| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-4877 | Libssh: write beyond bounds in binary to base64 conversion functions | - | - | Medium | 4.5 | 2025-08-20 12:19:19 | Deep Dive |
| CVE-2025-4437 | Cri-o: large /etc/passwd file may lead to denial of service | Red Hat | Red Hat OpenShift Container Platform 4 | Medium | 5.7 | 2025-08-20 12:19:18 | Deep Dive |
| CVE-2025-7777 | Mirror-registry: host header injection in mirror-registry | Red Hat | mirror registry for Red Hat OpenShift | Medium | 6.5 | 2025-08-20 11:38:59 | Deep Dive |
| CVE-2025-8941 | Linux-pam: incomplete fix for cve-2025-6020 | - | - | High | 7.8 | 2025-08-13 14:42:38 | Deep Dive |
| CVE-2025-7195 | Operator-sdk: privilege escalation due to incorrect permissions of /etc/passwd | operator-framework | operator-sdk | Medium | 6.4 | 2025-08-07 19:05:09 | Deep Dive |
| CVE-2025-8556 | Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results | - | - | Low | 3.7 | 2025-08-06 08:48:18 | Deep Dive |
| CVE-2025-8283 | Netavark: podman: netavark may resolve hostnames to unexpected hosts | - | - | Low | 3.7 | 2025-07-28 18:16:08 | Deep Dive |
| CVE-2025-5449 | Libssh: integer overflow in libssh sftp server packet length validation leading to denial of service | - | - | Medium | 6.5 | 2025-07-25 17:19:39 | Deep Dive |
| CVE-2025-8114 | Libssh: null pointer dereference in libssh kex session id calculation | - | - | Medium | 4.7 | 2025-07-24 14:14:48 | Deep Dive |
| CVE-2025-4878 | Libssh: use of uninitialized variable in privatekey_from_file() | - | - | Low | 3.6 | 2025-07-22 14:17:03 | Deep Dive |
| CVE-2025-7519 | Polkit: xml policy file with a large number of nested elements may lead to out-of-bounds write | - | - | Medium | 6.7 | 2025-07-14 13:35:21 | Deep Dive |
| CVE-2025-6395 | Gnutls: null pointer dereference in _gnutls_figure_common_ciphersuite() | - | - | Medium | 6.5 | 2025-07-10 15:20:46 | Deep Dive |
| CVE-2025-7424 | Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes | GNOME | libxslt | High | 7.5 | 2025-07-10 14:05:42 | Deep Dive |
| CVE-2025-7425 | Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr | GNOME | libxml2 | High | 7.8 | 2025-07-10 13:53:37 | Deep Dive |
| CVE-2025-32990 | Gnutls: vulnerability in gnutls certtool template parsing | - | - | Medium | 6.5 | 2025-07-10 09:41:46 | Deep Dive |
| CVE-2025-32989 | Gnutls: vulnerability in gnutls sct extension parsing | - | - | Medium | 5.3 | 2025-07-10 08:05:26 | Deep Dive |
| CVE-2025-32988 | Gnutls: vulnerability in gnutls othername san export | - | - | Medium | 6.5 | 2025-07-10 08:04:58 | Deep Dive |
| CVE-2025-5987 | Libssh: invalid return code for chacha20 poly1305 with openssl backend | - | - | High | 8.1 | 2025-07-07 14:24:13 | Deep Dive |
| CVE-2024-9453 | Jenkins-image: sensitive data disclosure when using openshift jenkins image | Jenkins | openshift-sync-plugin | Medium | 6.5 | 2025-07-04 08:36:35 | Deep Dive |
| CVE-2025-5351 | Libssh: double free vulnerability in libssh key export functions | libssh | libssh | Medium | 6.5 | 2025-07-04 08:16:47 | Deep Dive |