| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-3318 | SailPoint Identity Security Cloud Connector File Path Traversal Vulnerability | SailPoint | Identity Security Cloud | Medium | 4.2 | 2024-05-15 15:49:36 | Deep Dive |
| CVE-2024-3319 | Security implication in SailPoint Identity Security Cloud IdentityProfile API Endpoints | SailPoint | Identity Security Cloud | Critical | 9.1 | 2024-05-15 15:44:27 | Deep Dive |
| CVE-2023-7240 | Broken Access Control leading to SSRF in NetIQ Identity Console | OpenText | NetIQ Identity Console | Medium | 5.8 | 2024-05-07 13:11:23 | Deep Dive |
| CVE-2023-40148 | PingFederate Server Side Request Forgery vulnerability | Ping Identity | PingFederate | Medium | 6.5 | 2024-04-10 00:03:32 | Deep Dive |
| CVE-2024-29992 | Azure Identity Library for .NET Information Disclosure Vulnerability | Microsoft | Azure Identity Library for .NET | Medium | 5.5 | 2024-04-09 17:01:28 | Deep Dive |
| CVE-2024-20368 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | Medium | 6.5 | 2024-04-03 16:23:02 | Deep Dive |
| CVE-2024-20332 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | Medium | 5.5 | 2024-04-03 16:22:02 | Deep Dive |
| CVE-2024-1683 | DLL Injection in Tenable Identity Exposure Secure Relay | Tenable | Tenable Identity Exposure Secure Relay | High | 7.3 | 2024-02-23 00:02:52 | Deep Dive |
| CVE-2023-40545 | PingFederate OAuth client_secret_jwt Authentication Bypass | Ping Identity | PingFederate | High | 8.8 | 2024-02-06 17:27:42 | Deep Dive |
| CVE-2023-36496 | Delegated Admin Virtual Attribute Provider Privilege Escalation | Ping Identity | PingDirectory | High | 7.7 | 2024-02-01 23:00:04 | Deep Dive |
| CVE-2024-20251 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | Medium | 4.8 | 2024-01-17 16:55:07 | Deep Dive |
| CVE-2024-21319 | Microsoft Identity Denial of service vulnerability | Microsoft | .NET 6.0 | Medium | 6.8 | 2024-01-09 18:59:01 | Deep Dive |
| CVE-2023-6911 | 部分WSO2产品 跨站脚本漏洞 | WSO2 | WSO2 API Manager | Medium | 4.8 | 2023-12-18 08:32:59 | Deep Dive |
| CVE-2023-6838 | WSO2 API Manager 跨站脚本漏洞 | WSO2 | WSO2 API Manager | Medium | 6.1 | 2023-12-15 09:50:52 | Deep Dive |
| CVE-2023-6837 | Incorrect Authorization in Multiple WSO2 Products via Federated Authentication with JIT Provisioning Leading to User Impersonation | WSO2 | WSO2 API Manager | High | 8.5 | 2023-12-15 09:41:23 | Deep Dive |
| CVE-2023-6836 | WSO2 API Manager 安全漏洞 | WSO2 | WSO2 API Manager | Medium | 4.6 | 2023-12-15 09:26:01 | Deep Dive |
| CVE-2023-20272 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | Medium | 6.7 | 2023-11-21 18:49:17 | Deep Dive |
| CVE-2023-20208 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | Medium | 4.8 | 2023-11-21 18:48:44 | Deep Dive |
| CVE-2023-20175 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | High | 8.8 | 2023-11-01 17:13:19 | Deep Dive |
| CVE-2023-20170 | Cisco Identity Services Engine 安全漏洞 | Cisco | Cisco Identity Services Engine Software | Medium | 6.0 | 2023-11-01 17:12:41 | Deep Dive |