General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-2486 | The Ubuntu edk2 UEFI firmware packages accidentally allowed the UEFI Shell to be accessed in Secure Boot environments, … | High (8.8) | 2025-11-26 | General-Purpose |
| CVE-2025-20373 | In Splunk Add-on for Palo Alto Networks versions below 2.0.2, the add-on exposes client secrets in plain text in the _i… | Low (2.7) | 2025-11-26 | General-Purpose |
| CVE-2025-13084 | The users endpoint in the groov View API returns a list of all users and associated metadata including their API keys.… | High (7.6) | 2025-11-26 | General-Purpose |
| CVE-2025-11461 | Multiple SQL Injections in Frappe CRM Dashboard Controller due to unsafe concatenation of user-controlled parameters in… | High (8.8) | 2025-11-26 | General-Purpose |
| CVE-2025-65239 | Incorrect access control in the /aux1/ocussd/trace endpoint of OpenCode Systems USSD Gateway OC Release:5, version 6.13… | Medium (4.3) | 2025-11-26 | General-Purpose |