| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-20275 | Cisco Adaptive Security Appliance 和 Firepower Threat Defense 安全漏洞 | Cisco | Cisco Adaptive Security Appliance (ASA) Software | Medium | 4.1 | 2023-12-12 18:06:17 | Deep Dive |
| CVE-2023-4958 | Stackrox: missing http security headers allows for clickjacking in web ui | Red Hat | Red Hat Advanced Cluster Security 4.2 | Medium | 6.1 | 2023-12-12 10:02:34 | Deep Dive |
| CVE-2023-50424 | Escalation of Privileges in SAP BTP Security Services Integration Library ([Golang] github.com/sap/cloud-security-client-go) | SAP_SE | github.com/sap/cloud-security-client-go | Critical | 9.1 | 2023-12-12 01:59:37 | Deep Dive |
| CVE-2023-50422 | Escalation of Privileges in SAP BTP Security Services Integration Library ([Java] cloud-security-services-integration-library) | SAP_SE | cloud-security-services-integration-library | Critical | 9.1 | 2023-12-12 01:31:18 | Deep Dive |
| CVE-2023-5870 | Postgresql: role pg_signal_backend can signal certain superuser processes. | Red Hat | Red Hat Advanced Cluster Security 4.2 | Low | 2.2 | 2023-12-10 17:58:30 | Deep Dive |
| CVE-2023-5868 | Postgresql: memory disclosure in aggregate function calls | Red Hat | Red Hat Advanced Cluster Security 4.2 | Medium | 4.3 | 2023-12-10 17:56:57 | Deep Dive |
| CVE-2023-5869 | Postgresql: buffer overrun from integer overflow in array modification | Red Hat | Red Hat Advanced Cluster Security 4.2 | High | 8.8 | 2023-12-10 17:56:57 | Deep Dive |
| CVE-2023-40662 | WordPress Cookies and Content Security Policy Plugin <= 2.15 is vulnerable to Sensitive Data Exposure | Jonk @ Follow me Darling | Cookies and Content Security Policy | Medium | 5.3 | 2023-11-30 14:56:49 | Deep Dive |
| CVE-2023-45050 | WordPress Jetpack Plugin <= 12.8-a.1 is vulnerable to Cross Site Scripting (XSS) | Automattic | Jetpack – WP Security, Backup, Speed, & Growth | Medium | 6.5 | 2023-11-30 12:07:42 | Deep Dive |
| CVE-2023-49087 | Validation of SignedInfo | simplesamlphp | xml-security | Medium | 6.8 | 2023-11-30 05:20:28 | Deep Dive |
| CVE-2023-6070 | Trellix Enterprise Security Manager 代码问题漏洞 | Trellix | Trellix Enterprise Security Manager (ESM) | Medium | 4.3 | 2023-11-29 08:53:58 | Deep Dive |
| CVE-2023-42004 | IBM Security Guardium CSV injection | IBM | Security Guardium | High | 8.0 | 2023-11-28 10:52:44 | Deep Dive |
| CVE-2023-5239 | Security & Malware scan by CleanTalk < 2.121 - IP Spoofing | Unknown | Security & Malware scan by CleanTalk | 中危 | - | 2023-11-27 16:22:01 | Deep Dive |
| CVE-2022-36777 | IBM Cloud Pak for Security information disclosure | IBM | Cloud Pak for Security | Medium | 4.3 | 2023-11-22 18:28:11 | Deep Dive |
| CVE-2023-48307 | Nextcloud Mail app vulnerable to Server-Side Request Forgery | nextcloud | security-advisories | Low | 3.5 | 2023-11-21 22:22:57 | Deep Dive |
| CVE-2023-48306 | Nextcloud Server DNS pin middleware can be tricked into DNS rebinding allowing SSRF | nextcloud | security-advisories | Medium | 5.0 | 2023-11-21 22:20:28 | Deep Dive |
| CVE-2023-48305 | Nextcloud Server user_ldap app logs user passwords in the log file on level debug | nextcloud | security-advisories | Medium | 4.2 | 2023-11-21 22:17:36 | Deep Dive |
| CVE-2023-48304 | Nextcloud Server vulnerable to attacker enabling/disabling birthday calendar for any user | nextcloud | security-advisories | Medium | 4.3 | 2023-11-21 22:06:00 | Deep Dive |
| CVE-2023-48303 | Nextcloud Server admins can change authentication details of user configured external storage | nextcloud | security-advisories | Low | 2.4 | 2023-11-21 22:00:02 | Deep Dive |
| CVE-2023-48302 | Nextcloud Server vulnerable to Self XSS when pasting HTML into Text app with Ctrl+Shift+V | nextcloud | security-advisories | Low | 3.5 | 2023-11-21 21:53:00 | Deep Dive |