| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-3124 | Missing Authorization vulnerability was identified in GitHub Enterprise Server that allowed unauthorized access to private repository names | GitHub | Enterprise Server | - | - | 2025-04-17 22:50:14 | Deep Dive |
| CVE-2025-31030 | WordPress Ray Enterprise Translation plugin <= 1.7.0 - Local File Inclusion via CSRF Vulnerability | Jiro Sasamoto | Ray Enterprise Translation | High | 7.5 | 2025-04-17 15:47:51 | Deep Dive |
| CVE-2025-30735 | Oracle PeopleSoft 安全漏洞 | Oracle Corporation | PeopleSoft Enterprise CC Common Application Objects | High | 8.1 | 2025-04-15 20:31:20 | Deep Dive |
| CVE-2025-30713 | Oracle PeopleSoft 安全漏洞 | Oracle Corporation | PeopleSoft Enterprise HCM Talent Acquisition Manager | Medium | 5.4 | 2025-04-15 20:31:11 | Deep Dive |
| CVE-2025-30698 | Oracle Java SE 安全漏洞 | Oracle Corporation | Oracle Java SE | Medium | 5.6 | 2025-04-15 20:31:06 | Deep Dive |
| CVE-2025-30697 | Oracle PeopleSoft 安全漏洞 | Oracle Corporation | PeopleSoft Enterprise PeopleTools | Medium | 5.4 | 2025-04-15 20:31:05 | Deep Dive |
| CVE-2025-21587 | Oracle Java SE 安全漏洞 | Oracle Corporation | Oracle Java SE | High | 7.4 | 2025-04-15 20:30:58 | Deep Dive |
| CVE-2025-32911 | Libsoup: double free on soup_message_headers_get_content_disposition() through "soup-message-headers.c" via "params" ghashtable value | - | - | Critical | 9.0 | 2025-04-15 15:39:35 | Deep Dive |
| CVE-2025-3576 | Krb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisions | - | - | Medium | 5.9 | 2025-04-15 05:55:27 | Deep Dive |
| CVE-2025-3571 | Fannuo Enterprise Content Management System 凡诺企业网站管理系统 cms_chip.php sql injection | Fannuo | Enterprise Content Management System 凡诺企业网站管理系统 | Medium | 6.3 | 2025-04-14 15:00:11 | Deep Dive |
| CVE-2025-32914 | Libsoup: oob read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process | - | - | High | 7.4 | 2025-04-14 14:45:46 | Deep Dive |
| CVE-2025-32912 | Libsoup: null pointer dereference in client when server omits the "nonce" parameter in an unauthorized response with digest authentication | - | - | Medium | 6.5 | 2025-04-14 14:44:47 | Deep Dive |
| CVE-2025-32910 | Libsoup: null pointer deference on libsoup via /auth/soup-auth-digest.c through "soup_auth_digest_authenticate" on client when server omits the "realm" parameter in an unauthorized response with digest authentication | - | - | Medium | 6.5 | 2025-04-14 14:43:20 | Deep Dive |
| CVE-2025-32909 | Libsoup: null pointer dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.c | - | - | Medium | 5.3 | 2025-04-14 14:42:26 | Deep Dive |
| CVE-2025-32908 | Libsoup: denial of service on libsoup through http/2 server | - | - | High | 7.5 | 2025-04-14 14:00:30 | Deep Dive |
| CVE-2025-32907 | Libsoup: denial of service in server when client requests a large amount of overlapping ranges with range header | - | - | Medium | 5.3 | 2025-04-14 14:00:10 | Deep Dive |
| CVE-2025-32906 | Libsoup: out of bounds reads in soup_headers_parse_request() | - | - | High | 7.5 | 2025-04-14 13:58:40 | Deep Dive |
| CVE-2025-32913 | Libsoup: null pointer dereference in soup_message_headers_get_content_disposition when "filename" parameter is present, but has no value in content-disposition header | - | - | High | 7.5 | 2025-04-14 13:37:37 | Deep Dive |
| CVE-2025-27081 | HPE NonStop OSM Service Connection Suite, Denial of Service vulnerability | Hewlett Packard Enterprise | HPE NonStop OSM Service Connection Suite | Medium | 6.8 | 2025-04-10 08:43:48 | Deep Dive |
| CVE-2025-3115 | Spotfire Data Function Vulnerability | Spotfire | Spotfire Statistics Services | - | - | 2025-04-09 18:12:28 | Deep Dive |