快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 360566
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-2724 |
The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripti
|
HIGH | 7.2 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-2339 |
Missing Authentication for Critical Function vulnerability in TUBITAK BILGEM Software Technologies R
|
HIGH | 7.5 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-2273 |
CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exist that could cau
|
UNKNOWN | N/A | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-27661 |
A vulnerability has been identified in SINEC Security Monitor (All versions < V4.9.0). The affected
|
MEDIUM | 4.3 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26738 |
Buffer Overflow vulnerability in Uderzo Software SpaceSniffer v.2.0.5.18 allows a remote attacker to
|
HIGH | 7.8 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26148 |
External initialization of trusted variables or data stores in Azure Entra ID allows an unauthorized
|
HIGH | 8.1 | 2026-03-10 |
microsoft azure_ad_ssh_login_extension_for_linux
|
NVD | |
| CVE-2026-26144 |
Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Of
|
HIGH | 7.5 | 2026-03-10 |
microsoft 365_apps
|
NVD | |
| CVE-2026-26141 |
Improper authentication in Azure Arc allows an authorized attacker to elevate privileges locally.
|
HIGH | 7.8 | 2026-03-10 |
microsoft azure_automation_hybrid_worker_windows_extension
|
NVD | |
| CVE-2026-26134 |
Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileg
|
HIGH | 7.8 | 2026-03-10 |
microsoft office
|
NVD | |
| CVE-2026-26132 |
Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally.
|
HIGH | 7.8 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26131 |
Incorrect default permissions in .NET allows an authorized attacker to elevate privileges locally.
|
HIGH | 7.8 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26130 |
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker
|
HIGH | 7.5 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26128 |
Improper authentication in Windows SMB Server allows an authorized attacker to elevate privileges lo
|
HIGH | 7.8 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26127 |
Out-of-bounds read in .NET allows an unauthorized attacker to deny service over a network.
|
HIGH | 7.5 | 2026-03-10 |
未知
|
NVD | |
| CVE-2026-26121 |
Server-side request forgery (ssrf) in Azure IoT Explorer allows an unauthorized attacker to perform
|
HIGH | 7.5 | 2026-03-10 |
microsoft azure_iot_explorer
|
NVD | |
| CVE-2026-26118 |
Server-side request forgery (ssrf) in Azure MCP Server allows an authorized attacker to elevate priv
|
HIGH | 8.8 | 2026-03-10 |
microsoft azure_mcp_server
microsoft azure_mcp_server
|
NVD | |
| CVE-2026-26117 |
Authentication bypass using an alternate path or channel in Azure Windows Virtual Machine Agent allo
|
HIGH | 7.8 | 2026-03-10 |
microsoft arc_enabled_servers_azure_connected_machine_agent
|
NVD | |
| CVE-2026-26116 |
Improper neutralization of special elements used in an sql command ('sql injection') in SQL Server a
|
HIGH | 8.8 | 2026-03-10 |
microsoft sql_server_2016
microsoft sql_server_2017
+3个
|
NVD | |
| CVE-2026-26115 |
Improper validation of specified type of input in SQL Server allows an authorized attacker to elevat
|
HIGH | 8.8 | 2026-03-10 |
microsoft sql_server_2016
microsoft sql_server_2017
+3个
|
NVD | |
| CVE-2026-26114 |
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to ex
|
HIGH | 8.8 | 2026-03-10 |
microsoft sharepoint_server
microsoft sharepoint_server
|
NVD |