| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-30143 | Akamai ASE 安全漏洞 | Akamai | App & API Protector | Medium | 5.4 | 2025-03-17 00:00:00 | Deep Dive |
| CVE-2025-2342 | IROAD X5 Mobile App API Endpoint hard-coded credentials | IROAD | X5 Mobile App | Medium | 5.3 | 2025-03-16 16:00:08 | Deep Dive |
| CVE-2025-1561 | AppPresser – Mobile App Framework <= 4.4.10 - Unauthenticated Stored Cross-Site Scripting | scottopolis | AppPresser – Mobile App Framework | High | 7.2 | 2025-03-13 04:21:05 | Deep Dive |
| CVE-2025-0118 | GlobalProtect App: Execution of Unsafe ActiveX Control Vulnerability | Palo Alto Networks | GlobalProtect App | 中危 | - | 2025-03-12 18:36:44 | Deep Dive |
| CVE-2025-0117 | GlobalProtect App: Local Privilege Escalation (PE) Vulnerability | Palo Alto Networks | GlobalProtect App | 中危 | - | 2025-03-12 18:35:35 | Deep Dive |
| CVE-2024-52362 | IBM App Connect Enterprise Certified Container denial of service | IBM | App Connect Enterprise Certified Container | Medium | 4.3 | 2025-03-12 14:04:11 | Deep Dive |
| CVE-2025-26645 | Remote Desktop Client Remote Code Execution Vulnerability | Microsoft | Remote Desktop client for Windows Desktop | High | 8.8 | 2025-03-11 16:59:26 | Deep Dive |
| CVE-2024-12604 | Improper Authentication in Tapandsign Technologies Tap and Sign App | Tapandsign Technologies | Tap&Sign App | Medium | 6.5 | 2025-03-10 14:28:12 | Deep Dive |
| CVE-2024-13844 | Post SMTP <= 3.1.2 - Authenticated (Administrator+) SQL Injection via columns Parameter | saadiqbal | Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App | Medium | 4.9 | 2025-03-08 05:30:08 | Deep Dive |
| CVE-2025-1629 | Excitel Broadband Private my Excitel App One-Time Password excessive authentication | Excitel Broadband Private | my Excitel App | Low | 3.5 | 2025-02-24 05:00:12 | Deep Dive |
| CVE-2025-0352 | Rapid Response Monitoring My Security Account App Authorization Bypass Through User-Controlled Key | Rapid Response Monitoring | My Security Account App API | High | 7.5 | 2025-02-20 19:15:27 | Deep Dive |
| CVE-2024-13888 | WPMobile.App <= 11.56 - Open Redirect via 'redirect' Parameter | amauric | WPMobile.App | High | 7.2 | 2025-02-20 08:22:06 | Deep Dive |
| CVE-2025-0521 | Post SMTP <= 3.0.2 - Unauthenticated Stored Cross-Site Scripting | saadiqbal | Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App | High | 7.2 | 2025-02-18 11:10:19 | Deep Dive |
| CVE-2024-12651 | Sensitive Data Exposure in PTT Inc.'s HGS Mobile App | PTT Inc. | HGS Mobile App | High | 8.5 | 2025-02-14 13:24:14 | Deep Dive |
| CVE-2025-0799 | IBM App Connect Enterprise Arbitrary File Write | IBM | IBM App Connect Enterprise | Medium | 6.5 | 2025-02-06 00:24:41 | Deep Dive |
| CVE-2025-0147 | Zoom Workplace App for Linux - Type Confusion | Zoom Communications, Inc | Zoom Workplace App for Linux | High | 8.8 | 2025-01-30 19:49:01 | Deep Dive |
| CVE-2025-0146 | Zoom Workplace app for macOS - Symlink Following | Zoom Communications, Inc | Zoom Workplace app for macOS | Low | 3.9 | 2025-01-30 19:47:26 | Deep Dive |
| CVE-2022-43916 | IBM App Connect Enterprise Certified Container improper communications restriction | IBM | App Connect Enterprise Certified Container | Medium | 6.8 | 2025-01-30 12:04:47 | Deep Dive |
| CVE-2024-13052 | Dental Optimizer Patient Generator App <= 1.0 - Reflected XSS | Unknown | Dental Optimizer Patient Generator App | 高危 | - | 2025-01-27 06:00:09 | Deep Dive |
| CVE-2024-49338 | IBM App Connect Enterprise information disclosure | IBM | App Connect Enterprise | Medium | 4.4 | 2025-01-18 15:00:16 | Deep Dive |