漏洞列表 - 漏洞数据展示平台

快速搜索提示： 按厂商查询（如：microsoft）| 按产品查询（如：microsoft sql_server）

搜索关键词支持模糊搜索，但速度较慢

严重程度

数据源

排序

常用厂商： microsoft cisco google apple oracle

示例： microsoft sql_server cisco ios apache http_server

漏洞列表 355556

CVE ID	标题	严重程度	CVSS	发布时间	受影响产品	数据源
CVE-2025-33190	NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware where an attacker could cause an ou...	MEDIUM	6.7	2025-11-25	NVIDIA DGX Spark nvidia dgx_os	CVE NVD
CVE-2025-33189	NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause an o...	HIGH	7.8	2025-11-25	NVIDIA DGX Spark nvidia dgx_os	CVE NVD
CVE-2025-33188	NVIDIA DGX Spark GB10 contains a vulnerability in hardware resources where an attacker could tamper ...	HIGH	8.0	2025-11-25	NVIDIA DGX Spark nvidia dgx_os	CVE NVD
CVE-2025-33187	NVIDIA DGX Spark GB10 contains a vulnerability in SROOT, where an attacker could use privileged acce...	CRITICAL	9.3	2025-11-25	NVIDIA DGX Spark nvidia dgx_os	CVE NVD
CVE-2025-65085	Heap-based Buffer Overflow in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	HIGH	8.4	2025-11-25	Ashlar-Vellum Cobalt Ashlar-Vellum Xenon +8个	CVE NVD
CVE-2025-65084	Out-of-bounds Write in Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	HIGH	8.4	2025-11-25	Ashlar-Vellum Cobalt Ashlar-Vellum Xenon +8个	CVE NVD
CVE-2025-13483	Missing Authentication for Critical Function in SiRcom SMART Alert (SiSA)	HIGH	8.8	2025-11-25	SiRcom SMART Alert (SiSA	CVE NVD
CVE-2025-13467	Org.keycloak.storage.ldap: keycloak: deserialization of untrusted data in ldap user federation	MEDIUM	5.5	2025-11-25	Keycloak Keycloak Red Hat Red Hat build of Keycloak 26.2 +3个	CVE NVD
CVE-2025-40890	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	MEDIUM	5.8	2025-11-25	Nozomi Networks Guardian Nozomi Networks CMC	CVE NVD
CVE-2025-0248	HCL iNotes is susceptible to a Reflected Cross-site Scripting (XSS) vulnerability,	HIGH	8.1	2025-11-25	HCL Software iNotes	CVE NVD
CVE-2025-36134	IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure	LOW	3.7	2025-11-25	IBM Sterling B2B Integrator IBM Sterling File Gateway +4个	CVE NVD
CVE-2025-13502	Webkit: webkitgtk / wpe webkit: out-of-bounds read and integer underflow vulnerability leading to dos	HIGH	7.5	2025-11-25	The WebKitGTK Team webkitgtk Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support +16个	CVE NVD
CVE-2025-59372	A path traversal vulnerability has been identified in certain router models. A remote, authenticated...	MEDIUM	6.9	2025-11-25	ASUS Router ASUS Router +1个	CVE NVD
CVE-2025-59371	An authentication bypass vulnerability has been identified in the IFTTT integration feature. A remot...	HIGH	7.5	2025-11-25	ASUS Router ASUS Router +1个	CVE NVD
CVE-2025-59370	A command injection vulnerability has been identified in bwdpi. A remote, authenticated attacker cou...	HIGH	7.5	2025-11-25	ASUS Router ASUS Router +1个	CVE NVD
CVE-2025-59369	A SQL injection vulnerability has been identified in bwdpi. A remote, authenticated attacker could l...	MEDIUM	5.9	2025-11-25	ASUS Router ASUS Router +1个	CVE NVD
CVE-2025-59368	An integer underflow vulnerability has been identified in Aicloud. An authenticated attacker may tri...	MEDIUM	6.0	2025-11-25	ASUS Router ASUS Router +1个	CVE NVD
CVE-2025-12003	A path traversal vulnerability has been identified in WebDAV, which may allow unauthenticated remote...	HIGH	8.2	2025-11-25	ASUS Router ASUS Router +1个	CVE NVD
CVE-2025-12587	Peer Publish <= 1.0 - Cross-Site Request Forgery	MEDIUM	4.3	2025-11-25	webgarh Peer Publish	CVE NVD
CVE-2025-13385	Bookme <= 4.2 - Authenticated (Admin+) SQL Injection via 'filter[status]' Parameter	MEDIUM	4.9	2025-11-25	bylancer Bookme – Free Online Appointment Booking and Scheduling Plugin	CVE NVD

耗时统计

总耗时:	238.64 ms
构建查询耗时:	0.0 ms
统计耗时:	229.48 ms
获取数据耗时:	8.52 ms
数据转换耗时:	0.63 ms

数据统计

匹配文档数:	355556
返回文档数:	20
当前页码:	627
每页数量:	20
跳过记录数:	12520

查询详情

查询集合:	`uni_vulnerabilities`
使用过滤器:	否
搜索关键词:	-
严重程度:	-
数据源:	-
效率分析:	良好查询速度正常

优化建议：

匹配文档数量很大（355556），建议使用更精确的搜索条件
当前未使用任何过滤条件，查询全部数据可能较慢

漏洞列表 355556

参考链接