| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-40505 | MuPDF < 1.27 mutool ANSI Injection via Metadata | Artifex Software Inc. | MuPDF | Low | 3.3 | 2026-04-16 01:20:08 | Deep Dive |
| CVE-2026-5363 | Use of weak cryptographic key in TP-Link Archer C7 | TP-Link Systems Inc. | Archer C7 v5 and v5.8 | - | - | 2026-04-15 23:45:54 | Deep Dive |
| CVE-2025-15610 | OpenText RightFax 安全漏洞 | OpenText, Inc | RightFax | 中危 | - | 2026-04-15 16:31:54 | Deep Dive |
| CVE-2026-4682 | Certain HP DeskJet All In One (AIO) Devices – Potential Remote Code Execution & Potential Buffer Overflow | HP Inc | HP DeskJet 2800e All-in-One Printer series | 中危 | - | 2026-04-15 14:32:31 | Deep Dive |
| CVE-2026-4667 | HP System Optimizer - Escalation of Privilege | HP Inc. | OMEN Gaming Hub | 中危 | - | 2026-04-15 14:22:55 | Deep Dive |
| CVE-2026-3505 | Unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion. | Legion of the Bouncy Castle Inc. | BC-JAVA | 中危 | - | 2026-04-15 09:06:38 | Deep Dive |
| CVE-2026-5588 | PKIX draft CompositeVerifier accepts empty signature sequence as valid. | Legion of the Bouncy Castle Inc. | BC-JAVA | 中危 | - | 2026-04-15 09:06:16 | Deep Dive |
| CVE-2026-5598 | Non-constant time comparisons risk private key leakage in FrodoKEM. | Legion of the Bouncy Castle Inc. | BC-JAVA | 中危 | - | 2026-04-15 09:05:56 | Deep Dive |
| CVE-2026-0636 | LDAP Injection Vulnerability in LDAPStoreHelper.java | Legion of the Bouncy Castle Inc. | BC-JAVA | 中危 | - | 2026-04-15 08:59:13 | Deep Dive |
| CVE-2025-14813 | GOSTCTR implementation unable to process more than 255 blocks correctly | Legion of the Bouncy Castle Inc. | BC-JAVA | 中危 | - | 2026-04-15 08:56:34 | Deep Dive |
| CVE-2026-26291 | GROWI 安全漏洞 | GROWI, Inc. | GROWI | 中危 | - | 2026-04-15 04:19:32 | Deep Dive |
| CVE-2026-22566 | Ubiquiti UniFi Play PowerAmp和Ubiquiti UniFi Play Audio Port 安全漏洞 | Ubiquiti Inc | UniFi Play PowerAmp | High | 7.5 | 2026-04-13 21:28:11 | Deep Dive |
| CVE-2026-22564 | Ubiquiti UniFi Play PowerAmp和Ubiquiti UniFi Play Audio Port 安全漏洞 | Ubiquiti Inc | UniFi Play PowerAmp | Critical | 9.8 | 2026-04-13 21:28:11 | Deep Dive |
| CVE-2026-22562 | Ubiquiti UniFi Play PowerAmp和Ubiquiti UniFi Play Audio Port 安全漏洞 | Ubiquiti Inc | UniFi Play PowerAmp | Critical | 9.8 | 2026-04-13 21:28:11 | Deep Dive |
| CVE-2026-22565 | Ubiquiti UniFi Play PowerAmp和Ubiquiti UniFi Play Audio Port 安全漏洞 | Ubiquiti Inc | UniFi Play PowerAmp | 高危 | - | 2026-04-13 21:28:11 | Deep Dive |
| CVE-2026-22563 | Ubiquiti UniFi Play PowerAmp和Ubiquiti UniFi Play Audio Port 安全漏洞 | Ubiquiti Inc | UniFi Play PowerAmp | Critical | 9.8 | 2026-04-13 21:28:11 | Deep Dive |
| CVE-2026-6231 | bson_validate may skip validation when processing certain inputs | MongoDB Inc. | C Driver | Medium | 4.3 | 2026-04-13 15:31:56 | Deep Dive |
| CVE-2026-5936 | Server-Side Request Forgery (SSRF) via URL Parameter in Foxit PDF Services API | Foxit Software Inc. | Foxit PDF Services API | High | 8.5 | 2026-04-13 06:57:40 | Deep Dive |
| CVE-2026-35553 | Dynabook Bluetooth ACPI 安全漏洞 | Dynabook Inc. | TOSRFEC.SYS | Medium | 6.7 | 2026-04-13 04:03:43 | Deep Dive |
| CVE-2026-5724 | Missing Authentication on Streaming gRPC Replication Endpoint | Temporal Technologies, Inc. | temporal | 中危 | - | 2026-04-10 21:06:32 | Deep Dive |