{"vulnerability": "cve-2025-2749", "sightings": [{"uuid": "3f640e64-cc4a-4e3a-9ad8-75c8090d202e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27496", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkc5tg3f3z2l", "content": "", "creation_timestamp": "2025-03-13T22:36:11.003028Z"}, {"uuid": "6449b9f5-7fe4-40f3-9158-68f400d47150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lk56agqkll2h", "content": "", "creation_timestamp": "2025-03-11T23:00:10.106733Z"}, {"uuid": "c5d0ff85-7d3e-4509-a059-eb43e500b77b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27499", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljit7a2pcs2o", "content": "", "creation_timestamp": "2025-03-03T20:49:23.660541Z"}, {"uuid": "21ba7d06-61b7-4c45-878e-108316d2a9a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2749", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ll5t672tjd24", "content": "", "creation_timestamp": "2025-03-24T22:39:53.426136Z"}, {"uuid": "143e4af3-b033-472a-a3e5-df7b3c8db181", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27498", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114099772162398875", "content": "", "creation_timestamp": "2025-03-03T17:52:36.295949Z"}, {"uuid": "ae0d1328-8e4c-493d-842d-7134df670c55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27498", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljit7adiks2o", "content": "", "creation_timestamp": "2025-03-03T20:49:24.775902Z"}, {"uuid": "3589331d-fc81-438f-97c1-8577f9e54a75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27493", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114143639015705325", "content": "", "creation_timestamp": "2025-03-11T11:48:31.223416Z"}, {"uuid": "5e6e14db-3c23-4935-8c19-5cb4258f3331", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lk3uvjrpt22v", "content": "", "creation_timestamp": "2025-03-11T10:40:18.740821Z"}, {"uuid": "23349c32-78bb-4b99-b69f-22c497a3268a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lk3xjodn7s2c", "content": "", "creation_timestamp": "2025-03-11T11:27:24.808223Z"}, {"uuid": "6a3ead68-60a4-4cde-8bd3-f4ec90c8929d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114143639072319087", "content": "", "creation_timestamp": "2025-03-11T11:48:31.960198Z"}, {"uuid": "ad9ed0e2-1548-4570-82fc-d80912cb00d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk43e3i6ig26", "content": "", "creation_timestamp": "2025-03-11T12:35:50.318153Z"}, {"uuid": "7d7a79d1-fe39-49bf-93bd-73a09a6310c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27493", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk43e3t6hq2h", "content": "", "creation_timestamp": "2025-03-11T12:35:52.147989Z"}, {"uuid": "4ab98871-bae2-4dc0-ae9a-bb8100d0e9d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-072-04", "content": "", "creation_timestamp": "2025-03-13T11:00:00.000000Z"}, {"uuid": "a57e77b7-cf8a-4968-b9fe-c28a69601440", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lk4bqj3n3c2f", "content": "", "creation_timestamp": "2025-03-11T14:30:08.884208Z"}, {"uuid": "a6f070c9-2eac-45b8-bcc1-3f72fec82ae8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lk6ghtifil2j", "content": "", "creation_timestamp": "2025-03-12T11:00:06.406206Z"}, {"uuid": "29f5a972-b45a-45aa-a5c4-713b8fb9c920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3lk4kdxy3bk2f", "content": "", "creation_timestamp": "2025-03-11T17:04:14.638395Z"}, {"uuid": "1336c4c3-37b7-4591-83ed-5edf7780cd12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27493", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-072-04", "content": "", "creation_timestamp": "2025-03-13T11:00:00.000000Z"}, {"uuid": "8d7f195c-cce3-48aa-b6b7-22b69fe03b75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27496", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114156928115504442", "content": "", "creation_timestamp": "2025-03-13T20:08:06.680481Z"}, {"uuid": "fa2d5bcf-bc5c-47ba-83b8-d88462b01288", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27491", "type": "seen", "source": "https://www.thezdi.com/blog/2025/4/8/the-april-2025-security-update-review", "content": "", "creation_timestamp": "2025-04-08T16:14:25.000000Z"}, {"uuid": "8afeebfd-9246-4092-90cc-d5f6992e4d80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27491", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-45bed739-4cf70d274d3babdb", "content": "", "creation_timestamp": "2025-04-09T07:18:23.727255Z"}, {"uuid": "31d9789e-8977-4a4c-9d4e-c104871ce7c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27490", "type": "seen", "source": "https://www.thezdi.com/blog/2025/4/8/the-april-2025-security-update-review", "content": "", "creation_timestamp": "2025-04-08T16:14:25.000000Z"}, {"uuid": "d378d52d-a423-47ac-9f8c-277caef0f185", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27492", "type": "seen", "source": "https://www.thezdi.com/blog/2025/4/8/the-april-2025-security-update-review", "content": "", "creation_timestamp": "2025-04-08T16:14:25.000000Z"}, {"uuid": "caf65163-9ba5-4ad7-ab1e-e0583c21786b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27495", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-112-01", "content": "", "creation_timestamp": "2025-04-22T10:00:00.000000Z"}, {"uuid": "0974043a-b5b0-4311-a317-cb94d9c013fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27495", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-381/", "content": "", "creation_timestamp": "2025-06-16T03:00:00.000000Z"}, {"uuid": "efdfe5f6-5914-4678-ad47-a40b8fd9e992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27497", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-18T13:31:24.000000Z"}, {"uuid": "16c08c80-3049-41ff-9985-21033492d5f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:35.000000Z"}, {"uuid": "5f2f41aa-7fa1-4174-be6a-568380dd0942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27497", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-19T02:47:48.000000Z"}, {"uuid": "b454eee3-187e-446a-ae42-dc4d06dbf138", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27499", "type": "seen", "source": "MISP/e1f6260f-3311-441b-92ae-e04cd5eb5f72", "content": "", "creation_timestamp": "2025-08-19T13:26:46.000000Z"}, {"uuid": "cf665f18-d58f-43a5-a981-50eeb871b61d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27498", "type": "seen", "source": "https://t.me/cvedetector/19372", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27498 - AES-GCM Exposes Decrypted Ciphertext on Incorrect Tag\", \n  \"Content\": \"CVE ID : CVE-2025-27498 \nPublished : March 3, 2025, 5:15 p.m. | 1\u00a0hour, 1\u00a0minute ago \nDescription : aes-gcm is a pure Rust implementation of the AES-GCM. In decrypt_in_place_detached, the decrypted ciphertext (which is the correct ciphertext) is exposed even if the tag is incorrect. This is because in decrypt_inplace in asconcore.rs, tag verification causes an error to be returned with the plaintext contents still in buffer. The vulnerability is fixed in 0.4.3. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-03T19:43:59.000000Z"}, {"uuid": "ada247ac-a163-40b1-b189-7e34e7ff01a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2025-27491", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/77a1b8aa-f86f-4c74-af5b-7e082c7ae3de", "content": "", "creation_timestamp": "2025-04-10T11:32:21.060085Z"}, {"uuid": "2d6e644c-6a63-49a6-8a19-da4bed63b252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27493", "type": "seen", "source": "https://t.me/cvedetector/20063", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27493 - SiPass Telnet Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27493 \nPublished : March 11, 2025, 10:15 a.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9), SiPass integrated ACC-AP (All versions < V6.4.9). Affected devices improperly sanitize user input for specific commands on the telnet command line interface. This could allow an authenticated local administrator to escalate privileges by injecting arbitrary commands that are executed with root privileges. \nSeverity: 8.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T13:26:37.000000Z"}, {"uuid": "5e1a07e0-e5c4-48b1-bd4e-afeafb1f0784", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27499", "type": "seen", "source": "https://t.me/cvedetector/19392", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27499 - WeGIA Stored Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27499 \nPublished : March 3, 2025, 7:15 p.m. | 1\u00a0hour, 6\u00a0minutes ago \nDescription : WeGIA is an open source Web Manager for Institutions with a focus on Portuguese language users. A Stored Cross-Site Scripting (XSS) vulnerability was identified in the processa_edicao_socio.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts into the socio_nome parameter. The injected scripts are stored on the server and executed automatically whenever the affected page is accessed by users, posing a significant security risk. This vulnerability is fixed in 3.2.10. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-03T21:24:30.000000Z"}, {"uuid": "c2ab7129-0c75-490c-aa16-ee74c107067d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-2749", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-critical-high-vulnerabilities-kentico-xperience-can-lead-remote-code", "content": "", "creation_timestamp": "2026-04-21T05:21:24.000000Z"}, {"uuid": "231d574b-cdaf-44f8-a78c-4f8e8233c3dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://t.me/cvedetector/20066", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27494 - SiPass Integrated Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27494 \nPublished : March 11, 2025, 10:15 a.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability has been identified in SiPass integrated AC5102 (ACC-G2) (All versions < V6.4.9), SiPass integrated ACC-AP (All versions < V6.4.9). Affected devices improperly sanitize input for the pubkey endpoint of the REST API. This could allow an authenticated remote administrator to escalate privileges by injecting arbitrary commands that are executed with root privileges. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T13:26:39.000000Z"}, {"uuid": "2e5da773-d29c-40b3-850e-a9a5b03001a2", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-2749", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/29ff5244-6972-4cce-b522-8472d6bb1fed", "content": "", "creation_timestamp": "2026-04-20T20:00:03.214968Z"}, {"uuid": "88ee1379-b3df-4e73-995d-0660f666e497", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27497", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6558", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27497\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: OpenDJ is an LDAPv3 compliant directory service. OpenDJ prior to 4.9.3 contains a denial-of-service (DoS) vulnerability that causes the server to become unresponsive to all LDAP requests without crashing or restarting. This issue occurs when an alias loop exists in the LDAP database. If an ldapsearch request is executed with alias dereferencing set to \"always\" on this alias entry, the server stops responding to all future requests. Fortunately, the server can be restarted without data corruption. This vulnerability is fixed in 4.9.3.\n\ud83d\udccf Published: 2025-03-05T15:59:01.702Z\n\ud83d\udccf Modified: 2025-03-05T16:16:49.762Z\n\ud83d\udd17 References:\n1. https://github.com/OpenIdentityPlatform/OpenDJ/security/advisories/GHSA-93qr-h8pr-4593\n2. https://github.com/OpenIdentityPlatform/OpenDJ/commit/08aee4724608e4a32baa3c7d7499ec913a275aaf", "creation_timestamp": "2025-03-05T16:32:22.000000Z"}, {"uuid": "ffc16937-36f5-49e2-af13-6ad96635fbb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27490", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11186", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27490\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)\n\ud83d\udd39 Description: Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.\n\ud83d\udccf Published: 2025-04-08T17:24:04.563Z\n\ud83d\udccf Modified: 2025-04-09T23:42:04.018Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27490", "creation_timestamp": "2025-04-09T23:48:03.000000Z"}, {"uuid": "cd868ac1-4a5f-4499-a5f8-ec01286bb65c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2749", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8502", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2749\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: An authenticated remote code execution in Kentico Xperience allows authenticated users Staging Sync Server to upload arbitrary data to path relative locations. This results in path traversal and arbitrary file upload, including content that can be executed server side leading to remote code execution.This issue affects Kentico Xperience through 13.0.178.\n\ud83d\udccf Published: 2025-03-24T18:18:07.228Z\n\ud83d\udccf Modified: 2025-03-24T19:16:31.029Z\n\ud83d\udd17 References:\n1. https://labs.watchtowr.com/bypassing-authentication-like-its-the-90s-pre-auth-rce-chain-s-in-kentico-xperience-cms/\n2. https://devnet.kentico.com/download/hotfixes", "creation_timestamp": "2025-03-24T19:23:08.000000Z"}, {"uuid": "a27fbcb2-e761-4610-8a21-ca4b68efad7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2749", "type": "seen", "source": "Telegram/4zRGsEPwCWPOVkiJwGYn1R_sXuEnR_EKMT0DdgACfDkyyoA", "content": "", "creation_timestamp": "2026-04-20T21:21:38.000000Z"}, {"uuid": "bc6b2fb7-08bc-4065-873a-64e011b76fdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2749", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mkevanrdo22s", "content": "", "creation_timestamp": "2026-04-26T06:06:44.584939Z"}, {"uuid": "a5ccd8c8-0d55-4ca9-9279-5f8d5cfa246c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27496", "type": "seen", "source": "https://t.me/cvedetector/20250", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27496 - Snowflake Driver: Client-Side Encryption Master Key Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27496 \nPublished : March 13, 2025, 7:15 p.m. | 51\u00a0minutes ago \nDescription : Snowflake, a platform for using artificial intelligence in the context of cloud computing, has a vulnerability in the Snowflake JDBC driver (\"Driver\") in versions 3.0.13 through 3.23.0 of the driver. When the logging level was set to DEBUG, the Driver would log locally the client-side encryption master key of the target stage during the execution of GET/PUT commands. This key by itself does not grant access to any sensitive data without additional access authorizations,  and is not logged server-side by Snowflake. Snowflake fixed the issue in version 3.23.1. \nSeverity: 3.3 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-13T21:28:42.000000Z"}, {"uuid": "e43581d6-e62f-4e67-8020-01ade5ee1ebf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27493", "type": "seen", "source": "Telegram/BUC-F_pXySBJlIgXgQmiFYagG3wm0MhpRzVS07GXFjNvPGc", "content": "", "creation_timestamp": "2025-03-11T11:35:11.000000Z"}, {"uuid": "558d819a-63bc-49d8-b80d-eb7b3c158375", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2749", "type": "seen", "source": "https://t.me/cvedetector/20994", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2749 - Kentico Xperience Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2749 \nPublished : March 24, 2025, 7:15 p.m. | 2\u00a0hours, 5\u00a0minutes ago \nDescription : An authenticated remote code execution in Kentico Xperience allows authenticated users Staging Sync Server to upload arbitrary data to path relative locations. This results in path traversal and arbitrary file upload, including content that can be executed server side leading to remote code execution.This issue affects Kentico Xperience through 13.0.178. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-24T22:35:06.000000Z"}, {"uuid": "25648597-5dad-4459-a65f-a94827c13d42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27497", "type": "seen", "source": "https://t.me/cvedetector/19639", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-27497 - OpenDJ LDAP Denial-of-Service Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-27497 \nPublished : March 5, 2025, 4:15 p.m. | 1\u00a0hour, 2\u00a0minutes ago \nDescription : OpenDJ is an LDAPv3 compliant directory service. OpenDJ prior to 4.9.3 contains a denial-of-service (DoS) vulnerability that causes the server to become unresponsive to all LDAP requests without crashing or restarting. This issue occurs when an alias loop exists in the LDAP database. If an ldapsearch request is executed with alias dereferencing set to \"always\" on this alias entry, the server stops responding to all future requests. Fortunately, the server can be restarted without data corruption. This vulnerability is fixed in 4.9.3. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-05T18:36:59.000000Z"}, {"uuid": "9cef7274-d583-48f5-a757-7bcc792f922c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "https://t.me/CyberBulletin/2579", "content": "\u26a1CVE-2025-27494 (CVSS 9.1):Critical Flaw Found in Siemens SiPass Access Control Systems.\n\n#CyberBulletin", "creation_timestamp": "2025-03-11T14:13:40.000000Z"}, {"uuid": "238d7739-6f13-417a-9821-944e34f58f3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27494", "type": "seen", "source": "Telegram/BUC-F_pXySBJlIgXgQmiFYagG3wm0MhpRzVS07GXFjNvPGc", "content": "", "creation_timestamp": "2025-03-11T11:35:11.000000Z"}, {"uuid": "51b55ee7-6e30-4af3-8369-bfb2c3355efc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-27498", "type": "published-proof-of-concept", "source": "https://github.com/RustCrypto/AEADs/security/advisories/GHSA-r38m-44fw-h886", "content": "", "creation_timestamp": "2025-03-03T16:06:57.000000Z"}, {"uuid": "1486ec72-1d2c-4a93-bdb1-3fbdacecfc27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-27497", "type": "published-proof-of-concept", "source": "https://github.com/OpenIdentityPlatform/OpenDJ/security/advisories/GHSA-93qr-h8pr-4593", "content": "", "creation_timestamp": "2025-03-05T11:13:02.000000Z"}]}