| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-62473 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Microsoft | Windows 10 Version 1607 | Medium | 6.5 | 2025-12-09 17:55:38 | Deep Dive |
| CVE-2025-62470 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:37 | Deep Dive |
| CVE-2025-62466 | Windows Client-Side Caching Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:36 | Deep Dive |
| CVE-2025-62458 | Win32k Elevation of Privilege Vulnerability | Microsoft | Windows 10 Version 1607 | High | 7.8 | 2025-12-09 17:55:35 | Deep Dive |
| CVE-2025-42874 | Denial of service (DOS) in SAP NetWeaver (remote service for Xcelsius) | SAP_SE | SAP NetWeaver (remote service for Xcelsius) | High | 7.9 | 2025-12-09 02:14:20 | Deep Dive |
| CVE-2025-64650 | IBM Storage Defender - Resiliency Service Information Disclosure | IBM | Storage Defender - Resiliency Service | Medium | 6.5 | 2025-12-08 21:51:05 | Deep Dive |
| CVE-2025-66287 | Webkitgtk: processing maliciously crafted web content may lead to an unexpected process crash | The WebKitGTK Team | WebKitGTK | High | 8.8 | 2025-12-04 16:48:31 | Deep Dive |
| CVE-2024-3884 | Undertow: outofmemory when parsing form data encoding with application/x-www-form-urlencoded | Red Hat | Red Hat JBoss Enterprise Application Platform 7.1 EUS for RHEL 7 | High | 7.5 | 2025-12-03 18:40:26 | Deep Dive |
| CVE-2025-13947 | Webkit: webkitgtk: remote user-assisted information disclosure via file drag-and-drop | The WebKitGTK Team | webkitgtk | High | 7.4 | 2025-12-03 09:46:00 | Deep Dive |
| CVE-2025-13601 | Glib: integer overflow in in g_escape_uri_string() | - | - | High | 7.7 | 2025-11-26 14:44:23 | Deep Dive |
| CVE-2025-12061 | Tax Service Electronic HDM < 1.2.1 - Unauthenticated Arbitrary SQL Execution | Unknown | TAX SERVICE Electronic HDM | - | - | 2025-11-26 06:00:08 | Deep Dive |
| CVE-2025-13502 | Webkit: webkitgtk / wpe webkit: out-of-bounds read and integer underflow vulnerability leading to dos | The WebKitGTK Team | webkitgtk | High | 7.5 | 2025-11-25 08:02:26 | Deep Dive |
| CVE-2025-10555 | Stored Cross-site Scripting (XSS) vulnerability affecting Service Items Management in DELMIA Service Process Engineer on Release 3DEXPERIENCE R2025x | Dassault Systèmes | DELMIA Service Process Engineer | High | 8.7 | 2025-11-24 15:31:54 | Deep Dive |
| CVE-2025-62207 | Azure Monitor Elevation of Privilege Vulnerability | Microsoft | Azure Monitor Control Service | High | 8.6 | 2025-11-20 22:18:38 | Deep Dive |
| CVE-2025-10703 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:47:08 | Deep Dive |
| CVE-2025-10702 | Progress多款产品 代码注入漏洞 | Progress | DataDirect Connect for JDBC for Amazon Redshift | - | - | 2025-11-19 15:46:27 | Deep Dive |
| CVE-2025-61662 | Grub2: missing unregister call for gettext command may lead to use-after-free | GNU | grub2 | High | 7.8 | 2025-11-18 18:20:48 | Deep Dive |
| CVE-2025-9312 | Improper Certificate-Based Authentication Enforcement in Multiple WSO2 Products | WSO2 | WSO2 API Manager | Critical | 9.8 | 2025-11-18 12:05:22 | Deep Dive |
| CVE-2025-13161 | IQ Service International|IQ-Support - Arbitrary File Read | IQ Service International | IQ-Support | High | 7.5 | 2025-11-14 03:05:20 | Deep Dive |
| CVE-2025-13160 | IQ Service International|IQ-Support - Exposure of Sensitive Information | IQ Service International | IQ-Support | Medium | 5.3 | 2025-11-14 03:00:26 | Deep Dive |