CVE漏洞信息库
(90,883项)
  2,188个相关厂商或团体;   90,883条漏洞信息;  38,594条到OVAL定义的映射  
45,090条到CWE定义的映射;  90,883篇机器译文;  70,643条CNNVD映射  
  22,650条Exploit-DB数据  13,576条到Exploit-DB的映射    
  94,832条PacketStorm数据  24,154条到PacketStorm的映射  

最近发布的CVE条目CVE RSS Feed

CVE-2015-3254
2017-06-16 18:29:00
[原文]The client libraries in Apache Thrift before 0.9.3 might allow remote authenticated users to cause a denial of service (infini...
CVSS
4.0
CVE-2015-7732
2017-06-15 10:29:00
[原文]The Avira Mobile Security app before 1.5.11 for iOS sends sensitive login information in cleartext.
CVSS
N/A
CVE-2016-3704
2017-06-13 13:29:00
[原文]Pulp before 2.8.5 uses bash's $RANDOM in an unsafe way to generate passwords.
CVSS
5.0
CVE-2016-3696
2017-06-13 12:29:00
[原文]The pulp-qpid-ssl-cfg script in Pulp before 2.8.5 allows local users to obtain the CA key.
CVSS
2.1
CVE-2015-3220
2017-06-13 12:29:00
[原文]The tlslite library before 0.4.9 for Python allows remote attackers to trigger a denial of service (runtime exception and proc...
CVSS
N/A
CVE-2015-4596
2017-06-13 12:29:00
[原文]Lenovo Mouse Suite before 6.73 allows local users to run arbitrary code with administrator privileges.
CVSS
N/A
CVE-2016-4902
2017-06-09 12:29:00
[原文]Untrusted search path vulnerability in The Public Certification Service for Individuals "The JPKI user's software (for Windows...
CVSS
9.3
CVE-2016-4906
2017-06-09 12:29:00
[原文]Cross-site scripting vulnerability in Cybozu Garoon 3.0.0 to 4.2.2 allows remote attackers to inject arbitrary web script or H...
CVSS
4.3

最近修订的CVE条目CVE RSS Feed

CVE-2015-3913
2017-06-22 15:00:17
[原文]The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via ...
CVSS
7.8
CVE-2016-4902
2017-06-22 14:40:56
[原文]Untrusted search path vulnerability in The Public Certification Service for Individuals "The JPKI user's software (for Windows...
CVSS
9.3
CVE-2016-0726
2017-06-22 14:32:55
[原文]The Fedora Nagios package uses "nagiosadmin" as the default password for the "nagiosadmin" administrator account, which makes ...
CVSS
7.5
CVE-2016-3696
2017-06-22 14:17:17
[原文]The pulp-qpid-ssl-cfg script in Pulp before 2.8.5 allows local users to obtain the CA key.
CVSS
2.1
CVE-2016-3704
2017-06-22 14:17:09
[原文]Pulp before 2.8.5 uses bash's $RANDOM in an unsafe way to generate passwords.
CVSS
5.0

TOP50 厂商或团体

CVSS基础分值

CWE/SANS Top 25[?] 2011

OWASP TOP 10 2010[?]

OWASP TOP 10 2013 Candidate[?]

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站