| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-13688 | DataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime environment | IBM | DataStage on Cloud Pak for Data | Medium | 6.3 | 2026-03-03 20:44:41 | Deep Dive |
| CVE-2025-13616 | DataStage on Cloud Pak for Data is vulnerable to sensitive information leak due to HTTP response | IBM | DataStage on Cloud Pak for Data | Medium | 6.5 | 2026-03-03 19:53:22 | Deep Dive |
| CVE-2026-3136 | Google Cloud Build Comment Control Bypass | Google Cloud | Cloud Build | - | - | 2026-03-03 16:22:55 | Deep Dive |
| CVE-2026-2244 | Sensitive Data Exposure in Google Cloud Vertex AI Workbench | Google Cloud | Vertex AI Workbench | - | - | 2026-02-26 14:14:46 | Deep Dive |
| CVE-2026-22721 | VMware Aria Operations privilege escalation vulnerability | VMware | VMware Aria Operations | Medium | 6.2 | 2026-02-25 20:00:16 | Deep Dive |
| CVE-2026-22720 | VMware Aria Operations stored cross-site scripting vulnerability | VMware | VMware Aria Operations | High | 8.0 | 2026-02-25 19:33:15 | Deep Dive |
| CVE-2026-22719 | VMware Aria Operations command injection vulnerability | VMware | VMware Aria Operations | High | 8.1 | 2026-02-25 19:18:59 | Deep Dive |
| CVE-2025-1242 | Administrative Credentials Can Be Extracted Through Gardyn API Responses | Gardyn | Home Kit | Critical | 9.1 | 2026-02-25 15:21:48 | Deep Dive |
| CVE-2026-27211 | Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse | cloud-hypervisor | cloud-hypervisor | - | - | 2026-02-21 05:36:33 | Deep Dive |
| CVE-2026-2473 | Bucket Squatting in Vertex AI Experiments leads to RCE and Model Theft. | Google Cloud | Vertex AI Experiments | - | - | 2026-02-20 19:39:51 | Deep Dive |
| CVE-2026-2472 | Stored Cross-Site Scripting (XSS) in Vertex AI Python SDK Visualization | Google Cloud | Vertex AI SDK for Python | - | - | 2026-02-20 19:29:12 | Deep Dive |
| CVE-2025-69011 | WordPress Cool Tag Cloud plugin <= 2.29 - Cross Site Scripting (XSS) vulnerability | WPKube | Cool Tag Cloud | - | - | 2026-02-20 15:46:45 | Deep Dive |
| CVE-2025-30410 | Acronis Cyber Protect 访问控制错误漏洞 | Acronis | Acronis Cyber Protect Cloud Agent | - | - | 2026-02-20 00:31:06 | Deep Dive |
| CVE-2026-2408 | Use-after-free in Cloud Workloads | Tanium | Cloud Workloads | Medium | 4.7 | 2026-02-19 23:09:52 | Deep Dive |
| CVE-2026-2409 | Delinea Cloud Suite 安全漏洞 | Delinea | Cloud Suite | - | - | 2026-02-19 17:55:01 | Deep Dive |
| CVE-2025-15563 | Broken Access Control results in Denial of Service in NesterSoft WorkTime | NesterSoft Inc. | WorkTime (on-prem/cloud) | - | - | 2026-02-19 11:01:57 | Deep Dive |
| CVE-2025-15562 | Reflected Cross-Site Scripting in NesterSoft WorkTime | NesterSoft Inc. | WorkTime (on-prem/cloud) | - | - | 2026-02-19 10:54:53 | Deep Dive |
| CVE-2025-15561 | Local Privilege Escalation in NesterSoft WorkTime | NesterSoft Inc. | WorkTime (on-prem/cloud) | - | - | 2026-02-19 10:53:19 | Deep Dive |
| CVE-2025-15560 | SQL Injection in NesterSoft WorkTime | NesterSoft Inc. | WorkTime (on-prem/cloud) | - | - | 2026-02-19 10:48:43 | Deep Dive |
| CVE-2025-15559 | Unauthenticated OS Command Injection in NesterSoft WorkTime | NesterSoft Inc. | WorkTime (on-prem/cloud) | - | - | 2026-02-19 10:45:35 | Deep Dive |