| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-0137 | NVIDIA Container Toolkit 安全漏洞 | NVIDIA | NVIDIA Container Toolkit | Medium | 5.5 | 2025-01-28 03:10:37 | Deep Dive |
| CVE-2024-0136 | NVIDIA Container Toolkit 安全漏洞 | NVIDIA | NVIDIA Container Toolkit | High | 7.6 | 2025-01-28 03:09:54 | Deep Dive |
| CVE-2024-0135 | NVIDIA Container Toolkit 安全漏洞 | NVIDIA | NVIDIA Container Toolkit | High | 7.6 | 2025-01-28 03:09:03 | Deep Dive |
| CVE-2024-27256 | IBM MQ Operator information disclosure | IBM | MQ Operator | Medium | 5.9 | 2025-01-27 16:27:53 | Deep Dive |
| CVE-2024-12085 | Rsync: info leak via uninitialized stack contents | - | - | High | 7.5 | 2025-01-14 17:37:16 | Deep Dive |
| CVE-2024-11999 | Schneider Electric多款产品 安全漏洞 | Schneider Electric | Harmony (Formerly Magelis) HMIST6, HMISTM6, HMIG3U, HMIG3X, HMISTO7 series with EcoStruxure Operator Terminal Expert runtime | High | 8.8 | 2024-12-17 06:13:01 | Deep Dive |
| CVE-2024-12401 | Cert-manager: potential dos when parsing specially crafted pem inputs | - | - | Medium | 4.4 | 2024-12-12 09:06:04 | Deep Dive |
| CVE-2024-10606 | WP Travel Engine <= 6.2.1 - Missing Authorization to Authenticated (Contributor+) Plugin Settings Update | wptravelengine | WP Travel Engine – Tour Booking Plugin – Tour Operator Software | Medium | 4.3 | 2024-11-23 04:32:22 | Deep Dive |
| CVE-2024-9851 | LSX Tour Operator <= 1.4.9 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | feedmymedia | Tour Operator | Medium | 6.4 | 2024-11-21 02:06:20 | Deep Dive |
| CVE-2024-0134 | NVIDIA Container Toolkit 安全漏洞 | NVIDIA | NVIDIA Container Toolkit | Medium | 4.1 | 2024-11-05 18:37:32 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-0133 | NVIDIA Container Toolkit 安全漏洞 | NVIDIA | Container Toolkit | Medium | 4.1 | 2024-09-26 05:21:34 | Deep Dive |
| CVE-2024-0132 | NVIDIA Container Toolkit 安全漏洞 | NVIDIA | Container Toolkit | Critical | 9.0 | 2024-09-26 05:18:33 | Deep Dive |
| CVE-2024-43803 | BMO can expose particularly named secrets from other namespaces via BMH CRD | metal3-io | baremetal-operator | Medium | 4.9 | 2024-09-03 18:56:30 | Deep Dive |
| CVE-2024-41129 | The ops library leaks secrets if `subprocess.CalledProcessError` happens with a `secret-*` CLI command | canonical | operator | Medium | 4.4 | 2024-07-22 14:20:09 | Deep Dive |
| CVE-2024-39742 | IBM MQ Container authentication bypass | IBM | MQ Operator | High | 8.1 | 2024-07-08 13:16:10 | Deep Dive |
| CVE-2024-39743 | IBM MQ Container denial of service | IBM | MQ Operator | Medium | 5.9 | 2024-07-08 13:14:44 | Deep Dive |
| CVE-2024-31391 | Apache Solr Operator: Solr-Operator liveness and readiness probes may leak basic auth credentials | Apache Software Foundation | Apache Solr Operator | 中危 | - | 2024-04-12 15:00:27 | Deep Dive |
| CVE-2023-47745 | IBM MQ Container information disclosure | IBM | MQ Operator | Medium | 6.2 | 2024-03-03 11:56:01 | Deep Dive |
| CVE-2024-27255 | IBM MQ Container information disclosure | IBM | MQ Operator | Medium | 5.9 | 2024-03-03 11:54:10 | Deep Dive |