| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-33247 | NATS credentials are exposed in monitoring port via command-line argv | nats-io | nats-server | High | 7.4 | 2026-03-25 20:02:19 | Deep Dive |
| CVE-2026-33219 | NATS is vulnerable to pre-auth DoS through WebSockets client service | nats-io | nats-server | Medium | 5.3 | 2026-03-25 19:55:28 | Deep Dive |
| CVE-2026-33218 | NATS has pre-auth server panic via leafnode handling | nats-io | nats-server | High | 7.5 | 2026-03-25 19:53:12 | Deep Dive |
| CVE-2026-33246 | NATS: Leafnode connections allow spoofing of Nats-Request-Info identity headers | nats-io | nats-server | Medium | 6.4 | 2026-03-25 19:50:03 | Deep Dive |
| CVE-2026-33217 | NATS allows MQTT clients to bypass ACL checks | nats-io | nats-server | High | 7.1 | 2026-03-25 19:43:41 | Deep Dive |
| CVE-2026-33216 | NATS has MQTT plaintext password disclosure | nats-io | nats-server | High | 8.6 | 2026-03-25 19:41:56 | Deep Dive |
| CVE-2026-29785 | NATS Server panic via malicious compression on leafnode port | nats-io | nats-server | High | 7.5 | 2026-03-25 19:38:45 | Deep Dive |
| CVE-2026-27889 | NATS: Pre-auth remote server crash via WebSocket frame length overflow in wsRead | nats-io | nats-server | High | 7.5 | 2026-03-25 19:36:36 | Deep Dive |
| CVE-2026-2414 | HYPR Server 安全漏洞 | HYPR | Server | 中危 | - | 2026-03-25 17:03:03 | Deep Dive |
| CVE-2026-1712 | HYPR Server 安全漏洞 | HYPR | Server | 中危 | - | 2026-03-25 16:56:06 | Deep Dive |
| CVE-2026-33215 | NATS is vulnerable to MQTT hijacking via Client ID | nats-io | nats-server | Medium | 6.5 | 2026-03-24 20:55:53 | Deep Dive |
| CVE-2026-24158 | NVIDIA Triton Inference Server 安全漏洞 | NVIDIA | Triton Inference Server | High | 7.5 | 2026-03-24 20:26:29 | Deep Dive |
| CVE-2025-33254 | NVIDIA Triton Inference Server 竞争条件问题漏洞 | NVIDIA | Triton Inference Server | High | 7.5 | 2026-03-24 20:26:12 | Deep Dive |
| CVE-2025-33238 | NVIDIA Triton Inference Server 竞争条件问题漏洞 | NVIDIA | Triton Inference Server | High | 7.5 | 2026-03-24 20:25:57 | Deep Dive |
| CVE-2026-22559 | Ubiquiti UniFi Network Server 安全漏洞 | Ubiquiti Inc | UniFi Network Server | High | 8.8 | 2026-03-24 19:05:41 | Deep Dive |
| CVE-2026-33627 | Parse Server: Auth data exposed via /users/me endpoint | parse-community | parse-server | 中危 | - | 2026-03-24 18:31:15 | Deep Dive |
| CVE-2026-33624 | Parse Server: MFA recovery code single-use bypass via concurrent requests | parse-community | parse-server | 中危 | - | 2026-03-24 18:28:52 | Deep Dive |
| CVE-2026-33539 | Parse Server: SQL injection via aggregate and distinct field names in PostgreSQL adapter | parse-community | parse-server | 中危 | - | 2026-03-24 18:26:56 | Deep Dive |
| CVE-2026-33538 | Parse Server: Denial of service via unindexed database query for unconfigured auth providers | parse-community | parse-server | 中危 | - | 2026-03-24 18:24:52 | Deep Dive |
| CVE-2026-33527 | Parse Server: Session update endpoint allows overwriting server-generated session fields | parse-community | parse-server | 中危 | - | 2026-03-24 18:22:45 | Deep Dive |