| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-2868 | Remote Code injection in Barracuda Email Security Gateway | Barracuda | Barracuda Email Security Gateway | Critical | 9.4 | 2023-05-24 18:00:52 | Deep Dive |
| CVE-2022-0357 | Improper Quoting Path Issue in Bitdefender Total Security | Bitdefender | Total Security | Medium | 6.7 | 2023-05-24 07:53:33 | Deep Dive |
| CVE-2023-25927 | IBM Security Verify Access denial of service | IBM | Security Verify Access | Medium | 6.5 | 2023-05-12 17:38:52 | Deep Dive |
| CVE-2022-4537 | Hide My WP Ghost – Security Plugin <= 5.0.18 - IP Address Spoofing to Protection Mechanism Bypass | johndarrel | WP Ghost (Hide My WP Ghost) – Security & Firewall | Medium | 6.5 | 2023-05-09 02:47:14 | Deep Dive |
| CVE-2023-31141 | OpenSearch issue with fine-grained access control during extremely rare race conditions | opensearch-project | security | Medium | 4.8 | 2023-05-08 20:33:59 | Deep Dive |
| CVE-2023-28724 | NGINX Management Suite vulnerability | F5 | NGINX Instance Manager | High | 7.1 | 2023-05-03 14:34:29 | Deep Dive |
| CVE-2023-28656 | NGINX Management Suite vulnerability | F5 | NGINX Instance Manager | High | 8.1 | 2023-05-03 14:34:12 | Deep Dive |
| CVE-2023-1778 | Default Credential Vulnerability in GajShield Data Security Firewall | GajShield | Data Security Firewall | Critical | 10.0 | 2023-04-27 09:33:19 | Deep Dive |
| CVE-2023-28847 | Nextcloud Server missing brute force protection for passwords of password protected share links | nextcloud | security-advisories | Low | 3.1 | 2023-04-25 16:33:00 | Deep Dive |
| CVE-2023-20862 | Spring Framework 安全漏洞 | - | Spring Security | 中危 | - | 2023-04-19 00:00:00 | Deep Dive |
| CVE-2023-30540 | Chat poll data can still be queried from API after purging history in Nextcloud talk | nextcloud | security-advisories | Low | 3.5 | 2023-04-17 21:32:29 | Deep Dive |
| CVE-2023-30539 | Users can set up workflows using restricted and invisible system tags in Nextcloud | nextcloud | security-advisories | Medium | 6.5 | 2023-04-17 21:27:29 | Deep Dive |
| CVE-2023-0157 | All-In-One Security (AIOS) < 5.1.5 - Admin+ Stored XSS | Unknown | All-In-One Security (AIOS) | 中危 | - | 2023-04-10 13:18:07 | Deep Dive |
| CVE-2023-0156 | All-In-One Security (AIOS) < 5.1.5 - Admin+ Arbitrary File/Folder Access via Traversal | Unknown | All-In-One Security (AIOS) | 中危 | - | 2023-04-10 13:18:00 | Deep Dive |
| CVE-2023-1522 | Genetec Security Center SQL注入漏洞 | Genetec Inc. | Genetec Security Center | 高危 | - | 2023-04-05 18:51:03 | Deep Dive |
| CVE-2023-29000 | Nextcloud Desktop client does not verify received singed certificate in end-to-end encryption | nextcloud | security-advisories | Medium | 5.4 | 2023-04-04 12:53:36 | Deep Dive |
| CVE-2023-28999 | Nextcloud: Lack of authenticity of metadata keys allows a malicious server to gain access to E2EE folders | nextcloud | security-advisories | Medium | 6.9 | 2023-04-04 12:51:08 | Deep Dive |
| CVE-2023-28998 | Nextcloud Desktop client misbehaves with E2EE when the server returns empty list of metadata keys | nextcloud | security-advisories | Medium | 6.7 | 2023-04-04 12:45:42 | Deep Dive |
| CVE-2023-28997 | Nextcloud Desktop: Initialization vector reuse in E2EE allows malicious server admin to break, manipulate, access files | nextcloud | security-advisories | Medium | 6.7 | 2023-04-04 12:42:25 | Deep Dive |
| CVE-2023-28848 | CSRF protection on user_oidc login returned the expected token in case of an error | nextcloud | security-advisories | Medium | 4.8 | 2023-04-04 12:38:31 | Deep Dive |