| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-12747 | Rsync: race condition in rsync handling symbolic links | - | - | Medium | 5.6 | 2025-01-14 17:39:16 | Deep Dive |
| CVE-2024-12088 | Rsync: --safe-links option bypass leads to path traversal | - | - | Medium | 6.5 | 2025-01-14 17:38:35 | Deep Dive |
| CVE-2024-12086 | Rsync: rsync server leaks arbitrary client files | - | - | Medium | 6.1 | 2025-01-14 17:37:55 | Deep Dive |
| CVE-2024-12085 | Rsync: info leak via uninitialized stack contents | - | - | High | 7.5 | 2025-01-14 17:37:16 | Deep Dive |
| CVE-2024-45497 | Openshift-api: openshift-controller-manager/build: build process in openshift allows overwriting of node pull credentials | - | - | High | 7.6 | 2024-12-31 02:19:23 | Deep Dive |
| CVE-2024-11614 | Dpdk: denial of service from malicious guest on hypervisors using dpdk vhost library | - | - | 高危 | - | 2024-12-18 08:30:50 | Deep Dive |
| CVE-2024-12698 | Ose-olm-catalogd-container: incomplete fix for rapid reset (cve-2023-39325/cve-2023-44487) | - | - | Medium | 6.5 | 2024-12-18 05:07:21 | Deep Dive |
| CVE-2024-12401 | Cert-manager: potential dos when parsing specially crafted pem inputs | - | - | Medium | 4.4 | 2024-12-12 09:06:04 | Deep Dive |
| CVE-2024-8676 | Cri-o: checkpoint restore can be triggered from different namespaces | - | - | High | 7.4 | 2024-11-26 19:15:48 | Deep Dive |
| CVE-2024-6538 | Openshift-console: openshift console: server-side request forgery | - | - | Medium | 5.3 | 2024-11-25 06:15:13 | Deep Dive |
| CVE-2024-52616 | Avahi: avahi wide-area dns predictable transaction ids | - | - | Medium | 5.3 | 2024-11-21 20:41:12 | Deep Dive |
| CVE-2024-52615 | Avahi: avahi wide-area dns uses constant source port | - | - | Medium | 5.3 | 2024-11-21 20:34:01 | Deep Dive |
| CVE-2024-0793 | Kube-controller-manager: malformed hpa v1 manifest causes crash | - | - | High | 7.7 | 2024-11-17 10:45:50 | Deep Dive |
| CVE-2020-25720 | Samba: check attribute access rights for ldap adds of computers | - | - | High | 7.5 | 2024-11-17 10:17:08 | Deep Dive |
| CVE-2024-11217 | Oauth-server-container: oauth-server-container logs client secret in debug level | - | - | Medium | 4.9 | 2024-11-15 20:48:46 | Deep Dive |
| CVE-2024-10963 | Pam: improper hostname interpretation in pam_access leads to access control bypass | - | - | High | 7.4 | 2024-11-07 16:02:35 | Deep Dive |
| CVE-2024-50312 | Graphql: information disclosure via graphql introspection in openshift | Red Hat | Red Hat OpenShift Container Platform 4.16 | Medium | 5.3 | 2024-10-22 13:24:12 | Deep Dive |
| CVE-2024-50311 | Graphql: denial of service (dos) vulnerability via graphql batching | Red Hat | Red Hat OpenShift Container Platform 4.18 | Medium | 6.5 | 2024-10-22 13:24:04 | Deep Dive |
| CVE-2024-9676 | Podman: buildah: cri-o: symlink traversal vulnerability in the containers/storage library can cause denial of service (dos) | - | - | Medium | 6.5 | 2024-10-15 15:27:34 | Deep Dive |
| CVE-2024-9675 | Buildah: buildah allows arbitrary directory mount | - | - | High | 7.8 | 2024-10-09 14:32:12 | Deep Dive |