| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-6712 | MongoDB Server may be susceptible to DoS due to Accumulated Memory Allocation | MongoDB Inc | MongoDB Server | Medium | 6.5 | 2025-07-07 14:44:38 | Deep Dive |
| CVE-2025-6711 | Incomplete Redaction of Sensitive Information in MongoDB Server Logs | MongoDB Inc | MongoDB Server | Medium | 4.4 | 2025-07-07 14:42:17 | Deep Dive |
| CVE-2025-6942 | Delinea Secret Server 安全漏洞 | Delinea | Secret Server | Low | 3.8 | 2025-07-02 15:49:17 | Deep Dive |
| CVE-2025-6943 | Delinea Secret Server 安全漏洞 | Delinea | Secret Server | Low | 3.8 | 2025-07-02 15:45:02 | Deep Dive |
| CVE-2025-34072 | Anthropic Slack MCP Server Data Exfiltration via Link Unfurling | Anthropic | Slack MCP Server | - | - | 2025-07-02 13:46:32 | Deep Dive |
| CVE-2025-53106 | Graylog vulnerable to privilege escalation through API tokens | Graylog2 | graylog2-server | - | - | 2025-07-02 13:28:09 | Deep Dive |
| CVE-2025-6600 | GitHub Enterprise Server Information Disclosure Vulnerability Exposes Private Repository Names via Search API | GitHub | GitHub Enterprise Server | - | - | 2025-07-01 18:56:46 | Deep Dive |
| CVE-2025-53107 | @cyanheads/git-mcp-server vulnerable to command injection in several tools | cyanheads | git-mcp-server | High | 7.5 | 2025-07-01 17:55:31 | Deep Dive |
| CVE-2025-53100 | RestDB's Codehooks.io MCP Server Vulnerable to Command Injection | RestDB | codehooks-mcp-server | - | - | 2025-07-01 17:49:55 | Deep Dive |
| CVE-2025-34058 | Hikvision Streaming Media Management Server Default Credentials and Authenticated Arbitrary File Read | Hangzhou Hikvision System Technology | Streaming Media Management Server | - | - | 2025-07-01 14:48:40 | Deep Dive |
| CVE-2025-6920 | Ai-inference-server: authentication bypass via unprotected inference endpoint in api | Red Hat | Red Hat AI Inference Server | Medium | 5.3 | 2025-07-01 13:16:17 | Deep Dive |
| CVE-2025-1991 | IBM Informix Dynamic Server denial of service | IBM | Informix Dynamic Server | High | 7.5 | 2025-06-28 13:02:21 | Deep Dive |
| CVE-2025-53306 | WordPress WP Forum Server plugin <= 1.8.2 - SQL Injection Vulnerability | lucidcrew | WP Forum Server | High | 7.6 | 2025-06-27 13:21:32 | Deep Dive |
| CVE-2025-53305 | WordPress WP Forum Server plugin <= 1.8.2 - Cross Site Request Forgery (CSRF) Vulnerability | lucidcrew | WP Forum Server | High | 7.1 | 2025-06-27 13:21:31 | Deep Dive |
| CVE-2025-36034 | IBM InfoSphere DataStage Flow Designer information disclosure | IBM | InfoSphere Information Server | Medium | 5.3 | 2025-06-26 15:14:10 | Deep Dive |
| CVE-2025-6710 | Pre-authentication Denial of Service Stack Overflow Vulnerability in JSON Parsing via Excessive Recursion in MongoDB | MongoDB Inc | MongoDB Server | High | 7.5 | 2025-06-26 14:09:30 | Deep Dive |
| CVE-2025-6709 | Pre-Authentication Denial of Service Vulnerability in MongoDB Server's OIDC Authentication | MongoDB Inc | MongoDB Server | High | 7.5 | 2025-06-26 14:07:05 | Deep Dive |
| CVE-2025-6707 | Race condition in privilege cache invalidation cycle | MongoDB Inc | MongoDB Server | Medium | 4.2 | 2025-06-26 14:04:46 | Deep Dive |
| CVE-2025-6706 | Running certain aggregation operations with the SBE engine may lead to unexpected behavior on MongoDB Server | MongoDB Inc | MongoDB Server | Medium | 5.0 | 2025-06-26 14:00:23 | Deep Dive |
| CVE-2025-36038 | IBM WebSphere Application Server code execution | IBM | WebSphere Application Server | Critical | 9.0 | 2025-06-25 20:38:02 | Deep Dive |