| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-6763 | Jetty URI parsing of invalid authority | Eclipse Foundation | Jetty | Low | 3.7 | 2024-10-14 15:06:07 | Deep Dive |
| CVE-2024-9823 | Jetty DOS vulnerability on DosFilter | Eclipse Foundation | Jetty | Medium | 5.3 | 2024-10-14 15:03:02 | Deep Dive |
| CVE-2024-46911 | Apache Roller: Weakness in CSRF protection allows privilege escalation | Apache Software Foundation | Apache Roller | - | - | 2024-10-14 08:13:06 | Deep Dive |
| CVE-2024-8376 | Memory leak | Eclipse Foundation | Mosquitto | 高危 | - | 2024-10-11 15:18:54 | Deep Dive |
| CVE-2024-9781 | Improper Handling of Missing Values in Wireshark | Wireshark Foundation | Wireshark | High | 7.8 | 2024-10-10 06:30:55 | Deep Dive |
| CVE-2024-9780 | Missing Initialization of a Variable in Wireshark | Wireshark Foundation | Wireshark | High | 7.8 | 2024-10-10 06:30:50 | Deep Dive |
| CVE-2024-38815 | VMware NSX 安全漏洞 | - | VMware NSX, VMware Cloud Foundation | Medium | 4.3 | 2024-10-09 19:47:53 | Deep Dive |
| CVE-2024-38818 | VMware NSX 安全漏洞 | - | VMware NSX, VMware Cloud Foundation | Medium | 6.7 | 2024-10-09 19:35:41 | Deep Dive |
| CVE-2024-38817 | VMware NSX 安全漏洞 | - | VMware NSX, VMware Cloud Foundation | Medium | 6.7 | 2024-10-09 19:28:06 | Deep Dive |
| CVE-2024-45720 | Apache Subversion: Command line argument injection on Windows platforms | Apache Software Foundation | Apache Subversion | High | 8.2 | 2024-10-09 12:38:29 | Deep Dive |
| CVE-2024-28168 | Apache XML Graphics FOP: XML External Entity (XXE) Processing | Apache Software Foundation | Apache XML Graphics FOP | - | - | 2024-10-09 12:04:04 | Deep Dive |
| CVE-2024-47841 | Path traversal when loading stylesheets EPSS 0.29 | The Wikimedia Foundation | Mediawiki - CSS Extension | 中危 | - | 2024-10-05 01:02:32 | Deep Dive |
| CVE-2024-47840 | Stored XSS through sidebar in Apex skin | The Wikimedia Foundation | Mediawiki - Apex skin | 中危 | - | 2024-10-05 00:53:39 | Deep Dive |
| CVE-2024-47847 | Various XSSes found in Cargo | The Wikimedia Foundation | Mediawiki - Cargo | 中危 | - | 2024-10-05 00:47:24 | Deep Dive |
| CVE-2024-47846 | Special:DeleteCargoTable and Special:SwitchCargoTable have no CSRF protection | The Wikimedia Foundation | Mediawiki - Cargo | 中危 | - | 2024-10-05 00:39:58 | Deep Dive |
| CVE-2024-47849 | Backticks can allow the usage of not-allowed SQL functions | The Wikimedia Foundation | Mediawiki - Cargo | 中危 | - | 2024-10-05 00:29:44 | Deep Dive |
| CVE-2024-47845 | CSS sanitizer used incorrectly, and is easily bypassed | The Wikimedia Foundation | Mediawiki - CSS Extension | 中危 | - | 2024-10-05 00:09:09 | Deep Dive |
| CVE-2024-47848 | User can review/unreview articles while blocked | The Wikimedia Foundation | Mediawiki - PageTriage | 中危 | - | 2024-10-04 23:53:51 | Deep Dive |
| CVE-2024-47554📌 | Apache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader | Apache Software Foundation | Apache Commons IO | 中危 | - | 2024-10-03 11:32:49 | Deep Dive |
| CVE-2024-47561 | Apache Avro Java SDK: Arbitrary Code Execution when reading Avro schema (Java SDK) | Apache Software Foundation | Apache Avro Java SDK | 高危 | - | 2024-10-03 10:23:16 | Deep Dive |