CVE中文漏洞信息库 - SCAP中文社区

CVE漏洞信息库 (107,521项)		2,188个相关厂商或团体; 107,521条漏洞信息; 38,594条到OVAL定义的映射
		51,103条到CWE定义的映射; 90,883篇机器译文; 70,643条CNNVD映射
		22,650条Exploit-DB数据 13,576条到Exploit-DB的映射
		95,992条PacketStorm数据 24,831条到PacketStorm的映射

最近发布的CVE条目

CVE-2017-6266
2017-09-22 13:29:00

[原文]NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow...

CVSS

N/A

CVE-2017-6267
2017-09-22 13:29:00

[原文]NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of inter...

CVSS

N/A

CVE-2017-6268
2017-09-22 13:29:00

[原文]NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape w...

CVSS

N/A

CVE-2017-6269
2017-09-22 13:29:00

[原文]NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape w...

CVSS

N/A

CVE-2017-6270
2017-09-22 13:29:00

[原文]NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where ...

CVSS

N/A

CVE-2017-6271
2017-09-22 13:29:00

[原文]NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where ...

CVSS

N/A

CVE-2017-6272
2017-09-22 13:29:00

[原文]NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where a value passed from a user to the dr...

CVSS

N/A

CVE-2017-6277
2017-09-22 13:29:00

[原文]NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape w...

CVSS

N/A

最近修订的CVE条目

CVE-2017-9393
2017-09-23 21:29:00

[原文]CA Identity Manager r12.6 to r12.6 SP8, 14.0, and 14.1 allows remote attackers to potentially identify passwords of locked acc...

CVSS

N/A

CVE-2017-8755
2017-09-23 21:29:00

[原文]Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to execute arbitrary code ...

CVSS

7.6

CVE-2017-8729
2017-09-23 21:29:00

[原文]Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, d...

CVSS

7.6

CVE-2017-8740
2017-09-23 21:29:00

[原文]Microsoft Edge in Microsoft Windows 10 1703 allows an attacker to execute arbitrary code in the context of the current user, d...

CVSS

7.6

CVE-2017-8007
2017-09-23 21:29:00

[原文]In EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs, the Webservice Gateway is affec...

CVSS

N/A

TOP50 厂商或团体

CVSS基础分值

CWE/SANS Top 25^[?] 2011

OWASP TOP 10 2010^[?]

OWASP TOP 10 2013 Candidate^[?]

[1] 注入 [CWE-77,CWE-89,CWE-564]
[2] 错误的认证和会话管理 [CWE-287]
[3] 跨站脚本（XSS） [CWE-79]
[4] 不安全的直接对象引用 [CWE-639,CWE-22]
[5] 安全配置缺陷 [CWE-2]
[6] 敏感数据暴露 [CWE-310,CWE-312,CWE-319,CWE-326]
[7] 缺少功能级别访问控制 [CWE-285]
[8] 跨站请求伪造（CSRF） [CWE-352]
[9] 使用已知包含漏洞的组件 [-]
[10] 未验证的重定向和传递 [CWE-601]

CVE数据库

检索CVE

关于CVE

CVE资源

Wise Words

Follow yourself.

-- Steve Jobs

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息，请查阅[关于本站]。

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标，它们的官方数据源均保存在MITRE公司的相关网站。

CVE 通用漏洞与披露Common Vulnerabilities and Exposures

最近发布的CVE条目

最近修订的CVE条目

TOP50 厂商或团体

CVSS基础分值

CWE/SANS Top 25[?] 2011

OWASP TOP 10 2010[?]

OWASP TOP 10 2013 Candidate[?]

CVE数据库

检索CVE

关于CVE

CVE资源

Wise Words

关于SCAP中文社区

版权声明

CWE/SANS Top 25^[?] 2011

OWASP TOP 10 2010^[?]

OWASP TOP 10 2013 Candidate^[?]