🚨 Urgent Alert - High Severity CVEs (CVSS ≥ 8.0) - April 21, 2025
🔎 Information
This is an automated alert for critical vulnerabilities.
Minimum CVSS score: 8.0
Filtered vendors: Cisco, Fortinet, Glpi-project, Microsoft, Palo Alto Networks, Splunk, Stormshield, Ubuntu Linux, VMware, Veeam, Wazuh
| ID | CVSS | EPSS | Vendor | Product | Description | Radar |
|---|---|---|---|---|---|---|
| EUVD-2025-11394 CVE-2025-20236 |
🟠 8.8 | 🔵 | Cisco | Cisco Webex Teams | A vulnerability in the custom URL parser of Cisco Webex App could allow an unauthenticated, remote attacker to persuade a user to download arbitrary files, which could allow the attacker to execute ar... |  |
Legend:
Definition:
CVSS Radar
- AV: Attack Vector (Network, Adjacent, Local, Physical)
- AC: Attack Complexity (Low, High)
- PR: Privileges Required (None, Low, High)
- UI: User Interaction (None, Required)
- S: Scope (Unchanged, Changed)
- C: Confidentiality Impact (None, Low, High)
- I: Integrity Impact (None, Low, High)
- A: Availability Impact (None, Low, High)
CVSS Severity
- 🔴 Critical (9.0 – 10.0)
- 🟠 High (7.0 – 8.9)
- 🟡 Medium (4.0 – 6.9)
- 🟢 Low (0.1 – 3.9)
- ❓ Unknown (0.0 or missing)
EPSS risk
- 🔴 High (0.5 - 1)
- 🟡 Medium (0.1 - 0.49)
- 🔵 Low (0.0 – 0.09)
EXPL Exploited in the wild
- CVSS: Common Vulnerability Scoring System
- EPSS: Exploit Prediction Scoring System