Aug-25 | |
| CVE-2025-6011 | A timing side channel in Vault and Vault Enterprise’s (“V... | Low | 3.7 | Medium Risk | 01-Aug-25 | |
| CVE-2025-54590 | webfinger.js is a TypeScript-based WebFinger client that ... | Unknown | - | Medium Risk | 01-Aug-25 | |
| CVE-2025-48072 | OpenEXR provides the specification and reference implemen... | Critical | 9.1 | Medium Risk | Patched | 31-Jul-25 |
| CVE-2025-48071 | OpenEXR provides the specification and reference implemen... | High | 7.8 | Medium Risk | Patched | 31-Jul-25 |