| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-36087 | IBM Security Verify Access hard coded credentials | IBM | Security Verify Access | High | 8.1 | 2025-10-13 00:38:14 | Deep Dive |
| CVE-2025-1862 | Authenticated Arbitrary File Upload in Multiple WSO2 Products via BPEL Uploader SOAP Service Leading to Remote Code Execution | WSO2 | WSO2 Enterprise Integrator | Medium | 6.7 | 2025-09-26 08:18:22 | Deep Dive |
| CVE-2025-1396 | Username Enumeration in Multiple WSO2 Products with Multi-Attribute Login Enabled | WSO2 | WSO2 Identity Server | Low | 3.7 | 2025-09-26 07:52:52 | Deep Dive |
| CVE-2025-0672 | Authentication Bypass in Multiple WSO2 Products via Stale FIDO Credential Association | WSO2 | WSO2 Identity Server as Key Manager | Low | 3.3 | 2025-09-23 17:30:43 | Deep Dive |
| CVE-2025-0209 | Reflected Cross-Site Scripting (XSS) in WSO2 Identity Server Account Registration Flow | WSO2 | WSO2 Identity Server | Medium | 6.1 | 2025-09-23 17:13:11 | Deep Dive |
| CVE-2025-0663 | Potential cross-tenant account takeover vulnerability in Multiple WSO2 Products via Adaptive Authentication and Auto-Login | WSO2 | WSO2 Open Banking IAM | Medium | 6.8 | 2025-09-23 16:58:07 | Deep Dive |
| CVE-2024-6429 | Content Spoofing in Multiple WSO2 Products via Error Message Injection | WSO2 | WSO2 Identity Server as Key Manager | Medium | 4.3 | 2025-09-23 16:37:58 | Deep Dive |
| CVE-2025-59363 | One Identity OneLogin 安全漏洞 | One Identity | OneLogin | High | 7.7 | 2025-09-14 00:00:00 | Deep Dive |
| CVE-2025-36854 | EOL ASP.NET 6.0 Remote Code Execution Vulnerability | Microsoft | .NET 6.0 | High | 8.1 | 2025-09-08 13:53:09 | Deep Dive |
| CVE-2025-36003 | IBM Security Verify Governance Identity Manager information disclosure | IBM | Security Verify Governance Identity Manager | High | 7.5 | 2025-08-28 02:07:52 | Deep Dive |
| CVE-2025-20131 | Cisco Identity Services Engine Arbitrary File Upload Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 4.9 | 2025-08-20 16:26:23 | Deep Dive |
| CVE-2025-20332 | Cisco Identity Services Engine Authorization Bypass Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 4.3 | 2025-08-06 16:14:49 | Deep Dive |
| CVE-2025-20331 | Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabiliy | Cisco | Cisco Identity Services Engine Software | Medium | 5.4 | 2025-08-06 16:14:41 | Deep Dive |
| CVE-2025-52924 | One Identity OneLogin SQL注入漏洞 | One Identity | OneLogin | Medium | 4.0 | 2025-07-19 00:00:00 | Deep Dive |
| CVE-2025-20337 | Cisco ISE API Unauthenticated Remote Code Execution Vulnerability | Cisco | Cisco Identity Services Engine Software | Critical | 10.0 | 2025-07-16 16:17:05 | Deep Dive |
| CVE-2025-20285 | Cisco Identity Services Engine IP Filter Access Restriction for Admin Access Configuration Bypass Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 4.1 | 2025-07-16 16:16:56 | Deep Dive |
| CVE-2025-20284 | Cisco Identity Services Engine Authenticated Remote Code Execution Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 6.5 | 2025-07-16 16:16:46 | Deep Dive |
| CVE-2025-20283 | Cisco Identity Services Engine Authenticated Remote Code Execution Vulnerability | Cisco | Cisco Identity Services Engine Software | Medium | 6.5 | 2025-07-16 16:16:38 | Deep Dive |
| CVE-2025-27582 | One Identity Password Manager 安全漏洞 | One Identity | Password Manager | High | 7.6 | 2025-07-14 00:00:00 | Deep Dive |
| CVE-2025-7326 | EOL ASP.NET Core Elevation of Privilege Vulnerability | Microsoft | ASP.NET Core 6.0 | High | 7.0 | 2025-07-08 14:31:46 | Deep Dive |