General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-2843 | A flaw was found in the Observability Operator. The Operator creates a ServiceAccount with *ClusterRole* upon deploymen… | High (8.8) | 2025-11-12 | General-Purpose |
| CVE-2025-13042 | Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.166 allowed a remote attacker to potentially ex… | High (8.8) | 2025-11-12 | General-Purpose |
| CVE-2025-11797 | A maliciously crafted DWG file, when parsed through Autodesk 3ds Max, can force a Use-After-Free vulnerability. A malic… | High (7.8) | 2025-11-12 | General-Purpose |
| CVE-2025-11795 | A maliciously crafted JPG file, when parsed through Autodesk 3ds Max, can force an Out-of-Bounds Write vulnerability. A… | High (7.8) | 2025-11-12 | General-Purpose |
| CVE-2025-9316 | N-central < 2025.4 can generate sessionIDs for unauthenticated users This issue affects N-central: before 2025.4. | Unknown | 2025-11-12 | General-Purpose |