General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2025-3777 | Hugging Face Transformers versions up to 4.49.0 are affected by an improper input validation vulnerability in the `imag… | Unknown | 2025-07-07 | General-Purpose |
| CVE-2025-3705 | A physical attacker with no privileges can gain full control of the affected device due to improper neutralization of s… | Medium (6.8) | 2025-07-07 | General-Purpose |
| CVE-2025-3626 | A remote attacker with administrator account can gain full control of the device due to improper neutralization of spec… | Critical (9.1) | 2025-07-07 | General-Purpose |
| CVE-2025-3467 | An XSS vulnerability exists in langgenius/dify versions prior to 1.1.3, specifically affecting Firefox browsers. This v… | Medium (5.4) | 2025-07-07 | General-Purpose |
| CVE-2025-3466 | langgenius/dify versions 1.1.0 to 1.1.2 are vulnerable to unsanitized input in the code node, allowing execution of arb… | High (7.2) | 2025-07-07 | General-Purpose |