A vulnerability was found in Progress MOVEit Transfer up to 2024.1.7/2025.0.3 and classified as critical. Affected by this vulnerability is an unknown functionality. The manipulation results in server-side request forgery.
This vulnerability is identified as CVE-2025-13147. The attack can be executed remotely. There is not any exploit available.
It is suggested to upgrade the affected component.
A vulnerability has been found in Microfocus OpenText uCMDB 24.4 and classified as problematic. Affected is an unknown function. The manipulation leads to cross site scripting.
This vulnerability is referenced as CVE-2025-11884. Remote exploitation of the attack is possible. No exploit is available.
A vulnerability, which was classified as problematic, was found in x-crypto. This impacts an unknown function of the component GSSAPI Authentication Request Parser. Executing manipulation can lead to improper validation of specified quantity in input.
The identification of this vulnerability is CVE-2025-58181. The attack may be launched remotely. There is no exploit available.