| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-30392 | Azure AI Bot Elevation of Privilege Vulnerability | Microsoft | Azure AI Bot Service | Critical | 9.8 | 2025-04-30 17:14:52 | Deep Dive |
| CVE-2025-30391 | Microsoft Dynamics Information Disclosure Vulnerability | Microsoft | Dynamics 365 Customer Service | High | 8.1 | 2025-04-30 17:14:50 | Deep Dive |
| CVE-2025-30389 | Azure Bot Framework SDK Elevation of Privilege Vulnerability | Microsoft | Azure AI Bot Service | High | 8.7 | 2025-04-30 17:14:50 | Deep Dive |
| CVE-2025-3891 | Mod_auth_openidc: dos via empty post in mod_auth_openidc with oidcpreservepost enabled | - | - | High | 7.5 | 2025-04-29 11:56:51 | Deep Dive |
| CVE-2025-2470 | Service Finder Bookings <= 5.1 - Unauthenticated Privilege Escalation via 'nsl_registration_store_extra_input' | aonetheme | Service Finder Bookings | Critical | 9.8 | 2025-04-25 11:12:53 | Deep Dive |
| CVE-2025-46421 | Libsoup: information disclosure may leads libsoup client sends authorization header to a different host when being redirected by a server | - | - | Medium | 6.8 | 2025-04-24 13:01:25 | Deep Dive |
| CVE-2025-46420 | Libsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c | - | - | Medium | 6.5 | 2025-04-24 12:58:01 | Deep Dive |
| CVE-2025-37088 | Hewlett Packard Enterprise Cray Data Virtualization Service 安全漏洞 | Hewlett Packard Enterprise (HPE) | HPE Cray Data Virtualization Service (DVS) | 高危 | - | 2025-04-22 21:55:33 | Deep Dive |
| CVE-2025-43928 | Infodraw Media Relay Service 安全漏洞 | Infodraw | Media Relay Service | Medium | 5.8 | 2025-04-20 00:00:00 | Deep Dive |
| CVE-2025-1697 | HP Touchpoint Analytics Service – Potential Escalation of Privilege | HP, Inc. | HP Touchpoint Analytics Service | 中危 | - | 2025-04-18 17:43:54 | Deep Dive |
| CVE-2024-22314 | IBM Storage Defender - Resiliency Service information disclosure | IBM | Storage Defender - Resiliency Service | Medium | 5.9 | 2025-04-16 16:17:55 | Deep Dive |
| CVE-2025-30729 | Oracle Communications Applications 安全漏洞 | Oracle Corporation | Oracle Communications Order and Service Management | Medium | 5.5 | 2025-04-15 20:31:18 | Deep Dive |
| CVE-2025-32911 | Libsoup: double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" ghashtable value | - | - | Critical | 9.0 | 2025-04-15 15:39:35 | Deep Dive |
| CVE-2025-3576 | Krb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisions | - | - | Medium | 5.9 | 2025-04-15 05:55:27 | Deep Dive |
| CVE-2025-32914 | Libsoup: oob read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process | - | - | High | 7.4 | 2025-04-14 14:45:46 | Deep Dive |
| CVE-2025-32906 | Libsoup: out of bounds reads in soup_headers_parse_request() | - | - | High | 7.5 | 2025-04-14 13:58:40 | Deep Dive |
| CVE-2025-32913 | Libsoup: null pointer dereference in soup_message_headers_get_content_disposition when "filename" parameter is present, but has no value in content-disposition header | - | - | High | 7.5 | 2025-04-14 13:37:37 | Deep Dive |
| CVE-2025-31015 | WordPress SMTP Service, Email Delivery Solved! — MailHawk plugin <= 1.3.1 - Local File Inclusion Vulnerability | Adrian Tobey | WordPress SMTP Service, Email Delivery Solved! — MailHawk | High | 7.5 | 2025-04-11 08:42:49 | Deep Dive |
| CVE-2025-27081 | HPE NonStop OSM Service Connection Suite, Denial of Service vulnerability | Hewlett Packard Enterprise | HPE NonStop OSM Service Connection Suite | Medium | 6.8 | 2025-04-10 08:43:48 | Deep Dive |
| CVE-2025-3115 | Spotfire Data Function Vulnerability | Spotfire | Spotfire Statistics Services | - | - | 2025-04-09 18:12:28 | Deep Dive |