[ZDI-25-482|CVE-2025-7231] (0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: kimiya)

[ZDI-25-481|CVE-2025-7230] (0Day) INVT VT-Designer PM3 File Parsing Type Confusion Remote Code Execution Vulnerability (CVSS 7.8; Credit: kimiya)

[ZDI-25-480|CVE-2025-7229] (0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: kimiya)

[ZDI-25-479|CVE-2025-7228] (0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: kimiya)

[ZDI-25-478|CVE-2025-7227] (0Day) INVT VT-Designer PM3 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: kimiya)

[ZDI-25-477|CVE-2025-7226] (0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: rgod)

[ZDI-25-476|CVE-2025-7225] (0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-475|CVE-2025-7224] (0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-474|CVE-2025-7223] (0Day) INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 7.8; Credit: rgod)

[ZDI-25-468|CVE-2019-18935, CVE-2017-11317, CVE-2014-2217] GFI Archiver Telerik Web UI Remote Code Execution Vulnerability (CVSS 9.8)

[ZDI-25-466|CVE-2025-6809] (0Day) Marvell QConvergeConsole readNICParametersFromFile Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVSS 9.8; Credit: kimiya)

[ZDI-25-465|CVE-2025-6808] (0Day) Marvell QConvergeConsole readObjectFromConfigFile Deserialization of Untrusted Data Remote Code Execution Vulnerability (CVSS 9.8; Credit: kimiya)

[ZDI-25-423] Microsoft WinJS winjsdevelop Uncontrolled Search Path Element Remote Code Execution Vulnerability (CVSS 9.8; Credit: Nitesh Surana (@_niteshsurana) of Trend Micro Research)

[ZDI-25-416|CVE-2025-6445] ServiceStack FindType Directory Traversal Remote Code Execution Vulnerability (CVSS 8.1; Credit: Piotr Bazydlo (@chudypb) of Trend Micro Zero Day Initiative)

[ZDI-25-464|CVE-2025-6802] (0Day) Marvell QConvergeConsole getFileFromURL Unrestricted File Upload Remote Code Execution Vulnerability (CVSS 9.8; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-463|CVE-2025-6807] (0Day) Marvell QConvergeConsole getDriverTmpPath Directory Traversal Information Disclosure Vulnerability (CVSS 5.3; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-462|CVE-2025-6806] (0Day) Marvell QConvergeConsole decryptFile Directory Traversal Arbitrary File Write Vulnerability (CVSS 8.2; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-461|CVE-2025-6805] (0Day) Marvell QConvergeConsole deleteEventLogFile Directory Traversal Arbitrary File Deletion Vulnerability (CVSS 8.2; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-460|CVE-2025-6801] (0Day) Marvell QConvergeConsole saveNICParamsToFile Directory Traversal Arbitrary File Write Vulnerability (CVSS 8.2; Credit: Andrea Micalizzi aka rgod (@rgod777))

[ZDI-25-459|CVE-2025-6800] (0Day) Marvell QConvergeConsole restoreESwitchConfig Directory Traversal Information Disclosure Vulnerability (CVSS 7.5; Credit: Andrea Micalizzi aka rgod (@rgod777))