| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-0500 | Issue affecting Amazon WorkSpaces (when running Amazon DCV protocol), Amazon AppStream 2.0, and Amazon DCV clients | Amazon | WorkSpaces Client | High | 7.5 | 2025-01-15 18:20:33 | Deep Dive |
| CVE-2024-13301 | OAuth & OpenID Connect Single Sign On – SSO (OAuth/OIDC Client) - Critical - Cross Site Scripting - SA-CONTRIB-2024-067 | Drupal | OAuth & OpenID Connect Single Sign On – SSO (OAuth/OIDC Client) | 中危 | - | 2025-01-09 20:23:31 | Deep Dive |
| CVE-2024-10585 | InfiniteWP Client <= 1.13.0 - Unauthenticated Limited Directory Traversal to Arbitrary .txt File Reading | revmakx | InfiniteWP Client | Medium | 5.3 | 2025-01-08 05:19:22 | Deep Dive |
| CVE-2024-54007 | Authenticated Remote Command Injection Vulnerability in the Web Interface of a 501 Wireless Client Bridge | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking 501 Wireless Client Bridge | High | 7.2 | 2025-01-07 17:17:40 | Deep Dive |
| CVE-2024-54006 | Authenticated Remote Command Injection Vulnerability in the Web Interface of a 501 Wireless Client Bridge | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking 501 Wireless Client Bridge | High | 7.2 | 2025-01-07 17:12:19 | Deep Dive |
| CVE-2024-47480 | Dell Inventory Collector 安全漏洞 | Dell | Inventory Collector Client | High | 7.8 | 2024-12-18 01:05:52 | Deep Dive |
| CVE-2024-38499 | Improper Privilege Management Vulnerability in CA Client Automation 14.5 | Broadcom | CA Client Automation (ITCM) | 高危 | - | 2024-12-17 05:43:00 | Deep Dive |
| CVE-2024-8058 | Lenovo Filez 安全漏洞 | Lenovo | FileZ Client | High | 7.6 | 2024-12-16 17:04:31 | Deep Dive |
| CVE-2024-12646 | Chunghwa Telecom topm-client - Arbitrary File Delete | Chunghwa Telecom | topm-client | High | 8.1 | 2024-12-16 06:54:03 | Deep Dive |
| CVE-2024-12645 | Chunghwa Telecom topm-client - Arbitrary File Read | Chunghwa Telecom | topm-client | Medium | 6.5 | 2024-12-16 06:49:31 | Deep Dive |
| CVE-2024-12644 | Chunghwa Telecom tbm-client - Arbitrary File Copy and Paste | Chunghwa Telecom | tbm-client | High | 7.1 | 2024-12-16 06:45:03 | Deep Dive |
| CVE-2024-12643 | Chunghwa Telecom tbm-client - Arbitrary File Delete | Chunghwa Telecom | tbm-client | High | 8.1 | 2024-12-16 06:37:34 | Deep Dive |
| CVE-2024-47238 | Dell Client Platform BIOS 输入验证错误漏洞 | Dell | Dell Client Platform BIOS | High | 7.5 | 2024-12-12 17:38:19 | Deep Dive |
| CVE-2024-10111 | OAuth Single Sign On – SSO (OAuth Client) <= 6.26.3 - Authentication Bypass | cyberlord92 | OAuth Single Sign On – SSO (OAuth Client) | High | 8.1 | 2024-12-12 03:23:10 | Deep Dive |
| CVE-2024-52537 | Dell Client Platform 安全漏洞 | Dell | Dell Client Platform BIOS | Medium | 6.3 | 2024-12-11 07:26:36 | Deep Dive |
| CVE-2024-49105 | Remote Desktop Client Remote Code Execution Vulnerability | Microsoft | Windows 10 Version 1809 | High | 8.4 | 2024-12-10 20:06:25 | Deep Dive |
| CVE-2024-53819 | WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.0 - Insecure Direct Object References (IDOR) vulnerability | BoldGrid | Client Invoicing by Sprout Invoices | Medium | 5.3 | 2024-12-09 12:26:57 | Deep Dive |
| CVE-2024-53990 | AsyncHttpClient (AHC) library's `CookieStore` replaces explicitly defined `Cookie`s | AsyncHttpClient | async-http-client | 高危 | - | 2024-12-02 17:10:28 | Deep Dive |
| CVE-2024-11969 | Incorrect default permissions in Cradlepoint NetCloud Exchange | Cradlepoint | NetCloud Exchange Client | High | 8.8 | 2024-11-28 15:41:19 | Deep Dive |
| CVE-2024-51821 | WordPress WE – Client Logo Carousel plugin <= 1.4 - Cross Site Scripting (XSS) vulnerability | wordpresteem | WE – Client Logo Carousel | Medium | 6.5 | 2024-11-19 16:31:49 | Deep Dive |