| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-30173 | Admin Authorized File Upload | ABB | ASPECT-Enterprise | Medium | 6.7 | 2025-05-22 17:45:40 | Deep Dive |
| CVE-2025-30172 | Admin Authorized Remote Code Execution | ABB | ASPECT-Enterprise | High | 8.0 | 2025-05-22 17:43:59 | Deep Dive |
| CVE-2025-30171 | Admin Authorized System File Deletion | ABB | ASPECT-Enterprise | Critical | 9.0 | 2025-05-22 17:41:19 | Deep Dive |
| CVE-2025-30170 | Admin Authorized Exposure of file path, file size or file existence | ABB | ASPECT-Enterprise | Medium | 5.5 | 2025-05-22 17:38:51 | Deep Dive |
| CVE-2025-2409 | Admin Authorized System File corruption | ABB | ASPECT-Enterprise | Critical | 9.1 | 2025-05-22 17:35:36 | Deep Dive |
| CVE-2025-2410 | Admin Authorized Port (iptables) manipulation (open/close/disable ports) | ABB | ASPECT-Enterprise | Critical | 9.1 | 2025-05-22 17:32:36 | Deep Dive |
| CVE-2024-9639 | Authenticated Remote Code Execution | ABB | ASPECT-Enterprise | High | 8.0 | 2025-05-22 17:27:59 | Deep Dive |
| CVE-2024-48850 | Authenticated Absolute Path Traversal | ABB | ASPECT-Enterprise | High | 7.2 | 2025-05-22 16:45:45 | Deep Dive |
| CVE-2024-48853 | Authenticated Escalation to guest to root | ABB | ASPECT-Enterprise | Critical | 9.0 | 2025-05-22 16:38:35 | Deep Dive |
| CVE-2025-27155 | In-memory stored Cross-site scripting (XSS) vulnerability in pineconesim | matrix-org | pinecone | Medium | 6.1 | 2025-03-04 16:29:36 | Deep Dive |
| CVE-2025-27146 | Matrix IRC Bridge allows IRC command injection to own puppeted user | matrix-org | matrix-appservice-irc | Low | 2.7 | 2025-02-25 20:04:40 | Deep Dive |
| CVE-2024-51547 | Credentials Disclosure - keys | ABB | ASPECT-Enterprise | Critical | 9.8 | 2025-02-06 04:12:31 | Deep Dive |
| CVE-2025-23197 | matrix-hookshot has a Potential Denial of Service when Hookshot is configured with GitHub support | matrix-org | matrix-hookshot | Medium | 6.5 | 2025-01-27 17:21:40 | Deep Dive |
| CVE-2025-24024 | Mjolnir v1.9.0 accepts commands from any room | matrix-org | mjolnir | Critical | 9.1 | 2025-01-21 19:21:56 | Deep Dive |
| CVE-2024-36402 | Unauthenticated writes to the media repository allow planting of problematic content in Matrix Media Repo | t2bot | matrix-media-repo | Medium | 5.3 | 2025-01-16 19:19:19 | Deep Dive |
| CVE-2024-36403 | Denial of service/high operating costs through unauthenticated downloads in Matrix Media Repo | t2bot | matrix-media-repo | Medium | 5.3 | 2025-01-16 19:16:07 | Deep Dive |
| CVE-2024-52602 | Server-Side Request Forgery (SSRF) on redirects and federation in Matrix Media Repo | t2bot | matrix-media-repo | Medium | 5.0 | 2025-01-16 19:14:47 | Deep Dive |
| CVE-2024-52791 | Denial of service through memory exhaustion in Matrix Media Repo | t2bot | matrix-media-repo | Medium | 5.3 | 2025-01-16 19:12:26 | Deep Dive |
| CVE-2024-56515 | Untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders in Matrix Media Repo | t2bot | matrix-media-repo | Medium | 6.8 | 2025-01-16 19:11:03 | Deep Dive |
| CVE-2024-52594 | Server-Side Request Forgery (SSRF) on redirects and federation in gomatrixserverlib | matrix-org | gomatrixserverlib | Medium | 4.3 | 2025-01-16 18:57:29 | Deep Dive |