| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-23553 | A cross-site scripting (XSS) vulnerability affects HCL BigFix Platform | HCL Software | BigFix Platform | Low | 3.0 | 2024-02-02 21:03:33 | Deep Dive |
| CVE-2023-37531 | A cross-site scripting (XSS) vulnerability affects HCL BigFix Platform | HCL Software | BigFix Platform | Low | 3.3 | 2024-02-02 20:07:45 | Deep Dive |
| CVE-2023-37530 | A cross-site scripting (XSS) vulnerability affects HCL BigFix Platform | HCL Software | BigFix Platform | Low | 3.0 | 2024-02-02 20:02:24 | Deep Dive |
| CVE-2023-37529 | A cross-site scripting (XSS) vulnerability affects HCL BigFix Platform | HCL Software | BigFix Platform | Low | 3.0 | 2024-02-02 19:45:10 | Deep Dive |
| CVE-2023-37527 | A cross-site scripting (XSS) vulnerability affects HCL BigFix Platform | HCL Software | BigFix Platform | Medium | 5.4 | 2024-02-02 18:10:04 | Deep Dive |
| CVE-2024-1141 | Glance-store: glance store access key logged in debug log level | - | - | Medium | 5.5 | 2024-02-01 14:21:38 | Deep Dive |
| CVE-2024-21917 | Rockwell Automation FactoryTalk® Service Platform Service Token Vulnerability | Rockwell Automation | FactoryTalk® Service Platform | Critical | 9.8 | 2024-01-31 18:16:28 | Deep Dive |
| CVE-2023-50166 | Pegasystem PEGA Platform 安全漏洞 | Pegasystems | Pega Platform | Medium | 6.1 | 2024-01-31 17:26:43 | Deep Dive |
| CVE-2023-50165 | Pegasystem PEGA Platform 安全漏洞 | Pegasystems | Pega Platform | High | 8.5 | 2024-01-31 17:21:04 | Deep Dive |
| CVE-2024-0939 | Byzoro Smart S210 Management Platform uploadfile.php unrestricted upload | Byzoro | Smart S210 Management Platform | Medium | 6.3 | 2024-01-26 18:31:04 | Deep Dive |
| CVE-2023-6291 | Keycloak: redirect_uri validation bypass | Red Hat | Red Hat build of Keycloak 22 | High | 7.1 | 2024-01-26 14:23:43 | Deep Dive |
| CVE-2024-0716 | Byzoro Smart S150 Management Platform Backup File download.php information disclosure | Byzoro | Smart S150 Management Platform | Low | 3.1 | 2024-01-19 15:00:06 | Deep Dive |
| CVE-2024-0712 | Byzoro Smart S150 Management Platform userattea.php access control | Byzoro | Smart S150 Management Platform | High | 7.3 | 2024-01-19 13:31:05 | Deep Dive |
| CVE-2024-20916 | Oracle Enterprise Manager Base Platform 安全漏洞 | Oracle Corporation | Enterprise Manager Base Platform | High | 8.3 | 2024-01-16 21:41:15 | Deep Dive |
| CVE-2024-0567 | Gnutls: rejects certificate chain with distributed trust | - | - | High | 7.5 | 2024-01-16 14:01:59 | Deep Dive |
| CVE-2024-22209 | XBlock custom auth does not respect JWT Scopes | openedx | edx-platform | Medium | 6.4 | 2024-01-13 07:40:44 | Deep Dive |
| CVE-2023-4247 | GiveWP <= 2.33.3 - Cross-Site Request Forgery to plugin deactivation | stellarwp | GiveWP – Donation Plugin and Fundraising Platform | Medium | 5.4 | 2024-01-11 08:33:05 | Deep Dive |
| CVE-2023-4246 | GiveWP <= 2.33.3 - Cross-Site Request Forgery to plugin installation | stellarwp | GiveWP – Donation Plugin and Fundraising Platform | Medium | 4.3 | 2024-01-11 08:33:03 | Deep Dive |
| CVE-2023-4248 | GiveWP <= 2.33.3 - Cross-Site Request Forgery to Stripe Integration Deletion | stellarwp | GiveWP – Donation Plugin and Fundraising Platform | Medium | 5.4 | 2024-01-11 08:32:30 | Deep Dive |
| CVE-2023-6476 | Cri-o: pods are able to break out of resource confinement on cgroupv2 | Red Hat | Red Hat OpenShift Container Platform 4.13 | Medium | 6.5 | 2024-01-09 21:32:03 | Deep Dive |