General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-57210 | Incorrect access control in the component ApiPayController.java of platform v1.0.0 allows attackers to access sensitive… | High (7.5) | 2025-12-04 | General-Purpose |
| CVE-2025-56427 | Directory Traversal vulnerability in ComposioHQ v.0.7.20 allows a remote attacker to obtain sensitive information via t… | High (7.5) | 2025-12-04 | General-Purpose |
| CVE-2025-54160 | Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in BeeDrive in Synology Be… | High (7.8) | 2025-12-04 | General-Purpose |
| CVE-2025-54158 | Missing authentication for critical function vulnerability in BeeDrive in Synology BeeDrive for desktop before 1.4.2-13… | High (7.8) | 2025-12-04 | General-Purpose |
| CVE-2025-40266 | In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Check the untrusted offset in FF-A mem… | Unknown | 2025-12-04 | General-Purpose |