| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-35003 | Apache NuttX RTOS: NuttX Bluetooth Stack HCI and UART DoS/RCE Vulnerabilities. | Apache Software Foundation | Apache NuttX RTOS | - | - | 2025-05-26 10:03:07 | Deep Dive |
| CVE-2025-41228 | VMware ESXi and vCenter Server Reflected Cross Site Scripting (XSS) Vulnerability | VMware | vCenter Server | Medium | 4.3 | 2025-05-20 14:24:34 | Deep Dive |
| CVE-2025-41227 | Denial-of-Service Vulnerability | VMware | ESXi | Medium | 5.5 | 2025-05-20 14:24:29 | Deep Dive |
| CVE-2025-41226 | Guest Operations Denial-of-Service Vulnerability | VMware | ESXi | Medium | 6.8 | 2025-05-20 14:24:25 | Deep Dive |
| CVE-2025-41225 | VMware vCenter Server authenticated command-execution vulnerability | VMware | vCenter Server | High | 8.8 | 2025-05-20 14:24:17 | Deep Dive |
| CVE-2025-41231 | VMware Cloud Foundation Missing Authorisation Vulnerability | - | VMware Cloud Foundation | High | 7.3 | 2025-05-20 12:54:42 | Deep Dive |
| CVE-2025-41230 | VMware Cloud Foundation Information Disclosure Vulnerability | VMware | Cloud Foundation | High | 7.5 | 2025-05-20 12:54:30 | Deep Dive |
| CVE-2025-41229 | VMware Cloud Foundation Directory Traversal Vulnerability | VMware | Cloud Foundation | High | 8.2 | 2025-05-20 12:53:57 | Deep Dive |
| CVE-2025-4516 | Use-after-free in "unicode_escape" decoder with error handler | Python Software Foundation | CPython | - | - | 2025-05-15 13:29:20 | Deep Dive |
| CVE-2025-47436 | Apache ORC: Potential Heap Buffer Overflow during C++ LZO Decompression | Apache Software Foundation | Apache ORC | - | - | 2025-05-14 13:11:36 | Deep Dive |
| CVE-2025-26864 | Apache IoTDB: Exposure of Sensitive Information in IoTDB OpenID Authentication | Apache Software Foundation | Apache IoTDB | - | - | 2025-05-14 10:44:13 | Deep Dive |
| CVE-2025-26795 | Apache IoTDB JDBC driver: Exposure of Sensitive Information in IoTDB JDBC driver | Apache Software Foundation | Apache IoTDB JDBC driver | - | - | 2025-05-14 10:43:06 | Deep Dive |
| CVE-2024-24780 | Apache IoTDB: Remote Code Execution with untrusted URI of User-defined function | Apache Software Foundation | Apache IoTDB | - | - | 2025-05-14 10:42:21 | Deep Dive |
| CVE-2025-27696 | Apache Superset: Incorrect authorization leading to resource ownership takeover | Apache Software Foundation | Apache Superset | - | - | 2025-05-13 08:21:21 | Deep Dive |
| CVE-2025-22249 | VMSA-2025-0008: VMware Aria automation updates address a DOM based Cross-site scripting vulnerability (CVE-2025-22249) | VMware | Vmware Aria Automation | High | 8.2 | 2025-05-13 05:08:03 | Deep Dive |
| CVE-2025-4447 | Buffer Overflow in Eclipse OpenJ9 | Eclipse Foundation | OpenJ9 | - | - | 2025-05-09 20:40:26 | Deep Dive |
| CVE-2025-46392 | Apache Commons Configuration: Uncontrolled Resource Consumption when loading untrusted configurations in 1.x | Apache Software Foundation | Apache Commons Configuration | - | - | 2025-05-09 09:34:39 | Deep Dive |
| CVE-2025-1948 | Eclipse Jetty HTTP clients can increase memory allocation | Eclipse Foundation | Jetty | High | 7.5 | 2025-05-08 17:48:41 | Deep Dive |
| CVE-2024-13009 | Eclipse Jetty GZIP buffer release | Eclipse Foundation | Jetty | High | 7.2 | 2025-05-08 17:29:31 | Deep Dive |
| CVE-2025-27533 | Apache ActiveMQ: Unchecked buffer length can cause excessive memory allocation | Apache Software Foundation | Apache ActiveMQ | - | - | 2025-05-07 08:59:00 | Deep Dive |