| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-42957 | Code Injection vulnerability in SAP S/4HANA (Private Cloud or On-Premise) | SAP_SE | SAP S/4HANA (Private Cloud or On-Premise) | Critical | 9.9 | 2025-08-12 02:09:53 | Deep Dive |
| CVE-2025-42955 | Missing authorization check in SAP Cloud Connector | SAP_SE | SAP Cloud Connector | Low | 3.5 | 2025-08-12 02:09:44 | Deep Dive |
| CVE-2025-36023 | IBM Cloud Pak for Business Automation security bypass | IBM | Cloud Pak for Business Automation | Medium | 6.5 | 2025-08-08 14:51:13 | Deep Dive |
| CVE-2025-7770 | Predictable Seed in Pseudo-Random Number Generator (PRNG) in Tigo Energy Cloud Connect Advanced | Tigo Energy | Cloud Connect Advanced | - | - | 2025-08-06 20:45:07 | Deep Dive |
| CVE-2025-7769 | Improper Neutralization of Special Elements used in a Command ('Command Injection') in Tigo Energy Cloud Connect Advanced | Tigo Energy | Cloud Connect Advanced | - | - | 2025-08-06 20:42:47 | Deep Dive |
| CVE-2025-7768 | Use of Hard-coded Credentials in Tigo Energy Cloud Connect Advanced | Tigo Energy | Cloud Connect Advanced | - | - | 2025-08-06 20:28:44 | Deep Dive |
| CVE-2025-7050 | Use-your-Drive | Google Drive plugin for WordPress <= 3.3.1- Unauthenticated Stored Cross-Site Scripting via File Metadata | WP Cloud Plugins/_deleeuw_ | Use-your-Drive | Google Drive plugin for WordPress | High | 7.2 | 2025-08-05 06:39:49 | Deep Dive |
| CVE-2025-8516 | Kingdee Cloud-Starry-Sky Enterprise Edition IIS-K3CloudMiniApp FileUploadAction.class path traversal | Kingdee | Cloud-Starry-Sky Enterprise Edition | Medium | 5.3 | 2025-08-04 15:32:08 | Deep Dive |
| CVE-2025-8317 | Custom Word Cloud <= 0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via angle Parameter | bnielsen | Custom Word Cloud | Medium | 6.4 | 2025-08-02 07:24:23 | Deep Dive |
| CVE-2025-8348 | Kehua Charging Pile Cloud Platform home improper authentication | Kehua | Charging Pile Cloud Platform | High | 7.3 | 2025-07-31 03:32:06 | Deep Dive |
| CVE-2025-8347 | Kehua Charging Pile Cloud Platform findAllTask sql injection | Kehua | Charging Pile Cloud Platform | Medium | 6.3 | 2025-07-31 03:02:06 | Deep Dive |
| CVE-2025-41241 | Denial-of-service vulnerability | VMware | vCenter | Medium | 4.4 | 2025-07-29 12:25:56 | Deep Dive |
| CVE-2024-58263 | cosmwasm-std crate 输入验证错误漏洞 | CosmWasm | cosmwasm-std | Low | 3.7 | 2025-07-27 00:00:00 | Deep Dive |
| CVE-2022-4979 | Sitecore XP 7.5 - 10.2, CMS 7.2, and Managed Cloud XSS | Sitecore | Experience Platform | 中危 | - | 2025-07-25 15:55:36 | Deep Dive |
| CVE-2025-34139 | Sitecore XM/XP/XC and Managed Cloud 8.0 - 10.4 Arbitrary File Read | Sitecore | Experience Manager (XM) | 中危 | - | 2025-07-25 15:54:25 | Deep Dive |
| CVE-2025-41239 | vSockets information-disclosure vulnerability | VMware | ESXi | High | 7.1 | 2025-07-15 18:35:04 | Deep Dive |
| CVE-2025-41238 | PVSCSI heap-overflow vulnerability | VMware | ESXi | Critical | 9.3 | 2025-07-15 18:34:49 | Deep Dive |
| CVE-2025-41237 | VMCI integer-underflow vulnerability | VMware | Cloud Foundation | Critical | 9.3 | 2025-07-15 18:34:21 | Deep Dive |
| CVE-2025-41236 | VMXNET3 integer-overflow vulnerability | VMware | ESXi | Critical | 9.3 | 2025-07-15 18:34:13 | Deep Dive |
| CVE-2025-53663 | Jenkins plugin IBM Cloud DevOps 安全漏洞 | Jenkins Project | Jenkins IBM Cloud DevOps Plugin | - | - | 2025-07-09 15:39:34 | Deep Dive |