| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-7195 | Operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd | operator-framework | operator-sdk | Medium | 6.4 | 2025-08-07 19:05:09 | Deep Dive |
| CVE-2025-8419 | Org.keycloak/keycloak-services: keycloak smtp inject vulnerability | Keycloak | keycloak | Medium | 5.3 | 2025-08-06 17:10:03 | Deep Dive |
| CVE-2025-8556 | Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results | - | - | Low | 3.7 | 2025-08-06 08:48:18 | Deep Dive |
| CVE-2025-5988 | Aap-gateway: csrf origin checking is disabled | - | - | Medium | 5.3 | 2025-08-04 15:16:44 | Deep Dive |
| CVE-2023-32253 | Kernel: deadlock in ksmbd_find_crypto_ctx() | - | - | Medium | 5.9 | 2025-08-02 22:26:05 | Deep Dive |
| CVE-2023-32255 | Kernel: memory leak via ksmbd session setup request with unknown ntlmssp message type | - | - | Medium | 5.3 | 2025-08-02 22:25:45 | Deep Dive |
| CVE-2023-32256 | Kernel: ksmbd race issue from smb2 close and logoff with multichannel | - | - | High | 7.5 | 2025-08-01 17:37:16 | Deep Dive |
| CVE-2023-32251 | Kernel: ksmbd brute force delay bypass via asynchronous requests | - | - | Low | 3.7 | 2025-07-31 20:44:03 | Deep Dive |
| CVE-2025-7738 | Python3.11-django-ansible-base: sensitive authenticator secrets returned in clear text via api in aap | Ansible | django-ansible-base | Medium | 4.4 | 2025-07-31 14:12:03 | Deep Dive |
| CVE-2023-2593 | Kernel: ksmbd memory exhaustion denial-of-service vulnerability | - | - | Medium | 5.9 | 2025-07-30 15:15:54 | Deep Dive |
| CVE-2025-8283 | Netavark: podman: netavark may resolve hostnames to unexpected hosts | - | - | Low | 3.7 | 2025-07-28 18:16:08 | Deep Dive |
| CVE-2025-4056 | Glib: glib crash after long command line | - | - | High | 7.5 | 2025-07-28 12:40:29 | Deep Dive |
| CVE-2025-5449 | Libssh: integer overflow in libssh sftp server packet length validation leading to denial of service | - | - | Medium | 6.5 | 2025-07-25 17:19:39 | Deep Dive |
| CVE-2025-8114 | Libssh: null pointer dereference in libssh kex session id calculation | - | - | Medium | 4.7 | 2025-07-24 14:14:48 | Deep Dive |
| CVE-2025-6018 | Pam-config: lpe from unprivileged to allow_active in pam | - | - | High | 7.8 | 2025-07-23 14:59:00 | Deep Dive |
| CVE-2025-4878 | Libssh: use of uninitialized variable in privatekey_from_file() | - | - | Low | 3.6 | 2025-07-22 14:17:03 | Deep Dive |
| CVE-2025-7784 | Org.keycloak/keycloak-services: privilege escalation in keycloak admin console (fgapv2 enabled) | - | - | Medium | 6.5 | 2025-07-18 13:48:46 | Deep Dive |
| CVE-2025-7519 | Polkit: xml policy file with a large number of nested elements may lead to out-of-bounds write | - | - | Medium | 6.7 | 2025-07-14 13:35:21 | Deep Dive |
| CVE-2025-53861 | Aap: sensitive cookie(s) set without security flags | Red Hat | Red Hat Ansible Automation Platform 2 | Low | 3.1 | 2025-07-11 12:44:18 | Deep Dive |
| CVE-2025-53862 | Aap: aap-gateway: automation-hub: sensitive information disclosure | Red Hat | Red Hat Ansible Automation Platform 2 | Low | 3.5 | 2025-07-11 12:34:24 | Deep Dive |