Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 220 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-36746 SolarEdge Monitoring Platform contains a XSS upon report deletion SolarEdgeSolarEdge Monitoring platform (SaaS)--2025-12-12 15:05:40 Deep Dive
CVE-2025-13932 SolisCloud Monitoring Platform 安全漏洞 SolisCloudMonitoring Platform (Cloud API & Device Control API)--2025-12-04 21:17:03 Deep Dive
CVE-2025-3356 IBM Tivoli Monitoring is vulnerable to unauthenticated file read and write operations IBMTivoli Monitoring High 8.6 2025-10-30 19:22:37 Deep Dive
CVE-2025-3355 IBM Tivoli Monitoring is vulnerable to unauthenticated file read and write operations IBMTivoli Monitoring High 7.5 2025-10-30 19:21:42 Deep Dive
CVE-2025-54549 Cryptographic validation of upgrade images could be circumventing by dropping a specifically crafted file into the upgrade ISO Arista NetworksDANZ Monitoring Fabric Medium 5.9 2025-10-29 22:55:54 Deep Dive
CVE-2025-54548 On affected platforms, restricted users could view sensitive portions of the config database via a debug API (e.g., user password hashes) Arista NetworksDANZ Monitoring Fabric Medium 4.3 2025-10-29 22:52:54 Deep Dive
CVE-2025-54547 On affected platforms, if SSH session multiplexing was configured on the client side, SSH sessions (e.g, scp, sftp) multiplexed onto the same channel could perform file-system operations after a configured session timeout expired Arista NetworksDANZ Monitoring Fabric Medium 5.3 2025-10-29 22:45:53 Deep Dive
CVE-2025-54546 On affected platforms, restricted users could use SSH port forwarding to access host-internal services Arista NetworksDANZ Monitoring Fabric High 7.5 2025-10-29 22:40:58 Deep Dive
CVE-2025-54545 On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges. Arista NetworksDANZ Monitoring Fabric High 7.8 2025-10-29 22:36:24 Deep Dive
CVE-2025-10023 A user with elevated privileges can inject XSS in the Services Meta-services configuration page CentreonInfra Monitoring Medium 6.2 2025-10-27 15:07:22 Deep Dive
CVE-2025-8432 CentreonBI user account on the MBI server can execute commands as root by modifying script runned by the CRON CentreonInfra Monitoring High 8.4 2025-10-27 10:08:34 Deep Dive
CVE-2025-8459 A user with low privileges can inject XSS in the Monitoring Recurrent downtimes page CentreonInfra Monitoring High 7.7 2025-10-14 17:11:31 Deep Dive
CVE-2025-8430 A user with elevated privileges can inject XSS in the Commands Connectors configuration configuration page CentreonInfra Monitoring Medium 6.8 2025-10-14 16:54:44 Deep Dive
CVE-2025-8429 A user with elevated privileges can inject XSS in the ACL Action access configuration page CentreonInfra Monitoring Medium 6.8 2025-10-14 15:29:56 Deep Dive
CVE-2025-54893 A user with elevated privileges can inject XSS in the Hosts templates configuration page CentreonInfra Monitoring Medium 6.8 2025-10-14 15:24:24 Deep Dive
CVE-2025-54891 A user with elevated privileges can inject XSS in the ACL Resource Access configuration page CentreonInfra Monitoring Medium 6.8 2025-10-14 15:07:01 Deep Dive
CVE-2025-54892 A user with elevated privileges can inject XSS in the SNMP traps group configuration page CentreonInfra Monitoring Medium 6.8 2025-10-14 14:59:11 Deep Dive
CVE-2025-54889 A user with elevated privileges can inject XSS in the SNMP traps manufacturer configuration page CentreonInfra Monitoring Medium 6.8 2025-10-14 14:54:31 Deep Dive
CVE-2025-5946 RCE via the poller reload feature available only to user with high privilege CentreonInfra Monitoring High 7.2 2025-10-14 14:29:01 Deep Dive
CVE-2025-8428 XSS found in the HTTP loader widget CentreonInfra Monitoring Medium 6.8 2025-10-14 14:22:03 Deep Dive