| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-0227 | PAN-OS: Firewall Denial of Service (DoS) in GlobalProtect Gateway and Portal | Palo Alto Networks | Cloud NGFW | - | - | 2026-01-15 18:45:09 | Deep Dive |
| CVE-2025-40805 | Siemens Industrial Edge Devices 安全漏洞 | Siemens | Industrial Edge Cloud Device (IECD) | Critical | 10.0 | 2026-01-13 09:44:03 | Deep Dive |
| CVE-2025-41717 | Config-Upload Code Injection | Phoenix Contact | TC ROUTER 3002T-3G | High | 8.8 | 2026-01-13 07:48:20 | Deep Dive |
| CVE-2026-0501 | SQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger) | SAP_SE | SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger) | Critical | 9.9 | 2026-01-13 01:14:05 | Deep Dive |
| CVE-2026-0498 | Code Injection vulnerability in SAP S/4HANA (Private Cloud and On-Premise) | SAP_SE | SAP S/4HANA (Private Cloud and On-Premise) | Critical | 9.1 | 2026-01-13 01:13:41 | Deep Dive |
| CVE-2026-0831 | Templately <= 3.4.8 - Unauthenticated Limited Arbitrary JSON File Write | wpdevteam | Templately – Elementor & Gutenberg Template Library: 6500+ Free & Pro Ready Templates And Cloud! | Medium | 5.3 | 2026-01-10 09:22:18 | Deep Dive |
| CVE-2026-20975 | Samsung Cloud 安全漏洞 | Samsung Mobile | Samsung Cloud | 中危 | - | 2026-01-09 06:17:00 | Deep Dive |
| CVE-2025-15240 | Quanta Computer|QOCA aim AI Medical Cloud Platform - Arbitrary File Upload | Quanta Computer | QOCA aim AI Medical Cloud Platform | High | 8.8 | 2026-01-05 08:18:15 | Deep Dive |
| CVE-2025-15239 | Quanta Computer|QOCA aim AI Medical Cloud Platform - SQL Injection | Quanta Computer | QOCA aim AI Medical Cloud Platform | Medium | 6.5 | 2026-01-05 08:10:57 | Deep Dive |
| CVE-2025-15238 | Quanta Computer|QOCA aim AI Medical Cloud Platform - SQL Injection | Quanta Computer | QOCA aim AI Medical Cloud Platform | Medium | 6.5 | 2026-01-05 08:00:09 | Deep Dive |
| CVE-2025-15237 | Quanta Computer|QOCA aim AI Medical Cloud Platform - Path Traversal | Quanta Computer | QOCA aim AI Medical Cloud Platform | Medium | 4.3 | 2026-01-05 07:42:58 | Deep Dive |
| CVE-2025-15236 | Quanta Computer|QOCA aim AI Medical Cloud Platform - Path Traversal | Quanta Computer | QOCA aim AI Medical Cloud Platform | Medium | 4.3 | 2026-01-05 07:38:02 | Deep Dive |
| CVE-2025-15235 | Quanta Computer|QOCA aim AI Medical Cloud Platform - Missing Authorization | Quanta Computer | QOCA aim AI Medical Cloud Platform | Medium | 6.5 | 2026-01-05 07:25:34 | Deep Dive |
| CVE-2025-15098 | YunaiV yudao-cloud Business Process Management BpmSyncHttpRequestTrigger server-side request forgery | YunaiV | yudao-cloud | Medium | 6.3 | 2025-12-26 03:02:06 | Deep Dive |
| CVE-2025-15081 | JD Cloud BE6500 jdcapi sub_4780 command injection | JD | Cloud BE6500 | Medium | 6.3 | 2025-12-25 15:02:07 | Deep Dive |
| CVE-2025-15016 | Ragic|Enterprise Cloud Database - Hard-coded Cryptographic Key | Ragic | Enterprise Cloud Database | Critical | 9.8 | 2025-12-22 03:27:58 | Deep Dive |
| CVE-2025-15015 | Ragic|Enterprise Cloud Database - Arbitrary File Read | Ragic | Enterprise Cloud Database | High | 7.5 | 2025-12-22 03:22:47 | Deep Dive |
| CVE-2025-13427 | Authentication Bypass in Dialogflow CX Messenger | Google Cloud | Dialogflow CX Messenger | - | - | 2025-12-18 21:57:56 | Deep Dive |
| CVE-2025-14780 | Xiongwei Smart Catering Cloud Platform dish_trade_detail_get sql injection | Xiongwei | Smart Catering Cloud Platform | Medium | 6.3 | 2025-12-16 13:02:06 | Deep Dive |
| CVE-2025-12952 | Privilege Escalation in Dialogflow CX via Webhook Admin Role | Google Cloud | Dialogflow CX | - | - | 2025-12-10 07:11:31 | Deep Dive |