| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-2005 | SAML implementation allows privilege escalation | Blue Planet | Inventory (BPI) | Critical | 9.0 | 2024-03-05 18:54:01 | Deep Dive |
| CVE-2024-1782 | Blue Triad EZAnalytics <= 1.0 - Reflected Cross-Site Scripting via 'bt_webid' | jbahlquist | Blue Triad EZAnalytics | Medium | 6.1 | 2024-03-05 01:55:58 | Deep Dive |
| CVE-2024-0887 | Mafiatic Blue Server Connection denial of service | Mafiatic | Blue Server | Medium | 5.3 | 2024-01-25 22:00:07 | Deep Dive |
| CVE-2022-3010 | Predictable SSH credentials in Priva TopControl Suite | Priva | TopControl Suite - Bacnet | High | 7.5 | 2024-01-02 18:32:23 | Deep Dive |
| CVE-2023-48769 | WordPress Chat Bubble Plugin <= 2.3 is vulnerable to Cross Site Request Forgery (CSRF) | Blue Coral | Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram, Email, SMS, Call me back | Medium | 4.3 | 2023-12-18 21:57:08 | Deep Dive |
| CVE-2023-40341 | Jenkins Plugin Blue Ocean 跨站请求伪造漏洞 | Jenkins Project | Jenkins Blue Ocean Plugin | 高危 | - | 2023-08-16 14:32:53 | Deep Dive |
| CVE-2018-25088 | Blue Yonder postgraas_server PostgreSQL Backend postgres_cluster_driver.py create_postgres_db sql injection | Blue Yonder | postgraas_server | Medium | 5.5 | 2023-07-18 13:00:06 | Deep Dive |
| CVE-2023-1049 | Schneider Electric EcoStruxure Operator Terminal Expert 代码注入漏洞 | Schneider Electric | EcoStruxure™ Operator Terminal Expert | High | 7.8 | 2023-06-14 07:28:00 | Deep Dive |
| CVE-2022-41671 | Schneider Electric EcoStruxure Operator Terminal Expert SQL注入漏洞 | Schneider Electric | EcoStruxure Operator Terminal Expert | High | 7.0 | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-41670 | Schneider Electric EcoStruxure Operator Terminal Expert 路径遍历漏洞 | Schneider Electric | EcoStruxure Operator Terminal Expert | High | 7.0 | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-41669 | Schneider Electric EcoStruxure Operator Terminal Expert 数据伪造问题漏洞 | Schneider Electric | EcoStruxure Operator Terminal Expert | High | 7.0 | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-41668 | Schneider Electric EcoStruxure Operator Terminal Expert 代码问题漏洞 | Schneider Electric | EcoStruxure Operator Terminal Expert | High | 7.0 | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-41667 | Schneider Electric EcoStruxure Operator Terminal Expert 路径遍历漏洞 | Schneider Electric | EcoStruxure Operator Terminal Expert | High | 7.0 | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-41666 | Schneider Electric EcoStruxure Operator Terminal Expert 数据伪造问题漏洞 | Schneider Electric | EcoStruxure Operator Terminal Expert | High | 7.0 | 2022-11-04 00:00:00 | Deep Dive |
| CVE-2022-30954 | Jenkins Blue Ocean Plugin 访问控制错误漏洞 | Jenkins project | Jenkins Blue Ocean Plugin | 中危 | - | 2022-05-17 14:06:21 | Deep Dive |
| CVE-2022-30953 | Jenkins Blue Ocean Plugin 跨站请求伪造漏洞 | Jenkins project | Jenkins Blue Ocean Plugin | 中危 | - | 2022-05-17 14:06:18 | Deep Dive |
| CVE-2022-30952 | Jenkins Pipeline SCM API for Blue Ocean Plugin 信息泄露漏洞 | Jenkins project | Jenkins Pipeline SCM API for Blue Ocean Plugin | 中危 | - | 2022-05-17 00:00:00 | Deep Dive |
| CVE-2021-24581 | Blue Admin <= 21.06.01 - CSRF to Stored Cross-Site Scripting (XSS) | Unknown | Blue Admin | 高危 | - | 2021-08-30 14:11:23 | Deep Dive |
| CVE-2021-24301 | Hotjar Connecticator <= 1.1.1 - Authenticated Stored Cross-Site Scripting (XSS) | Blue Medicine Labs | Hotjar Connecticator | 中危 | - | 2021-05-24 10:58:04 | Deep Dive |
| CVE-2020-28221 | Opera Software Opera 输入验证错误漏洞 | - | EcoStruxure™ Operator Terminal Expert 3.1 Service Pack 1A and prior running on Harmony HMIs HMIST6 Series, HMIG3U in HMIGTU Series, HMISTO Series and Pro-face BLUE 3.1 Service Pack 1A and prior running on Pro-face HMIs: ST6000 Series, SP-5B41 in SP5000 Series, GP4100 Series | 超危 | - | 2021-01-25 17:08:37 | Deep Dive |