| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-51371 | WordPress Bit Assist Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS) | Bit Assist | Chat Widget: WhatsApp Chat, Facebook Messenger Chat, Telegram Chat Bubble, Line Messenger, Live Chat Support Chat Button, WeChat, SMS, Call Button, Customer Support Button with floating Chat Widget | Medium | 5.9 | 2023-12-29 10:58:40 | Deep Dive |
| CVE-2023-50839 | WordPress JS Help Desk – Best Help Desk & Support Plugin <= 2.8.1 is vulnerable to SQL Injection | JS Help Desk | JS Help Desk – Best Help Desk & Support Plugin | Critical | 9.3 | 2023-12-28 20:02:14 | Deep Dive |
| CVE-2023-4641 | Shadow-utils: possible password leak during passwd(1) change | - | - | Medium | 4.7 | 2023-12-27 15:43:23 | Deep Dive |
| CVE-2023-6546 | Kernel: gsm multiplexing race condition leads to privilege escalation | Red Hat | Red Hat Enterprise Linux 8 | High | 7.0 | 2023-12-21 20:01:03 | Deep Dive |
| CVE-2023-6377 | Xorg-x11-server: out-of-bounds memory reads/writes in xkb button actions | Red Hat | Red Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION | High | 7.8 | 2023-12-13 06:27:41 | Deep Dive |
| CVE-2023-6478 | Xorg-x11-server: out-of-bounds memory read in rrchangeoutputproperty and rrchangeproviderproperty | Red Hat | Red Hat Enterprise Linux 6 Extended Lifecycle Support - EXTENSION | High | 7.6 | 2023-12-13 06:27:41 | Deep Dive |
| CVE-2023-5379 | Undertow: ajp request closes connection exceeding maxrequestsize | Red Hat | Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 | High | 7.5 | 2023-12-12 21:54:53 | Deep Dive |
| CVE-2023-6679 | Kernel: null pointer dereference in dpll_pin_parent_pin_set() in drivers/dpll/dpll_netlink.c | Red Hat | Red Hat Enterprise Linux 9 | Medium | 5.5 | 2023-12-11 18:31:29 | Deep Dive |
| CVE-2023-5870 | Postgresql: role pg_signal_backend can signal certain superuser processes. | Red Hat | Red Hat Advanced Cluster Security 4.2 | Low | 2.2 | 2023-12-10 17:58:30 | Deep Dive |
| CVE-2023-5868 | Postgresql: memory disclosure in aggregate function calls | Red Hat | Red Hat Advanced Cluster Security 4.2 | Medium | 4.3 | 2023-12-10 17:56:57 | Deep Dive |
| CVE-2023-5869 | Postgresql: buffer overrun from integer overflow in array modification | Red Hat | Red Hat Advanced Cluster Security 4.2 | High | 8.8 | 2023-12-10 17:56:57 | Deep Dive |
| CVE-2023-6610 | Kernel: oob access in smb2_dump_detail | Red Hat | Red Hat Enterprise Linux 8 | High | 7.1 | 2023-12-08 16:58:10 | Deep Dive |
| CVE-2023-6606 | Kernel: out-of-bounds read vulnerability in smbcalcsize | Red Hat | Red Hat Enterprise Linux 8 | High | 7.1 | 2023-12-08 16:58:09 | Deep Dive |
| CVE-2023-37890 | WordPress KB Support Plugin <= 1.5.88 is vulnerable to Broken Access Control | WPOmnia | KB Support – WordPress Help Desk and Knowledge Base | Medium | 4.3 | 2023-11-30 15:14:00 | Deep Dive |
| CVE-2023-48323 | WordPress Awesome Support Plugin <= 6.1.4 is vulnerable to Cross Site Request Forgery (CSRF) | Awesome Support Team | Awesome Support – WordPress HelpDesk & Support Plugin | Medium | 4.3 | 2023-11-30 12:59:15 | Deep Dive |
| CVE-2023-5981 | Gnutls: timing side-channel in the rsa-psk authentication | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.9 | 2023-11-28 11:49:50 | Deep Dive |
| CVE-2023-25985 | WordPress WordPress Tooltips Plugin <= 8.2.5 is vulnerable to Cross Site Request Forgery (CSRF) | Tomas | Docs | FAQ | Premium Support | WordPress Tooltips | Medium | 4.3 | 2023-11-18 22:21:16 | Deep Dive |
| CVE-2023-33872 | Intel Support 安全漏洞 | - | Intel Support android application | Medium | 5.5 | 2023-11-14 19:04:58 | Deep Dive |
| CVE-2023-25983 | WordPress KB Support Plugin <= 1.5.84 is vulnerable to CSV Injection | WPOmnia | KB Support | 高危 | - | 2023-11-07 15:13:16 | Deep Dive |
| CVE-2023-5355 | Awesome Support < 6.1.5 - Submitter+ Arbitrary File Deletion | Unknown | Awesome Support | 超危 | - | 2023-11-06 20:41:58 | Deep Dive |