| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-1379 | Cisco IP Phones Cisco Discovery Protocol and Link Layer Discovery Protocol Remote Code Execution and Denial of Service Vulnerabilities | Cisco | Cisco IP Phones with Multiplatform Firmware | Medium | 6.5 | 2024-11-18 15:42:00 | Deep Dive |
| CVE-2024-8069 | Limited remote code execution with privilege of a NetworkService Account access | Citrix Session Recording | Citrix Session Recording | - | - | 2024-11-12 18:01:15 | Deep Dive |
| CVE-2024-8068 | Privilege escalation to NetworkService Account access | Citrix | Citrix Session Recording | - | - | 2024-11-12 17:49:54 | Deep Dive |
| CVE-2024-20534 | Cisco IP Phone 6800, 7800, 8800, and 9800 Series with Multiplatform Firmware Stored Cross-Site Scripting Vulnerability | Cisco | Cisco IP Phones with Multiplatform Firmware | Medium | 4.8 | 2024-11-06 16:31:30 | Deep Dive |
| CVE-2024-20533 | Cisco IP Phone 6800, 7800, 8800, and 9800 Series with Multiplatform Firmware Stored Cross-Site Scripting Vulnerabilities | Cisco | Cisco IP Phones with Multiplatform Firmware | Medium | 4.8 | 2024-11-06 16:31:21 | Deep Dive |
| CVE-2024-20445 | Cisco IP Phone 7800, 8800, and 9800 Series Information Disclosure Vulnerability | Cisco | Cisco Session Initiation Protocol (SIP) Software | Medium | 5.3 | 2024-11-06 16:29:06 | Deep Dive |
| CVE-2024-8513 | QA Analytics <= 4.1.1.1 - Missing Authorization to Unauthenticated Settings Update | quarka | QA Assistants – Driven by data | Medium | 5.3 | 2024-10-10 02:06:05 | Deep Dive |
| CVE-2024-2973 | Session Smart Router(SSR): On redundant router deployments API authentication can be bypassed | Juniper Networks | Session Smart Router | Critical | 10.0 | 2024-06-27 20:17:50 | Deep Dive |
| CVE-2024-35220 | @fastify/session reuses destroyed session cookie | fastify | session | High | 7.4 | 2024-05-21 20:26:53 | Deep Dive |
| CVE-2024-31999 | @fastify/secure-session: Reuse of destroyed secure session cookie | fastify | fastify-secure-session | High | 7.4 | 2024-04-10 21:59:54 | Deep Dive |
| CVE-2024-2045 | Session 1.17.5 - LFR via chat attachment | Session | Session | Medium | 5.5 | 2024-02-29 23:37:37 | Deep Dive |
| CVE-2023-6184 | Citrix Systems Session Recording 安全漏洞 | Cloud Software Group | Citrix Session Recording | Medium | 5.0 | 2024-01-18 01:04:15 | Deep Dive |
| CVE-2023-6269 | Argument injection vulnerability in Atos Unify OpenScape Session Border Controller, Atos Unify OpenScape Branch and Atos Unify OpenScape BCF | Atos Unify | OpenScape Session Border Controller (SBC) | Critical | 10.0 | 2023-12-05 07:35:19 | Deep Dive |
| CVE-2023-20265 | Cisco IP Phone 安全漏洞 | Cisco | Cisco IP Phones with Multiplatform Firmware | Medium | 5.5 | 2023-11-21 18:45:34 | Deep Dive |
| CVE-2023-22083 | Oracle Communications 安全漏洞 | Oracle Corporation | Enterprise Communications Broker | Medium | 4.3 | 2023-10-17 21:02:58 | Deep Dive |
| CVE-2023-20866 | Spring Session 安全漏洞 | - | Spring Session | 中危 | - | 2023-04-13 00:00:00 | Deep Dive |
| CVE-2023-20018 | Cisco IP Phone 安全漏洞 | Cisco | Cisco Session Initiation Protocol (SIP) Software | High | 8.6 | 2023-01-19 01:35:41 | Deep Dive |
| CVE-2018-25052 | Catalyst-Plugin-Session Session ID Session.pm _load_sessionid cross site scripting | - | Catalyst-Plugin-Session | Low | 3.5 | 2022-12-28 11:19:45 | Deep Dive |
| CVE-2022-20968 | Cisco IP Phone 缓冲区错误漏洞 | Cisco | Cisco Session Initiation Protocol (SIP) Software | High | 8.1 | 2022-12-08 16:13:11 | Deep Dive |
| CVE-2022-1955 | Session 授权问题漏洞 | - | Session | 中危 | - | 2022-06-30 15:17:25 | Deep Dive |