CVE.report search for "CVE-2025-67486"
Listed below are 50 relevant search results for "CVE-2025-67486" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2026-44413 | Jetbrains | Teamcity | In JetBrains TeamCity before 2026.1 2025.11.5 authenticated users could expose server API to unauthorised access |
| CVE-2026-43899 | DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to v1.0.4-bet... | ||
| CVE-2026-43347 | In the Linux kernel, the following vulnerability has been resolved: arm64: dts: qcom: monaco: Reserve full Gunyah metadata r... | ||
| CVE-2026-43322 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sync: Fix UAF in le_read_features_complet... | ||
| CVE-2026-43247 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix SError of kernel panic wh... |
| CVE-2026-43164 | In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in __udp_enqueue_schedule_sk... | ||
| CVE-2026-42467 | An issue was discovered in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read... | ||
| CVE-2026-42339 | New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. In versions 0.11.9-a... | ||
| CVE-2026-42043 | Axios | Axios | Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.15.1 and 0.31.1, an attacker who can influence t... |
| CVE-2026-41903 | FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.217, a user holding t... | ||
| CVE-2026-41882 | Jetbrains | Intellij Idea | In JetBrains IntelliJ IDEA before 2024.3.7.1, 2025.1.7.1, 2025.2.6.2, 2025.3.4.1, 2026.1.1 reading arbitrary local files ... |
| CVE-2026-41321 | @astrojs/cloudflare is an SSR adapter for use with Cloudflare Workers targets. Prior to 13.1.10, the fetch() call for remote ... | ||
| CVE-2026-40453 | Apache | Camel | The fix for CVE-2025-27636 added setLowerCase(true) to HttpHeaderFilterStrategy so that case-variant header names such as 'CA... |
| CVE-2026-40046 | Integer Overflow or Wraparound vulnerability in Apache ActiveMQ, Apache ActiveMQ All, Apache ActiveMQ MQTT. The fix for "CVE... | ||
| CVE-2026-40035 | Ryandfir | Unfurl | Unfurl through 2025.08 contains an improper input validation vulnerability in config parsing that enables Flask debug mode by... |
| CVE-2026-39973 | Apktool | Apktool | Apktool is a tool for reverse engineering Android APK files. In versions 3.0.0 and 3.0.1, a path traversal vulnerability in `... |
| CVE-2026-39424 | Maxkb | Maxkb | MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, the chat export feature is vulnerable to Im... |
| CVE-2026-39417 | Maxkb | Maxkb | MaxKB is an open-source AI assistant for enterprise. Versions 2.7.1 and below contain an incomplete fix for CVE-2025-53928, w... |
| CVE-2026-39414 | Minio | Minio | MinIO is a high-performance object storage system. From RELEASE.2018-08-18T03-49-57Z to before RELEASE.2025-12-20T04-58-37Z, ... |
| CVE-2026-39337 | Churchcrm | Churchcrm | ChurchCRM is an open-source church management system. Prior to 7.1.0, critical pre-authentication remote code execution vulne... |
| CVE-2026-37534 | Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1... | ||
| CVE-2026-35465 | Freedom | Securedrop-client | SecureDrop Client is a desktop app for journalists to securely communicate with sources and handle submissions on the SecureD... |
| CVE-2026-35177 | Vim | Vim | Vim is an open source, command line text editor. Prior to 9.2.0280, a path traversal bypass in Vim's zip.vim plugin allows ov... |
| CVE-2026-34660 | Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by an Incorrect Authorization vulnerability that could ... | ||
| CVE-2026-34659 | Adobe Connect versions 2025.9.15, 2025.8.157 and earlier are affected by a Deserialization of Untrusted Data vulnerability th... | ||
| CVE-2026-34619 | Adobe | Coldfusion | ColdFusion versions 2023.18, 2025.6 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Director... |
| CVE-2026-34617 | Adobe | Connect | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Cross-Site Scripting (XSS) vulnerability that could result... |
| CVE-2026-34615 | Adobe | Connect | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could... |
| CVE-2026-34614 | Adobe | Connect | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an ... |
| CVE-2026-34477 | Apache | Log4j | The fix for CVE-2025-68161 https://logging.apache.org/security.html#CVE-2025-68161 was incomplete: it addressed hostname ve... |
| CVE-2026-33806 | Fastify | Fastify | Impact: Fastify applications using schema.body.content for per-content-type body validation can have validation bypassed ent... |
| CVE-2026-33693 | Lemmy is a link aggregator and forum for the fediverse. Prior to version 0.7.0-beta.9, the `v4_is_invalid()` function in `act... | ||
| CVE-2026-33454 | Apache | Camel | The Camel-Mail component is vulnerable to Camel message header injection. The custom header filter strategy used by the compo... |
| CVE-2026-33392 | Jetbrains | Youtrack | In JetBrains YouTrack before 2025.3.131383 high privileged user can achieve RCE via sandbox bypass |
| CVE-2026-33326 | Keystonejs | Keystone | Keystone is a content management system for Node.js. Prior to version 6.5.2, {field}.isFilterable access control can be bypas... |
| CVE-2026-33045 | Home-assistant | Home-assistant | Home Assistant is open source home automation software that puts local control and privacy first. Starting in version 2025.02... |
| CVE-2026-32990 | Apache | Tomcat | Improper Input Validation vulnerability in Apache Tomcat due to an incomplete fix of CVE-2025-66614. This issue affects Apac... |
| CVE-2026-32699 | FacturaScripts is an open source accounting and invoicing software. In versions 2025.92 and earlier, the application fails to... | ||
| CVE-2026-32613 | Linuxfoundation | Spinnaker | Spinnaker is an open source, multi-cloud continuous delivery platform. Echo like some other services, uses SPeL (Spring Expre... |
| CVE-2026-32604 | Linuxfoundation | Spinnaker | Spinnaker is an open source, multi-cloud continuous delivery platform. In versions prior to 2026.1.0, 2026.0.1, 2025.4.2, and... |
| CVE-2026-31699 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy CSR to userspace if P... |
| CVE-2026-31698 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy PDH cert to userspace... |
| CVE-2026-31697 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy ID to userspace if PS... |
| CVE-2026-31510 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix null-ptr-deref on l2cap_sock_ready... |
| CVE-2026-31508 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Avoid releasing netdev before teardown... |
| CVE-2026-31504 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: net: fix fanout UAF in packet_release() via NETDEV_UP ra... |
| CVE-2026-31494 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: net: macb: use the current queue number for stats There... |
| CVE-2026-31254 | The flash-attention project thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 (2025-13-04) contains a code injection vulne... | ||
| CVE-2026-31253 | The flash-attention training framework thru commit e724e2588cbe754beb97cf7c011b5e7e34119e62 (2025-13-04) contains an insecure... | ||
| CVE-2026-31252 | CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e (2025-30-21) contains an insecure deserialization vulnerabilit... | ||