| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-23673 | Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2026-03-10 17:04:39 | Deep Dive |
| CVE-2026-23672 | Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2026-03-10 17:04:38 | Deep Dive |
| CVE-2026-23669 | RPC Runtime Library Remote Code Execution Vulnerability | Microsoft | Windows 10 Version 1607 | High | 8.8 | 2026-03-10 17:04:37 | Deep Dive |
| CVE-2026-23671 | Windows Bluetooth RFCOM Protocol Driver Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.0 | 2026-03-10 17:04:37 | Deep Dive |
| CVE-2026-23668 | Windows Graphics Component Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.0 | 2026-03-10 17:04:36 | Deep Dive |
| CVE-2026-21262 | SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | High | 8.8 | 2026-03-10 17:04:32 | Deep Dive |
| CVE-2026-30941 | Parse Server has a NoSQL injection via token type in password reset and email verification endpoints | parse-community | parse-server | - | - | 2026-03-10 16:40:13 | Deep Dive |
| CVE-2026-30939 | Parse Server has Denial of Service (DoS) and Cloud Function Dispatch Bypass via Prototype Chain Resolution | parse-community | parse-server | - | - | 2026-03-10 16:37:50 | Deep Dive |
| CVE-2026-30938 | Parse Server has denylist `requestKeywordDenylist` keyword scan bypass through nested object placement | parse-community | parse-server | - | - | 2026-03-10 16:34:03 | Deep Dive |
| CVE-2026-3483 | Ivanti Desktop and Server Management 安全漏洞 | Ivanti | Desktop and Server Management | High | 7.8 | 2026-03-10 14:19:25 | Deep Dive |
| CVE-2026-27688 | Missing Authorization check in SAP NetWeaver Application Server for ABAP | SAP_SE | SAP NetWeaver Application Server for ABAP | Medium | 5.0 | 2026-03-10 00:18:56 | Deep Dive |
| CVE-2026-24316 | Server-Side Request Forgery (SSRF) in SAP NetWeaver Application Server for ABAP | SAP_SE | SAP NetWeaver Application Server for ABAP | Medium | 6.4 | 2026-03-10 00:17:51 | Deep Dive |
| CVE-2026-24310 | Missing Authorization check in SAP NetWeaver Application Server for ABAP | SAP_SE | SAP NetWeaver Application Server for ABAP | Low | 3.5 | 2026-03-10 00:17:21 | Deep Dive |
| CVE-2026-24309 | Missing Authorization check in SAP NetWeaver Application Server for ABAP | SAP_SE | SAP NetWeaver Application Server for ABAP | Medium | 6.4 | 2026-03-10 00:17:13 | Deep Dive |
| CVE-2026-30925 | Parse Server affected by Regular Expression Denial of Service (ReDoS) via `$regex` query in LiveQuery | parse-community | parse-server | - | - | 2026-03-09 23:01:32 | Deep Dive |
| CVE-2026-3638 | Devolutions Server 安全漏洞 | Devolutions | Server | - | - | 2026-03-09 18:51:13 | Deep Dive |
| CVE-2026-3089 | Actual Sync Server 26.2.1 - Authenticated Path Traversal | Actual | Actual Sync Server | - | - | 2026-03-09 14:08:56 | Deep Dive |
| CVE-2026-3680 | RyuzakiShinji biome-mcp-server biome-mcp-server.ts command injection | RyuzakiShinji | biome-mcp-server | Medium | 6.3 | 2026-03-07 23:02:10 | Deep Dive |
| CVE-2026-30854 | Parse Server: GraphQL `__type` introspection bypass via inline fragments when public introspection is disabled | parse-community | parse-server | 中危 | - | 2026-03-07 16:24:10 | Deep Dive |
| CVE-2026-30850 | Parse Server: File metadata endpoint bypasses `beforeFind` / `afterFind` trigger authorization | parse-community | parse-server | 中危 | - | 2026-03-07 16:21:54 | Deep Dive |