| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2018-25269 | ICEWARP 11.0.0.0 Cross-Site Scripting via Email HTML Injection | icewarp | ICEWARP Client | Medium | 6.1 | 2026-04-22 14:57:03 | Deep Dive |
| CVE-2026-39454 | SKYSEA Client View 安全漏洞 | Sky Co.,LTD. | SKYSEA Client View | - | - | 2026-04-20 08:04:57 | Deep Dive |
| CVE-2026-40490 | AsyncHttpClient leaks authorization credentials to untrusted domains on cross-origin redirects | AsyncHttpClient | async-http-client | Medium | 6.8 | 2026-04-18 01:31:14 | Deep Dive |
| CVE-2026-35465 | SecureDrop Client has path injection in read_gzip_header_filename() | freedomofpress | securedrop-client | High | 7.5 | 2026-04-18 00:41:17 | Deep Dive |
| CVE-2026-3861 | Line Corporation Line Client For Ios 安全漏洞 | LINE Corporation | LINE client for iOS | Medium | 6.5 | 2026-04-16 05:54:05 | Deep Dive |
| CVE-2026-32157 | Remote Desktop Client Remote Code Execution Vulnerability | Microsoft | Remote Desktop client for Windows Desktop | High | 8.8 | 2026-04-14 16:57:26 | Deep Dive |
| CVE-2026-35337 | Apache Storm Client: RCE through Unsafe Deserialization via Kerberos TGT Credential Handling | Apache Software Foundation | Apache Storm Client | 高危 | - | 2026-04-13 09:11:06 | Deep Dive |
| CVE-2026-39304 | Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Incorrect handling of TLSv1.3 KeyUpdate can be exploited to cause DoS via OOM | Apache Software Foundation | Apache ActiveMQ Client | 高危 | - | 2026-04-10 10:54:04 | Deep Dive |
| CVE-2021-47961 | Synology SSL VPN Client 安全漏洞 | Synology | Synology SSL VPN Client | High | 8.1 | 2026-04-10 09:22:38 | Deep Dive |
| CVE-2021-47960 | Synology SSL VPN Client 安全漏洞 | Synology | Synology SSL VPN Client | Medium | 6.5 | 2026-04-10 09:21:55 | Deep Dive |
| CVE-2026-39562 | WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.10 - Broken Access Control vulnerability | BoldGrid | Client Invoicing by Sprout Invoices | - | - | 2026-04-08 08:30:18 | Deep Dive |
| CVE-2026-33227 | Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ Web, Apache ActiveMQ: Improper Limitation of a Pathname to a Restricted Classpath Directory | Apache Software Foundation | Apache ActiveMQ Client | - | - | 2026-04-07 07:50:59 | Deep Dive |
| CVE-2025-65116 | Buffer Overflow Vulnerability in JP1/IT Desktop Management 2 and JP1/NETM/DM | Hitachi | JP1/IT Desktop Management 2 - Manager | Medium | 5.5 | 2026-04-07 05:43:26 | Deep Dive |
| CVE-2025-65115 | Remote Code Execution Vulnerability in JP1/IT Desktop Management 2 and JP1/NETM/DM | Hitachi | JP1/IT Desktop Management 2 - Manager | High | 8.8 | 2026-04-07 05:19:50 | Deep Dive |
| CVE-2026-22569 | Incorrect startup configuration in ZCC | Zscaler | Zscaler Client Connector | Medium | 5.4 | 2026-03-31 14:54:57 | Deep Dive |
| CVE-2026-3502 | TrueConf Client Update Integrity Verification Bypass | TrueConf | TrueConf Client | High | 7.8 | 2026-03-30 18:05:43 | Deep Dive |
| CVE-2018-25234 | SmartFTP Client 9.0.2615.0 Denial of Service via Host Field | Smartftp | SmartFTP Client | Medium | 6.2 | 2026-03-30 11:02:26 | Deep Dive |
| CVE-2016-20046 | zFTP Client 20061220+dfsg3-4.1 Local Buffer Overflow | zFTP | zFTP Client | High | 8.4 | 2026-03-28 11:58:07 | Deep Dive |
| CVE-2026-3532 | OpenID Connect / OAuth client - Less critical - Access bypass - SA-CONTRIB-2026-027 | Drupal | OpenID Connect / OAuth client | - | - | 2026-03-26 20:04:03 | Deep Dive |
| CVE-2026-3531 | OpenID Connect / OAuth client - Moderately critical - Access bypass - SA-CONTRIB-2026-026 | Drupal | OpenID Connect / OAuth client | - | - | 2026-03-26 20:03:49 | Deep Dive |