| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-49736 | Apache Superset: SQL Injection on where_in JINJA macro | Apache Software Foundation | Apache Superset | Medium | 6.5 | 2023-12-19 09:33:10 | Deep Dive |
| CVE-2023-46104 | Apache Superset: Allows for uncontrolled resource consumption via a ZIP bomb | Apache Software Foundation | Apache Superset | Medium | 6.5 | 2023-12-19 09:30:54 | Deep Dive |
| CVE-2023-41314 | Apache Doris: Missing API authentication allowed DoS | Apache Software Foundation | Apache Doris | - | - | 2023-12-18 08:27:52 | Deep Dive |
| CVE-2023-30867 | Apache StreamPark (incubating): Authenticated system users could trigger SQL injection vulnerability | Apache Software Foundation | Apache StreamPark (incubating) | 中危 | - | 2023-12-15 12:14:02 | Deep Dive |
| CVE-2023-49898 | Apache StreamPark (incubating): Authenticated system users could trigger remote command execution | Apache Software Foundation | Apache StreamPark (incubating) | 中危 | - | 2023-12-15 12:13:25 | Deep Dive |
| CVE-2023-46279 | Apache Dubbo: Bypass deny serialize list check in Apache Dubbo | Apache Software Foundation | Apache Dubbo | 超危 | - | 2023-12-15 08:15:56 | Deep Dive |
| CVE-2023-29234 | Bypass serialize checks in Apache Dubbo EPSS 0.89 | Apache Software Foundation | Apache Dubbo | 超危 | - | 2023-12-15 08:14:48 | Deep Dive |
| CVE-2023-46750 | Apache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro. | Apache Software Foundation | Apache Shiro | - | - | 2023-12-14 08:15:58 | Deep Dive |
| CVE-2023-45725 | Apache CouchDB, IBM Cloudant: Privilege Escalation Using _design Documents | Apache Software Foundation | Apache CouchDB | - | - | 2023-12-13 08:02:17 | Deep Dive |
| CVE-2023-46285 | Siemens Opcenter Quality 输入验证错误漏洞 | Siemens | Opcenter Execution Foundation | High | 7.5 | 2023-12-12 11:27:17 | Deep Dive |
| CVE-2023-46284 | Siemens Opcenter Quality 安全漏洞 | Siemens | Opcenter Execution Foundation | High | 7.5 | 2023-12-12 11:27:16 | Deep Dive |
| CVE-2023-46283 | Siemens Opcenter Quality 安全漏洞 | Siemens | Opcenter Execution Foundation | High | 7.5 | 2023-12-12 11:27:14 | Deep Dive |
| CVE-2023-46282 | Siemens Opcenter Quality 安全漏洞 | Siemens | Opcenter Execution Foundation | High | 7.1 | 2023-12-12 11:27:13 | Deep Dive |
| CVE-2023-46281 | Siemens Opcenter Quality 安全漏洞 | Siemens | Opcenter Execution Foundation | High | 7.1 | 2023-12-12 11:27:12 | Deep Dive |
| CVE-2023-6194 | Eclipse Memory Analyzer 代码问题漏洞 | Eclipse Foundation | Eclipse Memory Analyzer (tools.mat) | Low | 2.8 | 2023-12-11 14:04:52 | Deep Dive |
| CVE-2023-6186 | Link targets allow arbitrary script execution | The Document Foundation | LibreOffice | High | 8.3 | 2023-12-11 11:56:40 | Deep Dive |
| CVE-2023-6185 | Improper input validation enabling arbitrary Gstreamer pipeline injection | The Document Foundation | LibreOffice | High | 8.3 | 2023-12-11 11:52:06 | Deep Dive |
| CVE-2023-6507 | Groups not dropped before running subprocess when using empty 'extra_groups' parameter | Python Software Foundation | CPython | Medium | 6.1 | 2023-12-08 18:20:50 | Deep Dive |
| CVE-2023-50164📌 | Apache Struts: File upload component had a directory traversal vulnerability EPSS 0.93 | Apache Software Foundation | Apache Struts | 超危 | - | 2023-12-07 08:49:20 | Deep Dive |
| CVE-2023-41835 | Apache Struts: excessive disk usage | Apache Software Foundation | Apache Struts | 高危 | - | 2023-12-05 08:37:32 | Deep Dive |