News
Vulnerability Report - July 2025

Vulnerability Report - July 2025

August 23, 2025

 #VulnerabilityReport#Report

All vulnerability reports

Introduction

This vulnerability report has been generated using data aggregated on Vulnerability-Lookup, with contributions from the platform’s community.

It highlights the most frequently mentioned vulnerability for July 2025, based on sightings collected from various sources, including MISP, Exploit-DB, Bluesky, Mastodon, GitHub Gists, The Shadowserver Foundation, Nuclei, and more. For further details, please visit this page.

The final section focuses on exploitations observed through The Shadowserver Foundation’s honeypot network.

The Month at a Glance

The most reported vulnerability this month is CVE-2025-53770, a critical flaw in Microsoft SharePoint Enterprise Server 2016, with over 400 sightings. Other high-impact vulnerabilities include CVE-2025-5777 affecting NetScaler ADC, and CVE-2025-25257 in Fortinet FortiWeb, both widely discussed across communities and security feeds.

Well-known products such as Google Chrome and Wing FTP Server also appear in the top 10, along with GitHub advisories like GHSA-269G-PWP5-87PP (JUnit4) and GHSA-78WR-2P64-HPWJ (Apache Commons IO). This mix shows how both enterprise-grade platforms and widely used open-source projects continue to be targeted.

The most common weaknesses remain familiar:

  • CWE-79 (Cross-site Scripting) with 747 cases.
  • CWE-89 (SQL Injection) with 710 cases.
  • CWE-122 (Heap-based Buffer Overflow) with 593 cases.

Top 10 vulnerabilities of the Month

VulnerabilitySighting CountVendorProductVLAI Severity
CVE-2025-53770416MicrosoftMicrosoft SharePoint Enterprise Server 2016Critical (confidence: 0.8952)
CVE-2025-5777267NetScalerADCCritical (confidence: 0.9621)
CVE-2025-25257145FortinetFortiWebCritical (confidence: 0.9819)
CVE-2025-6554130GoogleChromeHigh (confidence: 0.9928)
CVE-2025-47812129wftpserverWing FTP ServerCritical (confidence: 0.9724)
GHSA-269G-PWP5-87PP120junit-teamjunit4Medium (confidence: 0.5366)
CVE-2025-53771104MicrosoftMicrosoft SharePoint Enterprise Server 2016Medium (confidence: 0.9689)
CVE-2025-4970696MicrosoftMicrosoft SharePoint Enterprise Server 2016Medium (confidence: 0.9689)
GHSA-78WR-2P64-HPWJ85Apache Software FoundationApache Commons IOMedium (confidence: 0.9078)
GHSA-5MG8-W23W-74H384Google LLCGuavaLow (confidence: 0.877)

Most wanted vulnerabilities

The following vulnerabilities were only detected through our sighting tools:

These vulnerabilities have not yet been officially published.

Top 10 Weaknesses of the Month

CWENumber of vulnerabilities
CWE-79747
CWE-89710
CWE-122593
CWE-74526
CWE-416492
CWE-119397
CWE-125353
CWE-94313
CWE-434216
CWE-121213

Insights from Contributors

Ruckus network management solutions riddled with unpatched vulnerabilities - Help Net Security

Claroty researcher Noam Moshe has discovered serious vulnerabilities in two Ruckus Networks (formerly Ruckus Wireless) products that may allow attackers to compromise the environments managed by the affected software, Carnegie Mellon University’s CERT Coordination Center (CERT/CC) has warned.
More information

Pre-Auth SQL Injection to RCE - Fortinet FortiWeb Fabric Connector (CVE-2025-25257)

An improper neutralization of special elements used in an SQL command (‘SQL Injection’) vulnerability [CWE-89] in Fortinet FortiWeb.
More information

VMSA-2025-0013: VMware ESXi, Workstation, Fusion, and Tools updates address multiple vulnerabilities

Multiple vulnerabilities in VMware ESXi, Workstation, Fusion, and Tools were privately reported to Broadcom. Updates are available to remediate these vulnerabilities in affected Broadcom products.
More information

Continuous Exploitation

Thank you

Thank you to all the contributors and our diverse sources!

If you want to contribute to the next report, you can create your account.

Feedback and Support

If you have suggestions, please feel free to open a ticket on our GitHub repository. Your feedback is invaluable to us!
https://github.com/vulnerability-lookup/vulnerability-lookup/issues/

Vulnerability-Lookup 2.15.0 released