Active iq unified manager

This hub aggregates every CVE we track for Active iq unified manager, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Active iq unified manager.

• CVE-2025-30722Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit ...5.3Apr 15, 2025
• CVE-2025-31672Apache POI: parsing OOXML based files (xlsx, docx, etc.), poi-ooxml could read unexpected data if underlying zip has duplicate zip entry names5.3Apr 9, 2025
• CVE-2025-26465Openssh: machine-in-the-middle attack if verifyhostkeydns is enabled6.8Feb 18, 2025
• CVE-2025-24928libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untruste...7.8Feb 18, 2025
• CVE-2024-56171libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be ...7.8Feb 18, 2025
• CVE-2025-1181GNU Binutils ld elflink.c _bfd_elf_gc_mark_rsec memory corruption5.0Feb 11, 2025
• CVE-2025-1178GNU Binutils ld libbfd.c bfd_putl64 memory corruption5.6Feb 11, 2025
• CVE-2025-24970SslHandler doesn't correctly validate packets which can lead to native crash when using native SSLEngine7.5Feb 10, 2025
• CVE-2025-04117-Zip Mark-of-the-Web Bypass VulnerabilityKEV7.0Jan 25, 2025
• CVE-2025-21502Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java ...4.8Jan 21, 2025
• CVE-2025-21492Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.36 and prior and 8.4.0. Easily exploitable vulnerability all...4.9Jan 21, 2025
• CVE-2024-52533gio/gsocks4aproxy.c in GNOME GLib before 2.82.1 has an off-by-one error and resultant buffer overflow because SOCKS4_CONN_MSG_LEN is not sufficient for a trailing '\0' character.9.8Nov 11, 2024
• CVE-2024-50602An issue was discovered in libexpat before 2.6.4. There is a crash within the XML_ResumeParser function because XML_StopParser can stop/suspend an unstarted parser.5.9Oct 27, 2024
• CVE-2024-9823Jetty DOS vulnerability on DosFilter5.3Oct 14, 2024
• CVE-2024-47554Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader4.3Oct 3, 2024