| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-61662 | Grub2: missing unregister call for gettext command may lead to use-after-free | GNU | grub2 | High | 7.8 | 2025-11-18 18:20:48 | Deep Dive |
| CVE-2025-61661 | Grub2: grub2: out-of-bounds write via malicious usb device | GNU | grub2 | Medium | 4.8 | 2025-11-18 18:20:42 | Deep Dive |
| CVE-2025-54771 | Grub2: use-after-free in grub_file_close() | GNU | grub2 | Medium | 4.9 | 2025-11-18 18:20:40 | Deep Dive |
| CVE-2025-10230 | Samba: command injection in wins server hook script | - | - | Critical | 10.0 | 2025-11-07 19:42:07 | Deep Dive |
| CVE-2025-12464 | Qemu-kvm: stack buffer overflow in e1000 device via short frames in loopback mode | - | - | Medium | 6.2 | 2025-10-31 21:15:49 | Deep Dive |
| CVE-2025-64143 | Jenkins OpenShift Pipeline Plugin 安全漏洞 | Jenkins Project | Jenkins OpenShift Pipeline Plugin | - | - | 2025-10-29 13:29:48 | Deep Dive |
| CVE-2025-12103 | Openshift-ai: trusty ai grants all authenticated users to list pods in any namespace | Red Hat | Red Hat OpenShift AI 2.25 | Medium | 5.0 | 2025-10-28 13:31:59 | Deep Dive |
| CVE-2025-57848 | Container-native-virtualization: privilege escalation via excessive /etc/passwd permissions | Red Hat | Red Hat OpenShift Virtualization 4 | Medium | 6.4 | 2025-10-23 20:10:31 | Deep Dive |
| CVE-2025-11568 | Luksmeta: data corruption when handling luks1 partitions with luksmeta | Latchset | luksmeta | Medium | 4.4 | 2025-10-15 19:37:12 | Deep Dive |
| CVE-2025-9640 | Samba: vfs_streams_xattr uninitialized memory write possible | - | - | Medium | 4.3 | 2025-10-15 12:47:30 | Deep Dive |
| CVE-2025-11731 | Libxslt: type confusion in exsltfuncresultcompfunction of libxslt | - | - | Low | 3.1 | 2025-10-14 06:02:36 | Deep Dive |
| CVE-2025-11561 | Sssd: sssd default kerberos configuration allows privilege escalation on ad-joined linux systems | - | - | High | 8.8 | 2025-10-09 13:37:53 | Deep Dive |
| CVE-2025-11234 | Qemu-kvm: vnc websocket handshake use-after-free | - | - | High | 7.5 | 2025-10-03 10:30:34 | Deep Dive |
| CVE-2025-10725 | Openshift-ai: overly permissive clusterrole allows authenticated users to escalate privileges to cluster admin | opendatahub-io | opendatahub-operator | Critical | 9.9 | 2025-09-30 17:47:09 | Deep Dive |
| CVE-2025-57852 | Openshift-ai: privilege escalation via excessive /etc/passwd permissions | Red Hat | Red Hat OpenShift AI 2.16 | Medium | 6.4 | 2025-09-30 14:37:10 | Deep Dive |
| CVE-2025-11060 | Surrealdb: surrealdb is vulnerable to unauthorized data exposure via live query subscriptions | - | - | Medium | 5.7 | 2025-09-26 12:01:23 | Deep Dive |
| CVE-2025-10911 | Libxslt: use-after-free with key data stored cross-rvt | - | - | Medium | 5.5 | 2025-09-25 15:13:14 | Deep Dive |
| CVE-2025-10894 | Nx: nx/devkit: malicious versions of nx and plugins published to npm | - | - | Critical | 9.6 | 2025-09-24 21:20:31 | Deep Dive |
| CVE-2025-4953 | Podman: build context bind mount | - | - | High | 7.4 | 2025-09-16 14:54:50 | Deep Dive |
| CVE-2025-8277 | Libssh: memory exhaustion via repeated key exchange in libssh | - | - | Low | 3.1 | 2025-09-09 11:55:39 | Deep Dive |