快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355219
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-65294 |
Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 conta...
|
CRITICAL | 9.8 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65295 |
Multiple vulnerabilities in Aqara Hub firmware update process in the Camera Hub G3 4.1.9_0027, Hub M...
|
HIGH | 8.1 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65296 |
NULL-pointer dereference vulnerabilities in Aqara Hub M2 4.3.6_0027, Hub M3 4.3.6_0025, and Camera H...
|
MEDIUM | 6.5 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65297 |
Aqara Hub devices including Camera Hub G3 4.1.9_0027, Hub M2 4.3.6_0027, and Hub M3 4.3.6_0025 autom...
|
HIGH | 7.5 | 2025-12-10 |
aqara hub_m2_firmware
aqara hub_m3_firmware
+1个
|
CVE NVD | |
| CVE-2025-65512 |
A Server-Side Request Forgery (SSRF) vulnerability was discovered in the webpage-to-markdown convers...
|
HIGH | 7.5 | 2025-12-10 |
zcaceres markdownify_mcp_server
|
CVE NVD | |
| CVE-2025-65602 |
A template injection vulnerability in the /vip/v1/file/save component of ChanCMS v3.3.4 allows attac...
|
CRITICAL | 9.8 | 2025-12-10 |
chancms chancms
|
CVE NVD | |
| CVE-2025-65754 |
algernon 安全漏洞
|
MEDIUM | 6.1 | 2025-12-10 |
algernon_project algernon
|
CVE NVD +1 | |
| CVE-2025-65792 |
DataGear 安全漏洞
|
CRITICAL | 9.1 | 2025-12-10 |
datagear datagear
|
CVE NVD +1 | |
| CVE-2025-65803 |
An integer overflow in the psdParser::ReadImageData function of FreeImage v3.18.0 and before allows ...
|
MEDIUM | 6.5 | 2025-12-10 |
freeimage_project freeimage
|
CVE NVD | |
| CVE-2025-65807 |
An issue in sd command v1.0.0 and before allows attackers to escalate privileges to root via a craft...
|
HIGH | 8.4 | 2025-12-10 |
chmln sd
|
CVE NVD | |
| CVE-2025-65814 |
A lack of security checks in the file import process of RHOPHI Analytics LLP Office App-Edit Word v6...
|
MEDIUM | 6.5 | 2025-12-10 |
a1apps office_app-edit_word\,_pdf_file
|
CVE NVD | |
| CVE-2025-65815 |
AB Document Reader: PDF, DOC, PPT 安全漏洞
|
MEDIUM | 6.5 | 2025-12-10 |
uniteddevelopers document_reader\
|
CVE NVD +1 | |
| CVE-2025-65820 |
An issue was discovered in Meatmeet Android Mobile Application 1.1.2.0. An exported activity can be ...
|
CRITICAL | 9.8 | 2025-12-10 |
meatmeet meatmeet
|
CVE NVD | |
| CVE-2025-65821 |
As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary ca...
|
HIGH | 7.5 | 2025-12-10 |
meatmeet meatmeet_pro_wifi_\&_bluetooth_meat_thermometer_firmware
|
CVE NVD | |
| CVE-2025-65822 |
The ESP32 system on a chip (SoC) that powers the Meatmeet Pro was found to have JTAG enabled. By lea...
|
MEDIUM | 6.8 | 2025-12-10 |
meatmeet meatmeet_pro_wifi_\&_bluetooth_meat_thermometer_firmware
|
CVE NVD | |
| CVE-2025-65823 |
The Meatmeet Pro was found to be shipped with hardcoded Wi-Fi credentials in the firmware, for the t...
|
CRITICAL | 9.8 | 2025-12-10 |
meatmeet meatmeet_pro_wifi_\&_bluetooth_meat_thermometer_firmware
|
CVE NVD | |
| CVE-2025-65824 |
An unauthenticated attacker within proximity of the Meatmeet device can perform an unauthorized Over...
|
HIGH | 8.8 | 2025-12-10 |
meatmeet meatmeet_pro_wifi_\&_bluetooth_meat_thermometer_firmware
|
CVE NVD | |
| CVE-2025-65825 |
The firmware on the basestation of the Meatmeet is not encrypted. An adversary with physical access ...
|
MEDIUM | 4.6 | 2025-12-10 |
meatmeet meatmeet_pro_wifi_\&_bluetooth_meat_thermometer_firmware
|
CVE NVD | |
| CVE-2025-65826 |
The mobile application was found to contain stored credentials for the network it was developed on. ...
|
CRITICAL | 9.8 | 2025-12-10 |
meatmeet meatmeet
|
CVE NVD | |
| CVE-2025-65827 |
The mobile application is configured to allow clear text traffic to all domains and communicates wit...
|
CRITICAL | 9.1 | 2025-12-10 |
meatmeet meatmeet
|
CVE NVD |