General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2024-47856 | In RSA Authentication Agent before 7.4.7, service paths and shortcut paths may be vulnerable to path interception if th… | Critical (9.8) | 2025-11-24 | General-Purpose |
| CVE-2025-63498 | alinto SOGo 5.12.3 is vulnerable to Cross Site Scripting (XSS) via the "userName" parameter. | Medium (6.1) | 2025-11-24 | General-Purpose |
| CVE-2025-48511 | Improper input validation within AMD uprof can allow a local attacker to write to an arbitrary physical address, potent… | Medium (5.5) | 2025-11-24 | General-Purpose |
| CVE-2025-48510 | Improper return value within AMD uProf can allow a local attacker to bypass KSLR, potentially resulting in loss of conf… | High (7.1) | 2025-11-24 | General-Purpose |
| CVE-2025-36150 | IBM Concert 1.0.0 through 2.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decr… | Medium (5.9) | 2025-11-24 | General-Purpose |