Latest Vulnerabilities
Latest Found
The latest vulnerability announcements
- CVE-2025-25243 - SAP Supplier Relationship Management (SRM) File Disclosure
- CVE-2025-25241 - Apache Application Missing Authorization Check Allows Employee Information Access
- CVE-2025-24869 - SAP NetWeaver Application Server Java Information Disclosure Vulnerability
- CVE-2025-24870 - SAP GUI for Windows Information Disclosure
- CVE-2025-24872 - SAP ABAP Platform Information Disclosure Vulnerability
- CVE-2025-24874 - SAP Commerce Clickjacking Vulnerability
- CVE-2025-24875 - SAP Commerce SameSite Cookie Insecurity
- CVE-2025-24876 - "SAP Approuter Node.js Authentication Bypass"
- CVE-2025-23189 - SAP SDCCN Authorization Bypass
- CVE-2025-23191 - SAP Fiori for SAP ERP Host Header Injection
CISA Advisories
The latest advisories from CISA
- CISA Adds One Known Exploited Vulnerability to Catalog
- Trimble Releases Security Updates to Address a Vulnerability in Cityworks Software
- Orthanc Server
- ABB Drive Composer
- CISA Adds Five Known Exploited Vulnerabilities to Catalog
- MicroDicom DICOM Viewer
- Schneider Electric EcoStruxure
- CISA Releases Six Industrial Control Systems Advisories
- Trimble Cityworks
- Schneider Electric EcoStruxure Power Monitoring Expert (PME)