NVD disclosure day

Published threat advisories for March 5, 2025

CVE-2024-12097

SQL Injection Risk in E-Travel Allows Data Compromise.

Halo Surface Signal: 4 out of 5 — likely to be public-facing.

An SQL Injection vulnerability in E-Travel software allows attackers to manipulate database queries, potentially leading to unauthorized access or alteration of sensitive data. This poses a risk to data confidentiality and integrity for affected organizations.

NVD published: March 5, 2025

CVE advisoryKnown Exploit

CVE-2025-1316

Edimax IC-7100 Remote Code Execution Vulnerability.

Halo Surface Signal: 5 out of 5 — more likely to be public-facing.

The Edimax IC-7100 is vulnerable to remote code execution due to improperly handled requests. This poses a business risk as attackers can gain unauthorized control over the device, potentially impacting operations. Discontinuation of product use is recommended.

NVD published: March 5, 2025 • CISA KEV