| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-4009 | Unauthenticated Arbitrary Command Injection in Evertz SDVN | Evertz | 3080ipx-10G | - | - | 2025-05-28 07:00:33 | Deep Dive |
| CVE-2025-0136 | PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices | Palo Alto Networks | Cloud NGFW | - | - | 2025-05-14 18:12:14 | Deep Dive |
| CVE-2025-0133 | PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal | Palo Alto Networks | Cloud NGFW | - | - | 2025-05-14 18:07:36 | Deep Dive |
| CVE-2025-0130 | PAN-OS: Firewall Denial-of-Service (DoS) in the Web-Proxy Feature via a Burst of Maliciously Crafted Packets | Palo Alto Networks | Cloud NGFW | - | - | 2025-05-14 17:37:41 | Deep Dive |
| CVE-2025-47681 | WordPress Web Accessibility with Max Access plugin <= 2.0.9 - Cross Site Request Forgery (CSRF) Vulnerability | Ability, Inc | Web Accessibility with Max Access | Medium | 4.3 | 2025-05-07 14:20:54 | Deep Dive |
| CVE-2025-0217 | Privileged Remote Access Authentication Bypass | BeyondTrust | Privileged Remote Access | - | - | 2025-05-05 17:00:05 | Deep Dive |
| CVE-2024-52888 | Stored-XSS | checkpoint | Check Point Mobile Access | Medium | 5.4 | 2025-04-27 07:46:54 | Deep Dive |
| CVE-2024-52887 | Self-XSS | checkpoint | Check Point Mobile Access | Low | 3.5 | 2025-04-27 07:46:23 | Deep Dive |
| CVE-2025-3923 | Prevent Direct Access – Protect WordPress Files <= 2.8.8 - Unauthenticated Sensitive Information Exposure | buildwps | Prevent Direct Access – Protect WordPress Files | Medium | 5.3 | 2025-04-25 05:25:08 | Deep Dive |
| CVE-2025-3861 | Prevent Direct Access 2.8.6 - 2.8.8.2 - Incorrect Authorization to Authenticated (Contributor+) Multiple Media Actions | buildwps | Prevent Direct Access – Protect WordPress Files | Medium | 5.4 | 2025-04-25 05:25:07 | Deep Dive |
| CVE-2025-25234 | Omnissa UAG 安全漏洞 | Omnissa | Omnissa Unified Access Gateway (UAG) | High | 7.1 | 2025-04-17 14:58:36 | Deep Dive |
| CVE-2025-39582 | WordPress WP Data Access plugin <= 5.5.36 - Cross Site Scripting (XSS) Vulnerability | Passionate Programmer Peter | WP Data Access | Medium | 6.5 | 2025-04-16 12:44:24 | Deep Dive |
| CVE-2025-0129 | Prisma Access Browser: Inappropriate control behavior in Prisma Access Browser | Palo Alto Networks | Prisma Access Browser | - | - | 2025-04-11 22:25:36 | Deep Dive |
| CVE-2025-0123 | PAN-OS: Information Disclosure Vulnerability in HTTP/2 Packet Captures | Palo Alto Networks | Cloud NGFW | - | - | 2025-04-11 17:43:05 | Deep Dive |
| CVE-2025-0128 | PAN-OS: Firewall Denial of Service (DoS) Using a Specially Crafted Packet | Palo Alto Networks | Cloud NGFW | - | - | 2025-04-11 02:03:22 | Deep Dive |
| CVE-2025-0127 | PAN-OS: Authenticated Admin Command Injection Vulnerability in PAN-OS VM-Series | Palo Alto Networks | Cloud NGFW | - | - | 2025-04-11 02:01:35 | Deep Dive |
| CVE-2025-0126 | PAN-OS: Session Fixation Vulnerability in GlobalProtect SAML Login | Palo Alto Networks | Cloud NGFW | - | - | 2025-04-11 01:57:13 | Deep Dive |
| CVE-2025-0125 | PAN-OS: Improper Neutralization of Input in the Management Web Interface | Palo Alto Networks | Cloud NGFW | - | - | 2025-04-11 01:56:17 | Deep Dive |
| CVE-2025-0124 | PAN-OS: Authenticated File Deletion Vulnerability on the Management Web Interface | Palo Alto Networks | Cloud NGFW | - | - | 2025-04-11 01:55:34 | Deep Dive |
| CVE-2025-26642 | Microsoft Office Remote Code Execution Vulnerability | Microsoft | Microsoft 365 Apps for Enterprise | High | 7.8 | 2025-04-08 17:23:45 | Deep Dive |