| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-5379 | runZero Platform MCP certification information leak | runZero | Platform | Low | 3.0 | 2026-04-07 14:11:54 | Deep Dive |
| CVE-2026-5378 | runZero Platform user creation leak | runZero | Platform | Medium | 5.8 | 2026-04-07 14:11:43 | Deep Dive |
| CVE-2026-5376 | runZero Platform session timeout failure | runZero | Platform | Medium | 5.9 | 2026-04-07 14:11:30 | Deep Dive |
| CVE-2026-5375 | runZero Platform API credential information leak | runZero | Platform | Low | 2.7 | 2026-04-07 14:11:14 | Deep Dive |
| CVE-2026-5374 | runZero Platform MCP information leak | runZero | Platform | Medium | 5.8 | 2026-04-07 14:10:36 | Deep Dive |
| CVE-2026-5373 | runZero Platform superuser privilege escalation | runZero | Platform | High | 8.1 | 2026-04-07 14:10:19 | Deep Dive |
| CVE-2026-5372 | runZero Platform SQL injection in saved queries | runZero | Platform | Medium | 6.4 | 2026-04-07 14:10:09 | Deep Dive |
| CVE-2026-35404 | Open edX Platform has an Open Redirect in Survey Views via Unvalidated redirect_url Parameter | openedx | openedx-platform | Medium | 4.7 | 2026-04-06 21:22:30 | Deep Dive |
| CVE-2026-5623 | hcengineering Huly Platform Import Endpoint index.ts server-side request forgery | hcengineering | Huly Platform | Medium | 6.3 | 2026-04-06 04:45:11 | Deep Dive |
| CVE-2026-5622 | hcengineering Huly Platform JWT Token token.ts hard-coded key | hcengineering | Huly Platform | Low | 3.7 | 2026-04-06 04:30:14 | Deep Dive |
| CVE-2026-5601 | Acrel Electrical Prepaid Cloud Platform Backup File bin.rar information disclosure | Acrel Electrical | Prepaid Cloud Platform | Medium | 5.3 | 2026-04-05 22:00:14 | Deep Dive |
| CVE-2016-15058 | Hirschmann HiLCOS Classic Platform Password Exposure via SNMP | Belden | Hirschmann HiLCOS Classic Platform | High | 8.1 | 2026-04-03 21:59:08 | Deep Dive |
| CVE-2026-3184 | Util-linux: util-linux: access control bypass due to improper hostname canonicalization | Red Hat | Red Hat Hardened Images | Low | 3.7 | 2026-04-03 18:43:46 | Deep Dive |
| CVE-2025-15620 | HiOS Switch Platform Denial-of-Service via Web Interface | Belden | Hirschmann HiOS Switch Platform | High | 8.6 | 2026-04-02 20:28:09 | Deep Dive |
| CVE-2026-35383 | Bentley Systems iTwin Platform exposed access token | Bentley Systems | iTwin Platform | Medium | 6.5 | 2026-04-02 19:04:09 | Deep Dive |
| CVE-2026-34736 | Open edX Platform: Account Activation Bypass via activation_key Exposure in REST API | openedx | openedx-platform | Medium | 5.3 | 2026-04-02 18:29:02 | Deep Dive |
| CVE-2026-21767 | HCL BigFix Platform is affected by insufficient authentication | HCLSoftware | BigFix Platform | Medium | 4.0 | 2026-04-01 23:47:39 | Deep Dive |
| CVE-2026-21765 | HCL BigFix Platform is affected by insecure permissions on private cryptographic keys | HCLSoftware | BigFix Platform | High | 8.8 | 2026-04-01 23:36:46 | Deep Dive |
| CVE-2026-35092 | Corosync: corosync: denial of service via integer overflow in join message validation | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-04-01 13:18:56 | Deep Dive |
| CVE-2026-35091 | Corosync: corosync: denial of service and information disclosure via crafted udp packet | Red Hat | Red Hat Enterprise Linux 10 | High | 8.2 | 2026-04-01 13:18:54 | Deep Dive |