| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-20805 | Desktop Window Manager Information Disclosure Vulnerability | Microsoft | Windows 10 Version 1607 | Medium | 5.5 | 2026-01-13 17:56:08 | Deep Dive |
| CVE-2026-20804 | Windows Hello Tampering Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.7 | 2026-01-13 17:56:08 | Deep Dive |
| CVE-2026-20803 | Microsoft SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2022 (GDR) | High | 7.2 | 2026-01-13 17:56:06 | Deep Dive |
| CVE-2026-0386 | Windows Deployment Services Remote Code Execution Vulnerability | Microsoft | Windows Server 2008 R2 Service Pack 1 | High | 7.5 | 2026-01-13 17:56:05 | Deep Dive |
| CVE-2026-21265 | Secure Boot Certificate Expiration Security Feature Bypass Vulnerability | Microsoft | Windows 10 Version 1607 | Medium | 6.4 | 2026-01-13 17:56:04 | Deep Dive |
| CVE-2026-20962 | Dynamic Root of Trust for Measurement (DRTM) Information Disclosure Vulnerability | Microsoft | Windows 10 Version 1809 | Medium | 4.4 | 2026-01-13 17:56:03 | Deep Dive |
| CVE-2025-40942 | siemens TeleControl Server Basic 安全漏洞 | Siemens | TeleControl Server Basic | High | 8.8 | 2026-01-13 09:44:05 | Deep Dive |
| CVE-2026-0507 | OS Command Injection vulnerability in SAP Application Server for ABAP and SAP NetWeaver RFCSDK | SAP_SE | SAP Application Server for ABAP and SAP NetWeaver RFCSDK | High | 8.4 | 2026-01-13 01:15:37 | Deep Dive |
| CVE-2026-0506 | Missing Authorization check in SAP NetWeaver Application Server ABAP and ABAP Platform | SAP_SE | SAP NetWeaver Application Server ABAP and ABAP Platform | High | 8.1 | 2026-01-13 01:14:34 | Deep Dive |
| CVE-2026-0497 | Missing Authorization check in Business Server Pages Application (Product Designer Web UI) | SAP_SE | Business Server Pages Application (Product Designer Web UI) | Medium | 4.3 | 2026-01-13 01:13:36 | Deep Dive |
| CVE-2025-58441 | Knowage is vulnerable to blind server-side request forgery (SSRF) | KnowageLabs | Knowage-Server | 中危 | - | 2026-01-07 17:16:45 | Deep Dive |
| CVE-2025-13744 | Improper Neutralization of Input During Web Page Generation vulnerability was identified in GitHub Enterprise Server that allowed rendering of malicious HTML | GitHub | Enterprise Server | 中危 | - | 2026-01-06 20:44:03 | Deep Dive |
| CVE-2025-69415 | Plex media server 安全漏洞 | Plex | Media Server | High | 7.1 | 2026-01-02 16:49:37 | Deep Dive |
| CVE-2025-69414 | Plex media server 安全漏洞 | Plex | Media Server | High | 8.5 | 2026-01-02 16:43:10 | Deep Dive |
| CVE-2025-69203 | Signal K Server Vulnerable to Access Request Spoofing | SignalK | signalk-server | Medium | 6.3 | 2026-01-01 18:37:11 | Deep Dive |
| CVE-2025-68619 | Signal K Server Vulnerable to Remote Code Execution via Malicious npm Package | SignalK | signalk-server | 高危 | - | 2026-01-01 18:35:20 | Deep Dive |
| CVE-2025-68620 | Signal K Server vulnerable to JWT Token Theft via WebSocket Enumeration and Unauthenticated Polling | SignalK | signalk-server | Critical | 9.1 | 2026-01-01 18:29:36 | Deep Dive |
| CVE-2025-68273 | Signal K Server Vulnerable to Unauthenticated Information Disclosure via Exposed Endpoints | SignalK | signalk-server | Medium | 5.3 | 2026-01-01 18:21:52 | Deep Dive |
| CVE-2025-68272 | Signal K Server Vulnerable to Denial of Service via Unrestricted Access Request Flooding | SignalK | signalk-server | High | 7.5 | 2026-01-01 18:08:07 | Deep Dive |
| CVE-2025-66398 | Signal K Server has Unauthenticated State Pollution leading to Remote Code Execution (RCE) | SignalK | signalk-server | Critical | 9.6 | 2026-01-01 18:00:39 | Deep Dive |