| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-47254 | 2N Access Commander 安全漏洞 | 2N | 2N Access Commander | Medium | 6.3 | 2024-11-05 09:13:08 | Deep Dive |
| CVE-2024-47253 | 2N Access Commander 安全漏洞 | 2N | 2N Access Commander | High | 7.2 | 2024-11-05 09:08:56 | Deep Dive |
| CVE-2024-37209 | WordPress User Rights Access Manager plugin <= 1.1.2 - Broken Access Control vulnerability | Prism IT Systems | User Rights Access Manager | Medium | 6.5 | 2024-11-01 14:22:45 | Deep Dive |
| CVE-2024-9109 | UPS Live Rates and Access Points <= 2.3.12 - Missing Authorization to Plugin API key reset | octolize | Shipping Live Rates and Access Points for UPS for WooCommerce | Medium | 4.3 | 2024-10-25 05:35:28 | Deep Dive |
| CVE-2019-25213 | Advanced Access Manager <= 5.9.8.1 - Unauthenticated Arbitrary File Read | vasyltech | Advanced Access Manager – Access Governance for WordPress | Critical | 9.8 | 2024-10-16 06:43:32 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-9471 | PAN-OS: Privilege Escalation (PE) Vulnerability in XML API | Palo Alto Networks | PAN-OS | - | - | 2024-10-09 17:06:41 | Deep Dive |
| CVE-2024-9468 | PAN-OS: Firewall Denial of Service (DoS) via a Maliciously Crafted Packet | Palo Alto Networks | Cloud NGFW | - | - | 2024-10-09 17:05:29 | Deep Dive |
| CVE-2024-45862 | Cleartext Storage of Sensitive Information in Kastle Systems Access Control System | Kastle Systems | Access Control System | - | - | 2024-09-19 15:54:33 | Deep Dive |
| CVE-2024-45861 | Use of Hard-coded Credentials in Kastle Systems Access Control System | Kastle Systems | Access Control System | - | - | 2024-09-19 15:51:06 | Deep Dive |
| CVE-2024-28991 | SolarWinds Access Rights Manager (ARM) Deserialization of Untrusted Data Remote Code Execution | SolarWinds | Access Rights Manager | Critical | 9.0 | 2024-09-12 13:17:31 | Deep Dive |
| CVE-2024-28990 | SolarWinds Access Rights Manager (ARM) Hardcoded Credentials Authentication Bypass Vulnerability | SolarWinds | Access Rights Manager | Medium | 6.3 | 2024-09-12 13:16:36 | Deep Dive |
| CVE-2024-8691 | PAN-OS: User Impersonation in GlobalProtect Portal | Palo Alto Networks | PAN-OS | - | - | 2024-09-11 16:43:31 | Deep Dive |
| CVE-2024-8688 | PAN-OS: Arbitrary File Read Vulnerability in the Command Line Interface (CLI) | Palo Alto Networks | PAN-OS | - | - | 2024-09-11 16:40:51 | Deep Dive |
| CVE-2024-8687 | PAN-OS: Cleartext Exposure of GlobalProtect Portal Passcodes | Palo Alto Networks | PAN-OS | - | - | 2024-09-11 16:40:21 | Deep Dive |
| CVE-2024-8686 | PAN-OS: Command Injection Vulnerability | Palo Alto Networks | PAN-OS | - | - | 2024-09-11 16:34:22 | Deep Dive |
| CVE-2024-8395 | FlyCASS Cockpit Access Security System (CASS) SQL Injection | FlyCASS | Cockpit Access Security System (CASS) | Critical | 9.8 | 2024-09-05 19:32:41 | Deep Dive |
| CVE-2024-35133 | IBM Security Verify Access HTTP open redirect | IBM | Security Verify Access | Medium | 6.8 | 2024-08-29 16:39:44 | Deep Dive |
| CVE-2024-4554 | Multiple xss vulnerability in NetIQ Access Manager | OpenText | Access Manager | High | 7.3 | 2024-08-28 06:27:32 | Deep Dive |
| CVE-2024-4555 | User impersonation with MFA when configure in specific way | OpenText | NetIQ Access Manager | High | 7.7 | 2024-08-28 06:27:21 | Deep Dive |