| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-8884 | IDOR in VHS Electronic Software's ACE Center | VHS Electronic Software Ltd. Co. | ACE Center | Medium | 5.5 | 2025-10-20 14:36:32 | Deep Dive |
| CVE-2023-28815 | Hikvision iSecure Center 安全漏洞 | Hikvision | iSecure Center | Critical | 9.8 | 2025-10-17 11:07:26 | Deep Dive |
| CVE-2023-28814 | Hikvision iSecure Center 安全漏洞 | Hikvision | iSecure Center | Critical | 9.8 | 2025-10-17 11:07:07 | Deep Dive |
| CVE-2025-35061 | Newforma Info Exchange (NIX) forced NTLMv2 authentication via /NPCSRemoteWeb/LegacyIntegrationServices.asmx | Newforma | Project Center | Medium | 5.9 | 2025-10-09 20:22:37 | Deep Dive |
| CVE-2025-35062 | Newforma Info Exchange (NIX) default anonymous access | Newforma | Project Center | Medium | 5.3 | 2025-10-09 20:22:23 | Deep Dive |
| CVE-2025-35060 | Newforma Info Exchange (NIX) stored XSS via SVG file upload | Newforma | Project Center | Medium | 5.5 | 2025-10-09 20:22:10 | Deep Dive |
| CVE-2025-35059 | Newforma Info Exchange (NIX) open URL redirect via /DownloadWeb/hyperlinkredirect.aspx | Newforma | Project Center | Medium | 4.3 | 2025-10-09 20:21:57 | Deep Dive |
| CVE-2025-35058 | Newforma Info Exchange (NIX) forced NTLMv2 authentication via /UserWeb/Common/MarkupServices.ashx | Newforma | Project Center | Medium | 5.9 | 2025-10-09 20:21:43 | Deep Dive |
| CVE-2025-35057 | Newforma Info Exchange (NIX) forced NTLMv2 authentication via /RemoteWeb/IntegrationServices.ashx | Newforma | Project Center | Medium | 5.3 | 2025-10-09 20:21:29 | Deep Dive |
| CVE-2025-35056 | Newforma Info Exchange (NIX) limited file read | Newforma | Project Center | Medium | 5.0 | 2025-10-09 20:21:10 | Deep Dive |
| CVE-2025-35055 | Newforma Info Exchange (NIX) insecure file upload | Newforma | Project Center | High | 8.8 | 2025-10-09 20:20:56 | Deep Dive |
| CVE-2025-35054 | Newforma Info Exchange (NIX) insufficiently protected credentials | Newforma | Project Center | Medium | 5.3 | 2025-10-09 20:20:40 | Deep Dive |
| CVE-2025-35053 | Newforma Info Exchange (NIX) arbitrary file read and delete | Newforma | Project Center | Medium | 6.4 | 2025-10-09 20:20:18 | Deep Dive |
| CVE-2025-35052 | Newforma Info Exchange (NIX) shared hard-coded secret key | Newforma | Project Center | Medium | 5.3 | 2025-10-09 20:20:01 | Deep Dive |
| CVE-2025-35051 | Newforma Project Center Server (NPCS) .NET unauthenticated deserialization | Newforma | Project Center | Critical | 9.8 | 2025-10-09 20:19:44 | Deep Dive |
| CVE-2025-35050 | Newforma Info Exchange (NIX) .NET unauthenticated deserialization | Newforma | Project Center | Critical | 9.8 | 2025-10-09 20:19:13 | Deep Dive |
| CVE-2025-36636 | Improper Access Control | Tenable | Security Center | Medium | 4.3 | 2025-10-08 15:19:34 | Deep Dive |
| CVE-2025-0616 | SQLi in Teknolojik Center Telecommunication's B2B - Netsis Panel | Teknolojik Center Telecommunication Industry Trade Co. Ltd. | B2B - Netsis Panel | High | 8.2 | 2025-10-03 08:05:09 | Deep Dive |
| CVE-2025-42923 | Cross-Site Request Forgery (CSRF) vulnerability in SAP Fiori App (F4044 Manage Work Center Groups) | SAP_SE | SAP Fiori App (F4044 Manage Work Center Groups) | Medium | 4.3 | 2025-09-09 02:09:48 | Deep Dive |
| CVE-2025-43726 | Dell Alienware Command Center 后置链接漏洞 | Dell | Alienware Command Center 5.x (AWCC) | Medium | 6.7 | 2025-09-02 18:29:59 | Deep Dive |