Reports
Threat Exposure Management Bytes

Top Notable Enterprise Remote Vulnerabilities

14-11-2025
A concise overview for IS leaders, emphasizing actively exploited vulnerabilities, their significance, and the critical need for remediation.
Download PDF
Subscribe
Currently Trending Enterprise Remote Vulnerabilities
Trending CVEs
Vulnerability
Notables
CVE-2025-64492
Vulnerability
SuiteCRM SQL Injection
Notables
Potential Risk of Exploitation
CVE-2025-64493
Vulnerability
SuiteCRM SQL Injection
Notables
Potential Risk of Exploitation
CVE-2025-11224
Vulnerability
Gitlab Cross-site Scripting
Notables
Limited Public Information Available
CVE-2025-64500
Vulnerability
Symfony Access Control Bypass
Notables
Potential Risk of Exploitation
CVE-2025-64513
Vulnerability
Milvus Authentication Bypass
Notables
Limited Public Information Available
CVE-2025-59118
Vulnerability
Apache OFBiz Unrestricted File Upload
Notables
Potential Risk of Exploitation
CVE-2025-12686
Vulnerability
BeeStation RCE
Notables
Limited Public Information Available
CVE-2025-42887
Vulnerability
SAP Solution Manager Code Injection
Notables
Potential Risk of Exploitation
CVE-2025-12480
Vulnerability
Triofox Improper Access Control
Notables
Limited Public Information Available
CVE-2025-41001
Vulnerability
SOPlanning Cross Site Scripting
Notables
Limited Public Information Available
CVE-2025-37735
Vulnerability
Elastic Defend Windows Local Privilege Escalation
Notables
Limited Public Information Available
CVE-2025-12735
Vulnerability
NPM expr-eval library RCE
Notables
Potential Risk of Exploitation
CVE-2025-64484
Vulnerability
Oauth2-Proxy Privilege Escalation
Notables
Potential Risk of Exploitation
CVE-2025-51991
Vulnerability
Xwiki SSTI
Notables
Proof of Concept Available, Actively Exploited
CVE-2025-42890
Vulnerability
SQL Anywhere Monitor hardcoded Credentials
Notables
Limited Public Information Available
CVE-2025-12485
Vulnerability
ImproDevolutions Server Cookie Hijacking
Notables
Limited Public Information Available
CVE-2025-12485
Vulnerability
ImproDevolutions Server Cookie Hijacking
Notables
Limited Public Information Available
CVE-2025-64495
Vulnerability
Open WebUI Stored DOM XSS
Notables
Limited Public Information Available
CVE-2025-20343
Vulnerability
Cisco ISE RADIUS DoS
Notables
Limited Public Information Available
CVE-2025-12101
Vulnerability
NetScaler ADC and NetScaler Gateway Cross-Site Scripting
Notables
Proof of Concept Available, Actively Exploited
CVE-2025-64525
Vulnerability
Astro web framework SSRF
Notables
Limited Public Information Available
info@nstcyber.ai
San Jose CA, USA
Bangalore, India
Dubai, UAE

Platform

Continuous Threat Exposure Management
Agentic AI -Assisted Exposure Assessment & Adversarial Validation
Automated Assessments
Prioritized Risk Identification
Swift Threat Detection and Response
Cyber Threat Informed Defense (CTID)
Compliance Assurance

Use Cases

Assess Your Security Posture
Eliminate Attack Vectors
Evaluate Vendors and Partners
Meet Compliance

Company

About NST Cyber
NST Cyber Partner Program
Careers

Resources

Blogs
Videos
White Papers & Advisories
© 2025 NetSentries Technologies Inc.  All Rights Reserved.
Privacy Policy