| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-3044 | Graphic on-click binding allows unchecked script execution | The Document Foundation | LibreOffice | 中危 | - | 2024-05-14 20:19:51 | Deep Dive |
| CVE-2024-32077 | Apache Airflow: XSS vulnerability in Task Instance Log/Log Details | Apache Software Foundation | Apache Airflow | 中危 | - | 2024-05-14 10:43:20 | Deep Dive |
| CVE-2024-4855 | Use After Free in editcap | Wireshark Foundation | editcap | Low | 3.6 | 2024-05-14 00:03:17 | Deep Dive |
| CVE-2024-4854 | Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark | Wireshark Foundation | Wireshark | Medium | 6.4 | 2024-05-14 00:03:12 | Deep Dive |
| CVE-2024-4853 | Mismatched Memory Management Routines in editcap | Wireshark Foundation | editcap | Low | 3.6 | 2024-05-14 00:03:08 | Deep Dive |
| CVE-2024-34559 | WordPress Ghost plugin <= 1.4.0 - Sensitive Data Exposure via Log File vulnerability | Ghost Foundation | Ghost | High | 7.5 | 2024-05-09 12:03:01 | Deep Dive |
| CVE-2024-34365 | Apache Karaf Cave: Cave SSRF and arbitrary file access | Apache Software Foundation | Apache Karaf Cave | 高危 | - | 2024-05-09 06:49:05 | Deep Dive |
| CVE-2024-26579 | Apache Inlong JDBC Vulnerability | Apache Software Foundation | Apache InLong | - | - | 2024-05-08 15:06:24 | Deep Dive |
| CVE-2024-32113KEV📌💣 | Apache OFBiz: Path traversal leading to RCE EPSS 0.94 | Apache Software Foundation | Apache OFBiz | - | - | 2024-05-08 14:50:07 | Deep Dive |
| CVE-2023-27321 | OPC Foundation UA .NET Standard ConditionRefresh Resource Exhaustion Denial-of-Service Vulnerability | OPC Foundation | UA .NET Standard | - | - | 2024-05-07 22:55:02 | Deep Dive |
| CVE-2024-4030 | tempfile.mkdtemp() may be readable and writeable by all users on Windows | Python Software Foundation | CPython | - | - | 2024-05-07 21:02:55 | Deep Dive |
| CVE-2024-28148 | Apache Superset: Incorrect datasource authorization on explore REST API | Apache Software Foundation | Apache Superset | Medium | 4.3 | 2024-05-07 13:33:42 | Deep Dive |
| CVE-2024-4536 | Eclipse EDC: OAuth2 Credential Exfiltration Vulnerability | Eclipse Foundation | EDC | Medium | 6.8 | 2024-05-07 13:11:45 | Deep Dive |
| CVE-2023-35701 | Apache Hive: Arbitrary command execution via JDBC driver | Apache Software Foundation | Apache Hive | - | - | 2024-05-03 08:11:08 | Deep Dive |
| CVE-2024-4439📌💣 | WordPress 跨站脚本漏洞 EPSS 0.91 | WordPress Foundation | WordPress | High | 7.2 | 2024-05-03 05:32:35 | Deep Dive |
| CVE-2024-32638 | Apache APISIX: Forward-Auth Request Smuggling | Apache Software Foundation | Apache APISIX | 中危 | - | 2024-05-02 09:20:29 | Deep Dive |
| CVE-2024-32114📌💣 | Apache ActiveMQ: Jolokia and REST API were not secured with default configuration EPSS 0.74 | Apache Software Foundation | Apache ActiveMQ | High | 8.5 | 2024-05-02 08:29:18 | Deep Dive |
| CVE-2024-0740 | Eclipse Target Management <= 4.5.500 Command Injection | Eclipse Foundation | Eclipse Target Management | Critical | 9.8 | 2024-04-26 09:36:13 | Deep Dive |
| CVE-2024-27349 | Apache HugeGraph-Server: Bypass whitelist in Auth mode | Apache Software Foundation | Apache HugeGraph-Server | 高危 | - | 2024-04-22 14:08:57 | Deep Dive |
| CVE-2024-27348KEV📌💣 | Apache HugeGraph-Server: Command execution in gremlin EPSS 0.94 | Apache Software Foundation | Apache HugeGraph-Server | 超危 | - | 2024-04-22 14:08:06 | Deep Dive |