| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-40575 | OAuth2 Proxy has an Authentication Bypass via X-Forwarded-Uri Header Spoofing | oauth2-proxy | oauth2-proxy | Critical | 9.1 | 2026-04-21 23:20:30 | Deep Dive |
| CVE-2026-41059 | OAuth2 Proxy has an Authentication Bypass via Fragment Confusion in skip_auth_routes and skip_auth_regex | oauth2-proxy | oauth2-proxy | High | 8.2 | 2026-04-21 23:17:47 | Deep Dive |
| CVE-2026-40574 | OAuth2 Proxy has an Authorization Bypass in Email Domain Validation via Malformed Multi-@ Email Claims | oauth2-proxy | oauth2-proxy | Medium | 6.8 | 2026-04-21 16:32:35 | Deep Dive |
| CVE-2026-33805 | @fastify/reply-from vulnerable to connection header abuse enabling stripping of proxy-added headers | @fastify/reply-from | @fastify/reply-from | 中危 | - | 2026-04-15 10:13:25 | Deep Dive |
| CVE-2026-34457 | OAuth2 Proxy: Health Check User-Agent Matching Bypasses Authentication in auth_request Mode | oauth2-proxy | oauth2-proxy | Critical | 9.1 | 2026-04-14 22:14:39 | Deep Dive |
| CVE-2026-34454 | OAuth2 Proxy: Session cookie not cleared when rendering sign-in page | oauth2-proxy | oauth2-proxy | Low | 3.5 | 2026-04-14 22:10:38 | Deep Dive |
| CVE-2026-34080 | xdg-dbus-proxy has an eavesdrop filter bypass allowing message interception | flatpak | xdg-dbus-proxy | - | - | 2026-04-07 20:57:58 | Deep Dive |
| CVE-2025-41357 | Reflected Cross-Site Scripting on Anon Proxy Server | Anon Proxy Server | Anon Proxy Server | - | - | 2026-03-31 08:58:09 | Deep Dive |
| CVE-2025-41356 | Reflected Cross-Site Scripting in Anon Proxy Server | Anon Proxy Server | Anon Proxy Server | - | - | 2026-03-31 08:53:50 | Deep Dive |
| CVE-2025-41355 | Reflected Cross-Site Scripting on Anon Proxy Server | Anon Proxy Server | Anon Proxy Server | - | - | 2026-03-31 08:48:29 | Deep Dive |
| CVE-2026-5121 | Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing | Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support | High | 7.5 | 2026-03-30 07:47:29 | Deep Dive |
| CVE-2026-4424 | Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-03-19 13:50:27 | Deep Dive |
| CVE-2026-4111 | Libarchive: infinite loop denial of service in rar5 decompression via archive_read_data() in libarchive | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-03-13 11:45:21 | Deep Dive |
| CVE-2025-14831 | Gnutls: gnutls: denial of service via excessive resource consumption during certificate verification | Red Hat | Red Hat Enterprise Linux 10 | Medium | 5.3 | 2026-02-09 14:51:32 | Deep Dive |
| CVE-2025-9820 | Gnutls: stack-based buffer overflow in gnutls_pkcs11_token_init() function | Red Hat | Red Hat Enterprise Linux 10 | Medium | 4.0 | 2026-01-26 19:58:33 | Deep Dive |
| CVE-2026-21962 | Oracle Fusion Middleware 安全漏洞 | Oracle Corporation | Oracle HTTP Server, Oracle Weblogic Server Proxy Plug-in | Critical | 10.0 | 2026-01-20 21:56:33 | Deep Dive |
| CVE-2025-69353 | WordPress Proxy & VPN Blocker plugin <= 3.5.3 - Broken Access Control vulnerability | Proxy & VPN Blocker | Proxy & VPN Blocker | Medium | 4.3 | 2026-01-06 16:36:41 | Deep Dive |
| CVE-2025-62126 | WordPress Varnish/Nginx Proxy Caching plugin <= 1.8.3 - Sensitive Data Exposure vulnerability | Razvan Stanga | Varnish/Nginx Proxy Caching | Medium | 5.3 | 2025-12-31 15:36:42 | Deep Dive |
| CVE-2025-53710 | Network boundaries not respected in certain Foundry namespaces. | Palantir | com.palantir.compute:compute-service | High | 7.5 | 2025-12-18 21:05:52 | Deep Dive |
| CVE-2025-67485 | HTTP/HTTPS Traffic Interception Bypass in mad-proxy | machphy | mad-proxy | Medium | 5.3 | 2025-12-10 00:08:39 | Deep Dive |