快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355219
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-8110 |
File overwrite in file update API in Gogs
|
HIGH | 8.7 | 2025-12-10 |
Gogs Gogs
gogs gogs
|
CVE NVD | |
| CVE-2024-2105 |
JBL: Improper validation of ICM field in connection requests
|
MEDIUM | 6.5 | 2025-12-10 |
JBL Flip 5
JBL Flip 6
+5个
|
CVE NVD | |
| CVE-2024-2104 |
JBL: Improper BLE security configurations and lack of authentication on the device's GATT server
|
HIGH | 8.8 | 2025-12-10 |
JBL LIVE PRO 2 TWS
JBL TUNE FLEX
|
CVE NVD | |
| CVE-2025-13184 |
Unauthenticated Telnet enablement via cstecgi.cgi (auth bypass) leading to unauthenticated root login with a blank password
|
CRITICAL | 9.8 | 2025-12-10 |
Toto Link X5000R's (AX1800 router)
totolink x5000r_firmware
|
CVE NVD | |
| CVE-2025-13953 |
GTT Sistema de Información Tributario 安全漏洞
|
CRITICAL | 9.3 | 2025-12-10 |
GTT Sistema de Información Tributario
|
CVE NVD +1 | |
| CVE-2025-41358 |
i2A CronosWeb 安全漏洞
|
HIGH | 8.3 | 2025-12-10 |
CronosWeb i2A CronosWeb
|
CVE NVD +1 | |
| CVE-2025-41732 |
Stack-based buffer overflow via unsafe sscanf in check_cookie()
|
CRITICAL | 9.8 | 2025-12-10 |
WAGO Indsutrial-Managed-Switches
wago 0852-1328_firmware
+1个
|
CVE NVD | |
| CVE-2025-41730 |
Stack-based buffer overflow via unsafe sscanf in check_account()
|
CRITICAL | 9.8 | 2025-12-10 |
WAGO Indsutrial-Managed-Switches
wago 0852-1328_firmware
+1个
|
CVE NVD | |
| CVE-2025-7073 |
Bitdefender Total Security 后置链接漏洞
|
HIGH | 8.8 | 2025-12-10 |
Bitdefender Total Security
Bitdefender Internet Security
+6个
|
CVE NVD +1 | |
| CVE-2025-66675 |
Apache Struts: File leak in multipart request processing causes disk exhaustion (DoS) - version ranges fixed
|
HIGH | 8.2 | 2025-12-10 |
Apache Software Foundation Apache Struts
apache struts
|
CVE NVD | |
| CVE-2025-14390 |
Video Merchant <= 5.0.4 - Cross-Site Request Forgery to Arbitrary File Upload
|
HIGH | 8.8 | 2025-12-10 |
videomerchant Video Merchant
|
CVE NVD | |
| CVE-2025-66004 |
Local privilege escalation in usbmuxd from arbitrary local user to usbmux
|
MEDIUM | 5.1 | 2025-12-10 |
libimobiledevice usbmuxd
|
CVE NVD | |
| CVE-2025-14082 |
Keycloak-services: keycloak admin rest api: improper access control leads to sensitive role metadata information disclosure
|
LOW | 2.7 | 2025-12-10 |
Red Hat Red Hat Build of Keycloak
|
CVE NVD | |
| CVE-2025-1161 |
Improper Authorization in Nomysoft Informatics' Nomysem
|
HIGH | 7.1 | 2025-12-10 |
NomySoft Information Technology Training and Consulting Inc. Nomysem
|
CVE NVD | |
| CVE-2025-14087 |
Glib: glib: buffer underflow in gvariant parser leads to heap corruption
|
MEDIUM | 5.6 | 2025-12-10 |
GNOME glib
Red Hat Red Hat Enterprise Linux 10
+9个
|
CVE NVD | |
| CVE-2025-9315 |
Moxa MXsecurity Series 安全漏洞
|
MEDIUM | 6.3 | 2025-12-10 |
Moxa MXsecurity Series
|
CVE NVD +1 | |
| CVE-2025-13955 |
Predictable Default Wi-Fi Password in EZCast Pro II Dongle
|
CRITICAL | 9.3 | 2025-12-10 |
EZCast EZCast Pro II
|
CVE NVD | |
| CVE-2025-13954 |
Ezcast EZCast Pro II 安全漏洞
|
CRITICAL | 9.3 | 2025-12-10 |
EZCast EZCast Pro II
|
CVE NVD +1 | |
| CVE-2025-12952 |
Google Cloud Dialogflow CX 安全漏洞
|
HIGH | 8.7 | 2025-12-10 |
Google Cloud Dialogflow CX
|
CVE NVD +1 | |
| CVE-2025-9571 |
Google Cloud Data Fusion 安全漏洞
|
HIGH | 8.7 | 2025-12-10 |
Google Cloud Cloud Data Fusion
|
CVE NVD +1 |