| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-50633 | Apache CXF: JNDI Injection vulnerability in DispatchMDBMessageListenerImpl | Apache Software Foundation | Apache CXF | 高危 | - | 2026-06-12 09:02:03 | Deep Dive |
| CVE-2026-50632 | Apache CXF: JNDI Injection Vulnerability in JMSConfigFactory | Apache Software Foundation | Apache CXF | 高危 | - | 2026-06-12 09:00:49 | Deep Dive |
| CVE-2026-50631 | Apache CXF: OAuth2: TOCTOU Race Condition in Refresh Token Processing | Apache Software Foundation | Apache CXF | 高危 | - | 2026-06-12 08:59:40 | Deep Dive |
| CVE-2026-50630 | Apache CXF: OAuth2: HTTP Response Splitting via WWW-Authenticate Realm Injection | Apache Software Foundation | Apache CXF | 中危 | - | 2026-06-12 08:58:27 | Deep Dive |
| CVE-2026-50629 | Apache CXF: OAuth2: Log Injection via Unsanitized Client Identifier | Apache Software Foundation | Apache CXF | 中危 | - | 2026-06-12 08:57:23 | Deep Dive |
| CVE-2026-50628 | Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control | Apache Software Foundation | Apache CXF | 超危 | - | 2026-06-12 08:56:29 | Deep Dive |
| CVE-2026-50627 | Apache CXF: OAuth2: Missing JWT Audience and Issuer Validation in Access Token Validator | Apache Software Foundation | Apache CXF | 超危 | - | 2026-06-12 08:55:42 | Deep Dive |
| CVE-2026-49875 | Apache CXF: XML External Entity (XXE) Injection in W3CMultiSchemaFactory and EndpointReferenceUtils | Apache Software Foundation | Apache CXF | 超危 | - | 2026-06-12 08:54:50 | Deep Dive |
| CVE-2026-50623 | Apache CXF: Authentication Bypass in OAuth2 TokenIntrospectionService | Apache Software Foundation | Apache CXF | 中危 | - | 2026-06-12 08:52:06 | Deep Dive |
| CVE-2026-12058 | Vivo PcSuite 输入验证错误漏洞 | vivo | PcSuite | 中危 | - | 2026-06-12 08:02:03 | Deep Dive |
| CVE-2026-11535 | vivo PcSuite 授权问题漏洞 | vivo | PcSuite | 超危 | - | 2026-06-12 08:00:50 | Deep Dive |
| CVE-2026-12060 | Hepta Platforms|Heptabase - Exposed Dangerous | Hepta Platforms | Heptabase | Medium | 6.5 | 2026-06-12 06:43:35 | Deep Dive |
| CVE-2026-12059 | Cellopoint|CelloOS - Improper Access Control | Cellopoint | CelloOS | High | 8.8 | 2026-06-12 06:30:55 | Deep Dive |
| CVE-2026-9269 | Secure Copy Content Protection and Content Locking < 5.1.5 - Admin+ Stored XSS via ays_sccp_sub_icon_image Parameter | Unknown | Secure Copy Content Protection and Content Locking | 低危 | - | 2026-06-12 06:00:02 | Deep Dive |
| CVE-2026-9271 | KeepInMind - Dashboard Notes < 0.8.4.2 - Contributor+ Stored XSS | Unknown | KeepInMind Dashboard Notes | 中危 | - | 2026-06-12 06:00:02 | Deep Dive |
| CVE-2026-44892🧪 | Netty has a Vulnerable Default Configuration Which Leads to Denial of Service via Unbounded HTTP/3 Header Size | netty | netty | High | 7.5 | 2026-06-12 05:04:58 | Deep Dive |
| CVE-2026-45169 | Idira Privileged Access Manager (PAM) Self-Hosted Vault: Denial of Service due to Unexpected Input Processing | CyberArk Software, a Palo Alto Networks Company | PAM SH Vault | 高危 | - | 2026-06-12 04:32:03 | Deep Dive |
| CVE-2026-47368 | Ubiquiti Inc UniFi OS Server 路径遍历漏洞 | Ubiquiti Inc | UniFi OS Server | High | 8.6 | 2026-06-12 02:27:44 | Deep Dive |
| CVE-2026-47369 | Ubiquiti UniFi OS Server 输入验证错误漏洞 | Ubiquiti Inc | UniFi OS Server | Critical | 9.9 | 2026-06-12 02:27:44 | Deep Dive |
| CVE-2026-47370 | Ubiquiti Inc UniFi OS Server 输入验证错误漏洞 | Ubiquiti Inc | UniFi OS Server | Critical | 9.9 | 2026-06-12 02:27:44 | Deep Dive |