| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-12812 | Cloud Suite and Privilege Access Service – SQL Injection | Delinea Inc. | Cloud Suite and Privileged Access Service | - | - | 2026-02-18 22:10:35 | Deep Dive |
| CVE-2025-12811 | Cloud Suite and Privilege Access Service– HTTP request smuggling vulnerability | Delinea Inc. | Cloud Suite and Privileged Access Service | - | - | 2026-02-18 22:08:25 | Deep Dive |
| CVE-2026-20139 | Client-Side Denial of Service (DoS) through ''/splunkd/__raw/services/authentication/users/username'' REST API endpoint in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 4.3 | 2026-02-18 16:45:32 | Deep Dive |
| CVE-2026-20144 | Sensitive Information Disclosure in ''_internal'' index in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 6.8 | 2026-02-18 16:45:24 | Deep Dive |
| CVE-2026-20137 | Risky Commands Safeguards Bypass through preloaded Data Models due to Path Traversal vulnerability in Splunk Enterprise | Splunk | Splunk Enterprise | Low | 3.5 | 2026-02-18 16:45:18 | Deep Dive |
| CVE-2025-13689 | DataStage on Cloud Pak for Data is vulnerable to arbitrary code injection due to runtime environment | IBM | DataStage on Cloud Pak | High | 8.8 | 2026-02-17 22:26:21 | Deep Dive |
| CVE-2023-38005 | Improper Access Control and Exposure of Information Through Directory Listing vulnerabilities affect IBM Cloud Pak System[, ] | IBM | Cloud Pak System | Medium | 4.3 | 2026-02-17 21:50:00 | Deep Dive |
| CVE-2025-13691 | DataStage on Cloud Pak for Data is vulnerable to sensitive information leaks due to HTTP processing | IBM | DataStage on Cloud Pak for Data | High | 8.1 | 2026-02-17 20:17:24 | Deep Dive |
| CVE-2023-38265 | Improper Access Control and Exposure of Information Through Directory Listing vulnerabilities affect IBM Cloud Pak System[, ] | IBM | Cloud Pak System | Medium | 5.3 | 2026-02-17 19:06:58 | Deep Dive |
| CVE-2026-2563 | JingDong JD Cloud Box AX6600 jdcapp_rpc controlDevice get_status privileges management | JingDong | JD Cloud Box AX6600 | Medium | 6.3 | 2026-02-16 15:32:46 | Deep Dive |
| CVE-2026-2562 | JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi cast_streen privileges management | JingDong | JD Cloud Box AX6600 | Medium | 6.3 | 2026-02-16 15:02:50 | Deep Dive |
| CVE-2026-2561 | JingDong JD Cloud Box AX6600 jdcweb_rpc jdcapi web_get_ddns_uptime privileges management | JingDong | JD Cloud Box AX6600 | Medium | 6.3 | 2026-02-16 14:32:54 | Deep Dive |
| CVE-2025-9292 | Permissive Web Security Policy Allows Cross-Origin Access Control Bypass on Omada Cloud Controllers | TP-Link Systems Inc. | Omada Cloud Controller | - | - | 2026-02-13 00:21:24 | Deep Dive |
| CVE-2026-0229 | PAN-OS: Denial of Service in Advanced DNS Security Feature | Palo Alto Networks | Cloud NGFW | - | - | 2026-02-11 17:56:09 | Deep Dive |
| CVE-2026-0228 | PAN-OS: Improper Validation of Terminal Server Agent Certificate | Palo Alto Networks | Cloud NGFW | - | - | 2026-02-11 17:55:44 | Deep Dive |
| CVE-2026-24321 | Information Disclosure vulnerability in SAP Commerce Cloud | SAP_SE | SAP Commerce Cloud | Medium | 5.3 | 2026-02-10 03:03:53 | Deep Dive |
| CVE-2026-23684 | Race condition vulnerability in SAP Commerce Cloud | SAP_SE | SAP Commerce Cloud | Medium | 5.9 | 2026-02-10 03:02:15 | Deep Dive |
| CVE-2026-1727 | Information Disclosure via Bucket Squatting in Google Cloud Agentspace. | Google Cloud | Gemini Enterprise (formerly Agentspace) | - | - | 2026-02-06 21:44:43 | Deep Dive |
| CVE-2024-39724 | IBM Db2 Big SQL on Cloud Pak for Data is vulnerable to a denial of service due to lack of throttling on an API | IBM | Db2 Big SQL on Cloud Pak for Data | Medium | 5.3 | 2026-02-04 20:52:22 | Deep Dive |
| CVE-2023-38281 | Multiple Vulnerabilities in IBM Cloud Pak System | IBM | Cloud Pak System | Medium | 5.3 | 2026-02-04 20:45:06 | Deep Dive |