Security Vulnerabilities - CVEs Published In March 2025
While processing the authentication message in UE, improper authentication may lead to information disclosure.
CVSS Score
5.4
EPSS Score
0.001
Published
2025-03-03
Information disclosure while deriving keys for a session for any Widevine use case.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-03-03
Memory corruption while processing camera use case IOCTL call.
CVSS Score
7.8
EPSS Score
0.0
Published
2025-03-03
Transient DOS during hypervisor virtual I/O operation in a virtual machine.
CVSS Score
5.5
EPSS Score
0.001
Published
2025-03-03
Memory corruption while processing command in Glink linux.
CVSS Score
7.8
EPSS Score
0.002
Published
2025-03-03
A vulnerability in GitLab-EE affecting all versions from 16.2 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allows a Guest user to read Security policy YAML
CVSS Score
5.3
EPSS Score
0.0
Published
2025-03-03
An issue has been discovered in GitLab CE/EE affecting all versions from 16.6 before 17.7.6, 17.8 before 17.8.4, and 17.9 before 17.9.1. An attacker could inject HMTL into the child item search potentially leading to XSS in certain situations.
CVSS Score
5.4
EPSS Score
0.001
Published
2025-03-03
A vulnerability, which was classified as critical, has been found in PHPGurukul News Portal 4.1. This issue affects some unknown processing of the file /login.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
6.9
EPSS Score
0.002
Published
2025-03-03
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before <5.9.9.
CVSS Score
10.0
EPSS Score
0.004
Published
2025-03-03
Missing Authorization vulnerability in SEO Squirrly SEO Plugin by Squirrly SEO squirrly-seo.This issue affects SEO Plugin by Squirrly SEO: from n/a through <= 12.4.07.
CVSS Score
7.1
EPSS Score
0.003
Published
2025-03-03