| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-10270 | Org.keycloak:keycloak-services: keycloak denial of service | - | - | Medium | 6.5 | 2024-11-25 07:37:05 | Deep Dive |
| CVE-2024-10451 | Org.keycloak:keycloak-quarkus-server: sensitive data exposure in keycloak build process | Red Hat | Red Hat build of Keycloak 24 | Medium | 5.9 | 2024-11-25 07:37:05 | Deep Dive |
| CVE-2024-9666 | Org.keycloak/keycloak-quarkus-server: keycloak proxy header handling denial-of-service (dos) vulnerability | - | - | Medium | 4.7 | 2024-11-25 07:29:52 | Deep Dive |
| CVE-2024-8781 | Container Escape Vulnerability in TR7's Application Security Platform (ASP) | TR7 | Application Security Platform (ASP) | - | - | 2024-11-18 14:00:49 | Deep Dive |
| CVE-2023-4639 | Undertow: cookie smuggling/spoofing | Red Hat | Migration Toolkit for Runtimes 1 on RHEL 8 | High | 7.4 | 2024-11-17 10:21:45 | Deep Dive |
| CVE-2024-47593 | Information Disclosure Vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server ABAP | Medium | 4.3 | 2024-11-12 00:27:18 | Deep Dive |
| CVE-2024-47592 | Information Disclosure Vulnerability in SAP NetWeaver Application Server Java (Logon Application) | SAP_SE | SAP NetWeaver Application Server Java (Logon Application) | Medium | 5.3 | 2024-11-12 00:27:11 | Deep Dive |
| CVE-2024-47586 | NULL Pointer Dereference vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server for ABAP and ABAP Platform | Medium | 5.3 | 2024-11-12 00:25:56 | Deep Dive |
| CVE-2024-45087 | IBM WebSphere Application Server cross-site scripting | IBM | WebSphere Application Server | Medium | 4.8 | 2024-11-11 17:06:44 | Deep Dive |
| CVE-2023-1973 | Undertow: unrestricted request storage leads to memory exhaustion | Red Hat | Red Hat JBoss Enterprise Application Platform 7 | High | 7.5 | 2024-11-07 10:01:58 | Deep Dive |
| CVE-2023-1932 | Hibernate-validator: rendering of invalid html with safehtml leads to html injection and xss | Red Hat | A-MQ Clients 2 | Medium | 6.1 | 2024-11-07 10:00:52 | Deep Dive |
| CVE-2024-35146 | IBM Maximo Application Suite cross-site scripting | IBM | Maximo Application Suite | Medium | 5.4 | 2024-11-06 14:16:35 | Deep Dive |
| CVE-2024-45086 | IBM WebSphere Application Server XML external entity injection | IBM | WebSphere Application Server | Medium | 5.5 | 2024-11-04 19:29:48 | Deep Dive |
| CVE-2024-42028 | Ubiquiti Networks UniFi Network Application 安全漏洞 | Ubiquiti Inc | UniFi Network Application | - | - | 2024-10-28 15:54:15 | Deep Dive |
| CVE-2024-50307 | Chatwork 安全漏洞 | kubell Co., Ltd. | Chatwork Desktop Application (Windows) | - | - | 2024-10-28 04:28:14 | Deep Dive |
| CVE-2024-10433 | Project Worlds Simple Web-Based Chat Application index.php cross site scripting | Project Worlds | Simple Web-Based Chat Application | Low | 3.5 | 2024-10-28 00:00:09 | Deep Dive |
| CVE-2024-10432 | Project Worlds Simple Web-Based Chat Application index.php sql injection | Project Worlds | Simple Web-Based Chat Application | High | 7.3 | 2024-10-27 23:31:04 | Deep Dive |
| CVE-2024-38314 | IBM Maximo Application Suite - Monitor Component information disclosure | IBM | Maximo Application Suite - Monitor Component | Medium | 5.9 | 2024-10-24 17:23:06 | Deep Dive |
| CVE-2024-10234 | Wildfly: wildfly vulnerable to cross-site scripting (xss) | - | - | Medium | 6.1 | 2024-10-22 13:17:58 | Deep Dive |
| CVE-2024-4692 | Multiple missing permission checks | OpenText | OpenText Application Automation Tools | - | - | 2024-10-16 16:41:24 | Deep Dive |