快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 355518
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-32898 |
The KDE Connect verification-code protocol before 2025-04-18 uses only 8 characters and therefore al...
|
MEDIUM | 4.7 | 2025-12-05 |
KDE KDE Connect verification-code protocol
|
CVE NVD | |
| CVE-2025-32899 |
In KDE Connect before 1.33.0 on Android, a packet can be crafted that causes two paired devices to u...
|
MEDIUM | 4.3 | 2025-12-05 |
KDE KDEConnect
|
CVE NVD | |
| CVE-2025-32900 |
In the KDE Connect information-exchange protocol before 2025-04-18, a packet can be crafted to tempo...
|
MEDIUM | 4.3 | 2025-12-05 |
KDE KDE Connect information-exchange protocol
|
CVE NVD | |
| CVE-2025-32901 |
In KDE Connect before 1.33.0 on Android, malicious device IDs (sent via broadcast UDP) could cause a...
|
MEDIUM | 4.3 | 2025-12-05 |
KDE KDEConnect
|
CVE NVD | |
| CVE-2025-64052 |
Fanvil x210 安全漏洞
|
MEDIUM | 5.1 | 2025-12-05 |
fanvil x210_firmware
|
CVE NVD +1 | |
| CVE-2025-64053 |
A Buffer overflow vulnerability on Fanvil x210 2.12.20 devices allows attackers to cause a denial of...
|
HIGH | 7.5 | 2025-12-05 |
fanvil x210_firmware
|
CVE NVD | |
| CVE-2025-64054 |
A reflected Cross Site Scripting (XSS) vulnerability on Fanvil x210 2.12.20 devices allows attackers...
|
CRITICAL | 9.6 | 2025-12-05 |
fanvil x210_firmware
|
CVE NVD | |
| CVE-2025-64056 |
File upload vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the local ne...
|
MEDIUM | 4.3 | 2025-12-05 |
fanvil x210_firmware
|
CVE NVD | |
| CVE-2025-64057 |
Directory traversal vulnerability in Fanvil x210 V2 2.12.20 allows unauthenticated attackers on the ...
|
HIGH | 8.3 | 2025-12-05 |
fanvil x210_firmware
|
CVE NVD | |
| CVE-2025-65730 |
Authentication Bypass via Hardcoded Credentials GoAway up to v0.62.18, fixed in 0.62.19, uses a hard...
|
HIGH | 8.8 | 2025-12-05 |
pommee goaway
|
CVE NVD | |
| CVE-2025-65878 |
Warehouse Management System 安全漏洞
|
HIGH | 7.5 | 2025-12-05 |
yeqifu warehouse_management_system
|
CVE NVD +1 | |
| CVE-2025-65879 |
Warehouse Management System 安全漏洞
|
HIGH | 8.1 | 2025-12-05 |
yeqifu warehouse_management_system
|
CVE NVD +1 | |
| CVE-2025-65897 |
zdh_web is a data collection, processing, monitoring, scheduling, and management platform. In zdh_we...
|
HIGH | 8.8 | 2025-12-05 |
zhaoyachao zdh_web
|
CVE NVD | |
| CVE-2025-66270 |
The KDE Connect protocol 8 before 2025-11-28 does not correlate device IDs across two packets. This ...
|
MEDIUM | 4.7 | 2025-12-05 |
KDE KDE Connect protocol
|
CVE NVD | |
| CVE-2025-66644 |
Array Networks ArrayOS AG before 9.4.5.9 allows command injection, as exploited in the wild in Augus...
|
HIGH | 7.2 | 2025-12-05 |
Array Networks ArrayOS AG
arraynetworks arrayos_ag
|
CVE NVD | |
| CVE-2025-13373 |
Advantech iView SQL Injection
|
HIGH | 8.7 | 2025-12-04 |
Advantech iView
|
CVE NVD | |
| CVE-2025-66564 |
Sigstore Timestamp Authority allocates excessive memory during request parsing
|
HIGH | 7.5 | 2025-12-04 |
sigstore timestamp-authority
|
CVE NVD | |
| CVE-2025-66563 |
Monkeytype vulnerable to stored XSS in approve quotes page
|
HIGH | 7.1 | 2025-12-04 |
monkeytypegame monkeytype
monkeytype monkeytype
|
CVE NVD | |
| CVE-2025-14051 |
youlaitech youlai-mall addresses deleteAddress improper control of dynamically-identified variables
|
MEDIUM | 5.3 | 2025-12-04 |
youlaitech youlai-mall
youlaitech youlai-mall
+2个
|
CVE NVD | |
| CVE-2025-66561 |
SysReptor Vulnerable to an Authenticated Stored Cross-Site Scripting (XSS)
|
HIGH | 7.3 | 2025-12-04 |
Syslifters sysreptor
syslifters sysreptor
|
CVE NVD |