Reports
Threat Exposure Management Bytes

Top Notable Enterprise Remote Vulnerabilities

01-08-2025
A concise overview for IS leaders, emphasizing actively exploited vulnerabilities, their significance, and the critical need for remediation.
Download PDF
Subscribe
Currently Trending Enterprise Remote Vulnerabilities
Trending CVEs
Vulnerability
Notables
CVE-2023-2533
Vulnerability
PaperCut NG/MF CSRF Leading to RCE
Notables
Proof of Concept Available, Actively Exploited
CVE-2025-54576
Vulnerability
OAuth2-Proxy Authentication Bypass
Notables
Actively Exploited by Threat Actors
CVE-2025-54418
Vulnerability
Code Igniter Imagemagick Command Injection
Notables
Potential Risk of Exploitation
CVE-2025-5394
Vulnerability
Alone Charity WordPress Theme RCE
Notables
Potential Risk of Exploitation
CVE-2025-53558
Vulnerability
ZXHN-F660T and ZXHN-F660A Common Credentials
Notables
Limited Public Information Available
CVE-2025-40600
Vulnerability
SonicWALL SSL VPN DoS
Notables
Potential Risk of Exploitation
CVE-2025-31602
Vulnerability
Apimo Connector CSRF
Notables
Limited Public Information Available
CVE-2025-41240
Vulnerability
Bitname Helm Charts Secret Disclosure
Notables
Limited Public Information Available
CVE-2025-7624
Vulnerability
Sophos Firewall SQL Injection
Notables
Limited Public Information Available
CVE-2025-23462
Vulnerability
NotFound FWD Slider Reflected XSS
Notables
Limited Public Information Available
CVE-2025-30406
Vulnerability
Gladinet Centrestack RCE
Notables
Potential Risk of Exploitation
CVE-2024-24797
Vulnerability
run-llama index Command Injection
Notables
Potential Risk of Exploitation
CVE-2025-54574
Vulnerability
Squid cache URN Handling Buffer Overflow
Notables
Potential Risk of Exploitation
CVE-2025-50475
Vulnerability
Russound firmware Command Injection
Notables
Potential Risk of Exploitation
CVE-2025-7443
Vulnerability
BerqWP WordPress Plugin Arbitrary File Upload
Notables
Potential Risk of Exploitation
CVE-2025-53399
Vulnerability
Rtpengine Audio Interception and Injection
Notables
Proof of Concept Available, Actively Exploited
CVE-2025-5947
Vulnerability
Service Finder Bookings Plugin WordPress Privilege Escalation
Notables
Limited Public Information Available
CVE-2025-8426
Vulnerability
Marvell QConvergeConsole Path Traversal
Notables
Limited Public Information Available
CVE-2025-2135
Vulnerability
Kibana Heap Corruption and RCE
Notables
Potential Risk of Exploitation
CVE-2025-48072
Vulnerability
OpenEXR Heap-Overflow
Notables
Limited Public Information Available
info@nstcyber.ai
San Jose CA, USA
Bangalore, India
Dubai, UAE

Platform

Continuous Threat Exposure Management
Agentic AI -Assisted Exposure Assessment & Adversarial Validation
Automated Assessments
Prioritized Risk Identification
Swift Threat Detection and Response
Cyber Threat Informed Defense (CTID)
Compliance Assurance

Use Cases

Assess Your Security Posture
Eliminate Attack Vectors
Evaluate Vendors and Partners
Meet Compliance

Company

About NST Cyber
NST Cyber Partner Program
Careers

Resources

Blogs
Videos
White Papers & Advisories
© 2025 NetSentries Technologies Inc.  All Rights Reserved.
Privacy Policy