Microsoft: Security Vulnerabilities
IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1
could allow an authenticated user on the network to delete comments from other users due to client-side enforcement of server-side security.
CVSS Score
3.5
EPSS Score
0.0
Published
2025-10-12
IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to delete reviews from other users due to client-side enforcement of server-side security.
CVSS Score
3.5
EPSS Score
0.0
Published
2025-10-12
IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user on the network to spoof email identity of the sender due to improper verification of source data.
CVSS Score
5.7
EPSS Score
0.0
Published
2025-10-12
IBM Engineering Requirements Management Doors Next 7.0.2, 7.0.3, and 7.1 could allow an authenticated user to cause a denial of service by uploading specially crafted files using uncontrolled recursion.
CVSS Score
6.5
EPSS Score
0.001
Published
2025-10-12
Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to disclose information over a network.
CVSS Score
9.3
EPSS Score
0.001
Published
2025-10-09
Azure Entra ID Elevation of Privilege Vulnerability
CVSS Score
9.6
EPSS Score
0.001
Published
2025-10-09
Azure Entra ID Elevation of Privilege Vulnerability
CVSS Score
9.8
EPSS Score
0.001
Published
2025-10-09
Azure PlayFab Elevation of Privilege Vulnerability
CVSS Score
8.8
EPSS Score
0.001
Published
2025-10-09
Improper neutralization of special elements used in a command ('command injection') in Copilot allows an unauthorized attacker to disclose information over a network.
CVSS Score
9.3
EPSS Score
0.001
Published
2025-10-09
Redis Enterprise Elevation of Privilege Vulnerability
CVSS Score
8.7
EPSS Score
0.001
Published
2025-10-09