Security Warnings · Weekly: 2025-W18

Search Period Severity Vendor Source

Latest warnings

CVE-2025-34028	Commvault Command Center Path Traversal Vulnerability 2025‑05‑02 · CVE-2025-34028	CISA-KEV	2025‑05‑02	High
CVE-2024-58136	Yiiframework Yii Improper Protection of Alternate Path Vulnerability 2025‑05‑02 · CVE-2024-58136	CISA-KEV	2025‑05‑02	High
CVE-2024-38475	Apache HTTP Server Improper Escaping of Output Vulnerability 2025‑05‑01 · CVE-2024-38475	CISA-KEV	2025‑05‑01	High
CVE-2023-44221	SonicWall SMA100 Appliances OS Command Injection Vulnerability 2025‑05‑01 · CVE-2023-44221	CISA-KEV	2025‑05‑01	High
CVE-2025-31324	SAP NetWeaver Unrestricted File Upload Vulnerability 2025‑04‑29 · CVE-2025-31324	CISA-KEV	2025‑04‑29	Critical
CVE-2025-1976	Broadcom Brocade Fabric OS Code Injection Vulnerability 2025‑04‑28 · CVE-2025-1976	CISA-KEV	2025‑04‑28	High
CVE-2025-3928	Commvault Web Server Unspecified Vulnerability 2025‑04‑28 · CVE-2025-3928	CISA-KEV	2025‑04‑28	High
CVE-2025-42599	Qualitia Active! Mail Stack-Based Buffer Overflow Vulnerability 2025‑04‑28 · CVE-2025-42599	CISA-KEV	2025‑04‑28	High

Note