| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-22901 | QuNetSwitch | QNAP Systems Inc. | QuNetSwitch | 中危 | - | 2026-03-20 16:21:20 | Deep Dive |
| CVE-2026-22902 | QuNetSwitch | QNAP Systems Inc. | QuNetSwitch | 中危 | - | 2026-03-20 16:21:08 | Deep Dive |
| CVE-2026-3849 | Buffer Overflow in HPKE via Oversized ECH Config | wolfSSL Inc. | wolfSSL | 中危 | - | 2026-03-19 20:29:31 | Deep Dive |
| CVE-2026-3503 | Fault injection attack with ML-DSA and ML-KEM on ARM | wolfSSL Inc. | wolfSSL (wolfCrypt) | 中危 | - | 2026-03-19 18:12:27 | Deep Dive |
| CVE-2026-3029 | CVE-2026-3029 | Artifex Software Inc. *PyMuPDF* | PyMuPDF | 高危 | - | 2026-03-19 15:53:39 | Deep Dive |
| CVE-2026-22557 | Ubiquiti UniFi Network Application 安全漏洞 | Ubiquiti Inc | UniFi Network Application | Critical | 10.0 | 2026-03-19 14:24:52 | Deep Dive |
| CVE-2026-22558 | Ubiquiti UniFi Network Application 安全漏洞 | Ubiquiti Inc | UniFi Network Application | High | 7.7 | 2026-03-19 14:24:52 | Deep Dive |
| CVE-2025-71260 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 VIEWSTATE Deserialization RCE | BMC Software, Inc. | FootPrints | High | 8.8 | 2026-03-19 13:45:06 | Deep Dive |
| CVE-2025-71259 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Blind SSRF in externalfeed/RSS | BMC Software, Inc. | FootPrints | Medium | 4.3 | 2026-03-19 13:44:39 | Deep Dive |
| CVE-2025-71258 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Blind SSRF in searchWeb | BMC Software, Inc. | FootPrints | Medium | 4.3 | 2026-03-19 13:44:10 | Deep Dive |
| CVE-2025-71257 | BMC FootPrints ITSM 20.20.02 <= 20.24.01.001 Authentication Bypass | BMC Software, Inc. | FootPrints | High | 7.3 | 2026-03-19 13:43:38 | Deep Dive |
| CVE-2026-4359 | Heap-buffer-over-read in _mongoc_http_send via strstr on non-null-terminated buffer | MongoDB Inc | MongoDB C Driver | Low | 2.0 | 2026-03-17 19:42:03 | Deep Dive |
| CVE-2026-4358 | Memory safety issues in slot-based execution hash table spill | MongoDB Inc | MongoDB Server | Medium | 6.4 | 2026-03-17 19:00:08 | Deep Dive |
| CVE-2026-4148 | ExpressionContext use-after-free in classic engine $lookup and $graphLookup aggregation operators | MongoDB Inc | MongoDB Server | High | 8.8 | 2026-03-17 15:53:58 | Deep Dive |
| CVE-2026-4147 | Stack memory disclosure in filemd5 command | MongoDB Inc | MongoDB Server | Medium | 6.5 | 2026-03-17 15:50:22 | Deep Dive |
| CVE-2026-32583 | WordPress Modern Events Calendar plugin <= 7.29.0 - Broken Access Control vulnerability | Webnus Inc. | Modern Events Calendar | Medium | 5.3 | 2026-03-16 15:11:29 | Deep Dive |
| CVE-2026-25083 | Weseek Growi 安全漏洞 | GROWI, Inc. | GROWI | - | - | 2026-03-16 06:47:39 | Deep Dive |
| CVE-2016-20032 | ZKTeco ZKAccess Security System 5.3.1 Stored XSS | ZKTeco Inc. | ZKTeco ZKAccess Security System | High | 7.2 | 2026-03-15 13:35:37 | Deep Dive |
| CVE-2016-20031 | ZKTeco ZKBioSecurity 3.0 Local Authorization Bypass via visLogin.jsp | ZKTeco Inc. | ZKTeco ZKBioSecurity | Medium | 5.5 | 2026-03-15 13:35:35 | Deep Dive |
| CVE-2016-20030 | ZKTeco ZKBioSecurity 3.0 User Enumeration via authLoginAction | ZKTeco Inc. | ZKTeco ZKBioSecurity | Critical | 9.8 | 2026-03-15 13:35:32 | Deep Dive |