| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2020-25636 | Red Hat Ansible 安全漏洞 | AWS Community | Community Collections | Medium | 6.6 | 2020-10-05 12:51:02 | Deep Dive |
| CVE-2020-9416 | TIBCO Spotfire Stored Cross Site Scripting Vulnerability | TIBCO Software Inc. | TIBCO Spotfire Analyst | High | 8.2 | 2020-09-15 18:55:12 | Deep Dive |
| CVE-2020-9415 | TIBCO Data Virtualization | TIBCO Software Inc. | TIBCO Data Virtualization | Medium | 5.3 | 2020-08-18 18:50:12 | Deep Dive |
| CVE-2020-8911 | CBC padding oracle in AWS S3 Crypto SDK for GoLang | Google LLC | AWS S3 Crypto SDK for GoLang | Medium | 5.6 | 2020-08-11 19:20:14 | Deep Dive |
| CVE-2020-8912 | In-band key negotiation issue in AWS S3 Crypto SDK for GoLang | Google LLC | AWS S3 Crypto SDK for GoLang | Low | 2.5 | 2020-08-11 19:20:14 | Deep Dive |
| CVE-2020-9409 | TIBCO JasperReports Server Fails To Enforce Access Restrictions | TIBCO Software Inc. | TIBCO JasperReports Server | Critical | 9.8 | 2020-05-20 12:25:13 | Deep Dive |
| CVE-2020-9410 | TIBCO JasperReports Library | TIBCO Software Inc. | TIBCO JasperReports Library | High | 7.3 | 2020-05-20 12:25:13 | Deep Dive |
| CVE-2020-12142 | IPSec UDP key material can be retrieved from EdgeConnect by a user with admin credentials | Silver Peak Systems, Inc. | 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator, 3. EdgeConnect in AWS, Azure, GCP | Medium | 4.8 | 2020-05-05 19:54:07 | Deep Dive |
| CVE-2020-12144 | The certificate used to identify the Silver Peak Cloud Portal to EdgeConnect devices is not validated | Silver Peak Systems, Inc. | 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator 3. EdgeConnect in AWS, Azure, GCP | Medium | 6.0 | 2020-05-05 19:54:00 | Deep Dive |
| CVE-2020-12143 | The certificate used to identify Orchestrator to EdgeConnect devices is not validated | Silver Peak Systems, Inc. | 1. Unity EdgeConnect, NX, VX 2. Unity Orchestrator, 3. EdgeConnect in AWS, Azure, GCP | Medium | 6.0 | 2020-05-05 19:53:56 | Deep Dive |
| CVE-2020-2180 | CloudBees Jenkins AWS SAM Plugin 代码问题漏洞 | Jenkins project | Jenkins AWS SAM Plugin | 高危 | - | 2020-04-16 13:35:17 | Deep Dive |
| CVE-2020-2166 | CloudBees Jenkins Pipeline:AWS Steps Plugin 输入验证错误漏洞 | Jenkins project | Jenkins Pipeline: AWS Steps Plugin | 高危 | - | 2020-03-25 16:05:37 | Deep Dive |
| CVE-2020-9408 | TIBCO Spotfire Server Script Trust Problem Exposes Remote Code Execution Vulnerability | TIBCO Software Inc. | TIBCO Spotfire Analytics Platform for AWS Marketplace | 高危 | - | 2020-03-11 19:55:13 | Deep Dive |
| CVE-2019-10777 | aws-lambda 操作系统命令注入漏洞 | - | aws-lambda | 超危 | - | 2020-01-08 16:13:33 | Deep Dive |
| CVE-2019-17337 | TIBCO Spotfire Server Library Vulnerable to Reflected Cross-Site Scripting | TIBCO Software Inc. | TIBCO Spotfire Analytics Platform for AWS Marketplace | 中危 | - | 2019-12-17 20:55:19 | Deep Dive |
| CVE-2019-17335 | TIBCO Spotfire Server Exposes User-Specific Cached Data To Others Users | TIBCO Software Inc. | TIBCO Spotfire Analytics Platform for AWS Marketplace | 中危 | - | 2019-12-17 20:55:18 | Deep Dive |
| CVE-2019-17336 | TIBCO Spotfire Web Player Potentially Exposes Credentials For Shared Data Sources | TIBCO Software Inc. | TIBCO Spotfire Analytics Platform for AWS Marketplace | 中危 | - | 2019-12-17 20:55:18 | Deep Dive |
| CVE-2019-17334 | TIBCO Spotfire Analyst and Desktop Remote Code Execution Via Shared Files | TIBCO Software Inc. | TIBCO Spotfire Analyst | 高危 | - | 2019-12-17 20:55:17 | Deep Dive |
| CVE-2019-11211 | TIBCO Enterprise Runtime for R Server Running On Linux With Containerized TERR Service Vulnerable To Remote Code Execution | TIBCO Software Inc. | TIBCO Enterprise Runtime for R - Server Edition | 超危 | - | 2019-09-18 22:21:05 | Deep Dive |
| CVE-2019-11210 | TIBCO Enterprise Runtime for R Server Exposes Remote Code Execution | TIBCO Software Inc. | TIBCO Enterprise Runtime for R - Server Edition | 超危 | - | 2019-09-18 22:20:50 | Deep Dive |