8 new CVEs published on 2025-04-21 (CVSS: 7.3-8.6)
VulnerabilitiesExploitsCybersecuritySoftwareSecurity
This content is an AI-generated summary. If you encounter any misinformation or problematic content, please report it to cyb.hub@proton.me.
| CVE ID | CVSS | Description |
|---|---|---|
| CVE-2025-32408 | 8.5 | In Soffid Console 3.5.38 before 3.5.39, necessary checks were not applied to some Java objects. A malicious agent could possibly execute arbitrary code. |
| CVE-2025-3827 | 7.3 | A vulnerability has been found in PHPGurukul Men Salon Management System 1.0 and classified as critical.
This vulnerability affects unknown code of the component User Controller. |
| CVE-2025-3828 | 7.3 | A vulnerability was found in PHPGurukul Men Salon Management System 1.0 and classified as critical. This issue affects some unknown processing of the component User Controller. |
| CVE-2025-3829 | 7.3 | A vulnerability was found in PHPGurukul Men Salon Management System 1.0.
It has been classified as critical. Affected is an unknown function of the file User Controller. |
| CVE-2025-43971 | 8.6 | An issue was discovered in GoBGP before 3.35.0. pkg/packet/bgp/bgp.go allows attackers to cause a panic via a zero value for softwareVersionLen. |