| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-14660 | DecoCMS Mesh Workspace Domain api.ts createTool access control | DecoCMS | Mesh | Medium | 5.6 | 2025-12-14 12:32:09 | Deep Dive |
| CVE-2025-11060 | Surrealdb: surrealdb is vulnerable to unauthorized data exposure via live query subscriptions | - | - | Medium | 5.7 | 2025-09-26 12:01:23 | Deep Dive |
| CVE-2025-59430 | Mesh Connect JS SDK Vulnerable to Cross Site Scripting via createLink.openLink | FrontFin | mesh-web-sdk | High | 8.2 | 2025-09-22 18:47:05 | Deep Dive |
| CVE-2025-8556 | Github.com/cloudflare/circl: circl-fourq: missing and wrong validation can lead to incorrect results | - | - | Low | 3.7 | 2025-08-06 08:48:18 | Deep Dive |
| CVE-2025-27097 | Cache variables with the operations when transforms exist on the root level even if variables change in the further requests with the same operation | ardatan | graphql-mesh | 中危 | - | 2025-02-20 20:15:54 | Deep Dive |
| CVE-2025-27098 | Unwanted access to the entire file system vulnerability due to a missing check in `staticFiles` HTTP handler in graphql-mesh | ardatan | graphql-mesh | Medium | 5.8 | 2025-02-20 20:13:01 | Deep Dive |
| CVE-2025-26793 | Hirsch Enterphone MESH 安全漏洞 | Hirsch | Enterphone MESH | 超危 | - | 2025-02-15 00:00:00 | Deep Dive |
| CVE-2024-11831 | Npm-serialize-javascript: cross-site scripting (xss) in serialize-javascript | - | - | Medium | 5.4 | 2025-02-10 15:27:47 | Deep Dive |
| CVE-2025-0754 | Envoyproxy: openshift service mesh 2.6.3 and 2.5.6 envoy header handling allows log injection and potential spoofing | - | - | Medium | 4.3 | 2025-01-28 09:37:12 | Deep Dive |
| CVE-2025-0752 | Envoyproxy: openshift service mesh envoy http header sanitization bypass leading to dos and unauthorized access | - | - | High | 7.1 | 2025-01-28 09:29:33 | Deep Dive |
| CVE-2024-47799 | SoftBank Mesh Wi-Fi router RP562B 安全漏洞 | SoftBank Corp. | Mesh Wi-Fi router RP562B | Low | 3.5 | 2024-11-12 05:37:16 | Deep Dive |
| CVE-2024-45827 | SoftBank Mesh Wi-Fi router RP562B 操作系统命令注入漏洞 | SoftBank Corp. | Mesh Wi-Fi router RP562B | High | 8.0 | 2024-11-12 05:30:30 | Deep Dive |
| CVE-2024-29075 | SoftBank Mesh Wi-Fi router RP562B 安全漏洞 | SoftBank Corp. | Mesh Wi-Fi router RP562B | Medium | 4.6 | 2024-11-12 05:30:11 | Deep Dive |
| CVE-2022-4001 | Motorola Q14 安全漏洞 | Motorola | Q14 Mesh Router Firmware | High | 7.3 | 2024-07-31 20:30:09 | Deep Dive |
| CVE-2022-4002 | Motorola Q14 安全漏洞 | Motorola | Q14 Mesh Router Firmware | High | 7.2 | 2024-07-31 20:29:59 | Deep Dive |
| CVE-2022-4003 | Motorola Q14 安全漏洞 | Motorola | Q14 Mesh Router Firmware | Low | 2.7 | 2024-07-31 20:29:49 | Deep Dive |
| CVE-2022-3962 | Kiali: error message spoofing in kiali ui | Red Hat | Red Hat OpenShift Service Mesh 2.3 for RHEL 8 | Medium | 4.3 | 2023-09-23 19:00:54 | Deep Dive |
| CVE-2023-3089 | Ocp & fips mode | - | openshift | High | 7.0 | 2023-07-05 12:21:03 | Deep Dive |
| CVE-2022-26529 | Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow | Realtek | Linux/Android Bluetooth Mesh SDK | Medium | 6.5 | 2022-08-30 04:25:27 | Deep Dive |
| CVE-2022-26528 | Realtek Linux/Android Bluetooth Mesh SDK - Buffer Overflow | Realtek | Linux/Android Bluetooth Mesh SDK | Medium | 6.5 | 2022-08-30 04:25:26 | Deep Dive |