Browse CVEs
145,497 medium severity vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2025-35968 | Protection mechanism failure in the UEFI firmware for the... | Medium | 6.4 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-24848 | Protection mechanism failure for some Intel(R) CIP softwa... | Medium | 6.3 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-60723 | Concurrent execution using shared resource with improper ... | Medium | 6.3 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-42886 | Due to a Reflected Cross-Site Scripting (XSS) vulnerabili... | Medium | 6.1 | Low Risk | Unpatched (35d) | 11-Nov-25 |
| CVE-2025-42893 | Due to an Open Redirect vulnerability in SAP Business Con... | Medium | 6.1 | Low Risk | Unpatched (35d) | 11-Nov-25 |
| CVE-2025-42924 | SAP S/4HANA landscape SAP E-Recruiting BSP allows an unau... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-12021 | The WP-OAuth plugin for WordPress is vulnerable to Reflec... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-12589 | The WP-Walla plugin for WordPress is vulnerable to Cross-... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-12590 | The YSlider plugin for WordPress is vulnerable to Cross-S... | Medium | 6.1 | Low Risk | Unpatched (34d) | 11-Nov-25 |
| CVE-2025-11960 | Improper Neutralization of Input During Web Page Generati... | Medium | 6.1 | Low Risk | Patched | 11-Nov-25 |