| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-3019 | Pcp: exposure of the redis server backend allows remote command execution via pmproxy | - | - | High | 8.8 | 2024-03-28 18:32:43 | Deep Dive |
| CVE-2024-1394 | Golang-fips/openssl: memory leaks in code encrypting and decrypting rsa payloads | Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 8 | High | 7.5 | 2024-03-21 12:16:39 | Deep Dive |
| CVE-2024-25645 | Information Disclosure vulnerability in SAP NetWeaver (Enterprise Portal) | SAP_SE | SAP NetWeaver (Enterprise Portal) | Medium | 5.3 | 2024-03-12 00:53:59 | Deep Dive |
| CVE-2024-28163 | Information Disclosure vulnerability in SAP NetWeaver Process Integration (Support Web Pages) | SAP_SE | SAP NetWeaver Process Integration (Support Web Pages) | Medium | 5.3 | 2024-03-12 00:45:42 | Deep Dive |
| CVE-2024-27902 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver AS ABAP applications based on SAPGUI for HTML (WebGUI) | SAP_SE | SAP NetWeaver AS ABAP applications based on SAPGUI for HTML (WebGUI) | Medium | 5.4 | 2024-03-12 00:45:09 | Deep Dive |
| CVE-2024-27900 | Missing Authorization check in SAP ABAP Platform | SAP_SE | SAP ABAP Platform | Medium | 4.3 | 2024-03-12 00:44:15 | Deep Dive |
| CVE-2024-22133 | Improper Access Control in SAP Fiori Front End Server | SAP_SE | SAP Fiori Front End Server | Medium | 4.6 | 2024-03-12 00:32:51 | Deep Dive |
| CVE-2024-22127 | Code Injection vulnerability in SAP NetWeaver AS Java (Administrator Log Viewer plug-in) | SAP_SE | SAP NetWeaver AS Java (Administrator Log Viewer plug-in) | Critical | 9.1 | 2024-03-12 00:29:27 | Deep Dive |
| CVE-2024-21886 | Xorg-x11-server: heap buffer overflow in disabledevice | - | - | High | 7.8 | 2024-02-28 12:13:13 | Deep Dive |
| CVE-2024-21885 | Xorg-x11-server: heap buffer overflow in xisenddevicehierarchyevent | - | - | High | 7.8 | 2024-02-28 12:12:00 | Deep Dive |
| CVE-2023-39245 | Dell ESI for SAP LaMa 安全漏洞 | Dell | ESI (Enterprise Storage Integrator) for SAP LAMA | Critical | 9.8 | 2024-02-15 13:03:27 | Deep Dive |
| CVE-2023-39244 | Dell Enterprise Storage Integrator 访问控制错误漏洞 | Dell | ESI (Enterprise Storage Integrator) for SAP LAMA | High | 7.3 | 2024-02-15 12:56:45 | Deep Dive |
| CVE-2024-1488 | Unbound: unrestricted reconfiguration enabled to anyone that may lead to local privilege escalation | - | - | High | 8.0 | 2024-02-15 05:04:14 | Deep Dive |
| CVE-2024-24741 | Missing Authorization check in SAP Master Data Governance Material | SAP_SE | SAP Master Data Governance Material | Medium | 4.3 | 2024-02-13 03:43:14 | Deep Dive |
| CVE-2024-22129 | Cross-Site Scripting (XSS) vulnerability in SAP Companion | SAP_SE | SAP Companion | Medium | 5.4 | 2024-02-13 03:40:55 | Deep Dive |
| CVE-2024-25643 | Missing authorization check in SAP Fiori app (My Overtime Requests) | SAP_SE | SAP Fiori app (My Overtime Requests) | Medium | 4.3 | 2024-02-13 03:37:15 | Deep Dive |
| CVE-2024-25642 | Improper Certificate Validation in SAP Cloud Connector | SAP_SE | SAP Cloud Connector | High | 7.4 | 2024-02-13 02:44:20 | Deep Dive |
| CVE-2024-24743 | XXE vulnerability in SAP NetWeaver AS Java (Guided Procedures) | SAP_SE | SAP NetWeaver AS Java (Guided Procedures) | High | 8.6 | 2024-02-13 02:43:41 | Deep Dive |
| CVE-2024-24742 | Cross-Site Scripting (XSS) vulnerability in SAP CRM (WebClient UI) | SAP_SE | SAP CRM (WebClient UI) | Medium | 4.1 | 2024-02-13 02:42:56 | Deep Dive |
| CVE-2024-24740 | Information Disclosure vulnerability in SAP NetWeaver Application Server ABAP (SAP Kernel) | SAP_SE | SAP NetWeaver Application Server ABAP (SAP Kernel) | Medium | 5.3 | 2024-02-13 02:35:21 | Deep Dive |