search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2020-12-08 2020-12-08 2025-06-06 VU#815128 Embedded TCP/IP stacks have memory corruption vulnerabilities
2025-05-07 2025-05-07 2025-06-11 VU#722229 Radware Cloud Web Application Firewall Vulnerable to Filter Bypass
2025-06-10 2025-06-10 2025-06-16 VU#806555 A Vulnerability in UEFI Applications allows for secure boot bypass via misused NVRAM variable
2009-11-30 2009-11-30 2025-06-16 VU#261869 4.6 Clientless SSL VPN products break web browser domain-based security models
2025-06-10 2025-06-10 2025-06-17 VU#211341 A vulnerability in Insyde H2O UEFI application allows for digital certificate injection via NVRAM variable
2023-02-28 2023-02-28 2025-07-08 VU#782720 TCG TPM2.0 implementations vulnerable to memory corruption
2025-07-11 2025-07-11 2025-07-15 VU#746790 SMM callout vulnerabilities identified in Gigabyte UEFI firmware modules
2025-01-17 2025-01-17 2025-07-16 VU#199397 Insecure Implementation of Tunneling Protocols (GRE/IPIP/4in6/6in4)
2025-05-09 2025-05-09 2025-07-17 VU#760160 libexpat library is vulnerable to DoS attacks through stack overflow
2025-06-10 2025-06-10 2025-07-22 VU#282450 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation
2025-07-08 2025-07-08 2025-07-24 VU#613753 RUCKUS Virtual SmartZone (vSZ) and RUCKUS Network Director (RND) contain multiple vulnerabilities
2025-07-27 2025-07-27 2025-07-29 VU#335798 SysTrack LsiAgent.exe contains an improper DLL search order, allowing an attacker to execute arbitrary code and priv esc
2013-06-26 2013-06-24 2025-08-01 VU#662676 6.8 Digital Alert Systems DASDEC and Monroe Electronics R189 One-Net firmware exposes private root SSH key
2025-08-02 2025-08-02 2025-08-04 VU#317469 Partner Software/Partner Web does not sanitize Report files and Note content, allowing for XSS and RCE
2025-07-29 2025-07-29 2025-08-04 VU#554637 TP-Link Archer C50 router is vulnerable to configuration-file decryption

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis