| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-1918 | Byzoro Smart S42 Management Platform userattestation.php unrestricted upload | Byzoro | Smart S42 Management Platform | Medium | 4.7 | 2024-02-27 13:00:08 | Deep Dive |
| CVE-2023-3966 | Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet | - | openvswitch | High | 7.5 | 2024-02-22 12:15:53 | Deep Dive |
| CVE-2023-39540 | Weston Embedded uC-TCP-IP 安全漏洞 | Silicon Labs | Gecko Platform | Medium | 5.9 | 2024-02-20 14:45:03 | Deep Dive |
| CVE-2023-39541 | Weston Embedded uC-TCP-IP 安全漏洞 | Silicon Labs | Gecko Platform | Medium | 5.9 | 2024-02-20 14:45:03 | Deep Dive |
| CVE-2023-45318 | Weston Embedded uC-HTTP 安全漏洞 | Silicon Labs | Gecko Platform | Critical | 10.0 | 2024-02-20 14:45:02 | Deep Dive |
| CVE-2024-1635 | Undertow: out-of-memory error after several closed connections with wildfly-http-client protocol | - | - | High | 7.5 | 2024-02-19 21:23:14 | Deep Dive |
| CVE-2024-20917 | Oracle Enterprise Manager Base Platform 安全漏洞 | Oracle Corporation | Enterprise Manager Base Platform | High | 7.5 | 2024-02-17 01:50:10 | Deep Dive |
| CVE-2024-21915 | Rockwell Automation FactoryTalk® Service Platform Elevated Privileges Vulnerability Through Web Service Functionality | Rockwell Automation | FactoryTalk® Service Platform | Critical | 9.0 | 2024-02-16 18:20:44 | Deep Dive |
| CVE-2024-1485 | Registry-support: decompress can delete files outside scope via relative paths | - | - | High | 8.0 | 2024-02-13 23:31:14 | Deep Dive |
| CVE-2024-1459 | Undertow: directory traversal vulnerability | - | - | Medium | 5.3 | 2024-02-12 20:30:04 | Deep Dive |
| CVE-2023-6681 | Jwcrypto: denail of service via specifically crafted jwe | Red Hat | Red Hat Enterprise Linux 8 | Medium | 5.3 | 2024-02-12 14:04:45 | Deep Dive |
| CVE-2023-51415 | WordPress GiveWP Plugin <= 3.2.2 is vulnerable to Cross Site Scripting (XSS) | GiveWP | GiveWP – Donation Plugin and Fundraising Platform | Medium | 6.5 | 2024-02-10 08:39:12 | Deep Dive |
| CVE-2024-1254 | Byzoro Smart S20 Management Platform sysmanageajax.php sql injection | Byzoro | Smart S20 Management Platform | Medium | 4.7 | 2024-02-06 18:31:04 | Deep Dive |
| CVE-2024-1253 | Byzoro Smart S40 Management Platform Import web.php unrestricted upload | Byzoro | Smart S40 Management Platform | Medium | 4.7 | 2024-02-06 17:00:07 | Deep Dive |
| CVE-2023-35188 | SQL Injection Remote Code Execution Vulnerability | SolarWinds | SolarWinds Platform | High | 8.0 | 2024-02-06 16:00:22 | Deep Dive |
| CVE-2023-50395 | SQL Injection Remote Code Execution Vulnerability | SolarWinds | SolarWinds Platform | High | 8.0 | 2024-02-06 15:59:49 | Deep Dive |
| CVE-2024-0690 | Ansible-core: possible information leak in tasks that ignore ansible_no_log configuration | - | - | Medium | 5.0 | 2024-02-06 12:00:29 | Deep Dive |
| CVE-2023-4503 | Eap-galleon: custom provisioning creates unsecured http-invoker | Red Hat | EAP 7.4.14 | Medium | 6.8 | 2024-02-06 08:39:02 | Deep Dive |
| CVE-2023-50782 | Python-cryptography: bleichenbacher timing oracle attack against rsa decryption - incomplete fix for cve-2020-25659 | - | - | High | 7.5 | 2024-02-05 20:45:50 | Deep Dive |
| CVE-2023-37528 | A cross-site scripting (XSS) vulnerability affects HCL BigFix Platform | HCL Software | BigFix Platform | Medium | 6.5 | 2024-02-03 05:27:07 | Deep Dive |