快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 356402
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-25236 |
Omnissa Workspace ONE UEM contains an observable response discrepancy vulnerability. A malicious act...
|
MEDIUM | 5.3 | 2025-11-12 |
Omnissa Omnissa Workspace ONE UEM
Omnissa Omnissa Workspace ONE UEM
+1个
|
CVE NVD | |
| CVE-2025-20379 |
Risky command safeguards bypass using the “/services/streams/search“ REST endpoint through “q“ parameter in Splunk Enterprise
|
LOW | 3.5 | 2025-11-12 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+3个
|
CVE NVD | |
| CVE-2025-20378 |
Open Redirect on Web Login endpoint in Splunk Enterprise
|
LOW | 3.1 | 2025-11-12 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+3个
|
CVE NVD | |
| CVE-2025-13042 |
Inappropriate implementation in V8 in Google Chrome prior to 142.0.7444.166 allowed a remote attacke...
|
HIGH | 8.8 | 2025-11-12 |
Google Chrome
google chrome
|
CVE NVD | |
| CVE-2025-59089 |
kdcproxy 安全漏洞
|
MEDIUM | 5.9 | 2025-11-12 |
latchset kdcproxy
Red Hat Red Hat Enterprise Linux 10
+16个
|
CVE NVD +1 | |
| CVE-2025-59088 |
kdcproxy 安全漏洞
|
HIGH | 8.6 | 2025-11-12 |
latchset kdcproxy
Red Hat Red Hat Enterprise Linux 10
+16个
|
CVE NVD +1 | |
| CVE-2025-11797 |
DWG File Parsing Use-After-Free Vulnerability
|
HIGH | 7.8 | 2025-11-12 |
Autodesk 3ds Max
autodesk 3ds_max
|
CVE NVD | |
| CVE-2025-11795 |
JPG File Parsing Out-of-Bounds Write Vulnerability
|
HIGH | 7.8 | 2025-11-12 |
Autodesk 3ds Max
autodesk 3ds_max
|
CVE NVD | |
| CVE-2025-64293 |
WordPress 0 Day Analytics plugin <= 4.0.0 - SQL Injection vulnerability
|
HIGH | 7.6 | 2025-11-12 |
Golemiq 0 Day Analytics
|
CVE NVD | |
| CVE-2025-11367 |
N-central windows software probe Remote Code Execution
|
CRITICAL | 10.0 | 2025-11-12 |
N-able N-central
n-able n-central
|
CVE NVD | |
| CVE-2025-11366 |
N-central Authentication bypass via path traversal
|
CRITICAL | 9.4 | 2025-11-12 |
N-able N-central
n-able n-central
|
CVE NVD | |
| CVE-2025-11700 |
N-central Multiple XXE Injection Vulnerabilities
|
HIGH | 8.4 | 2025-11-12 |
N-able N-central
n-able n-central
|
CVE NVD | |
| CVE-2025-9316 |
N-central unauthenticated sessionID generation
|
MEDIUM | 6.9 | 2025-11-12 |
N-able N-central
|
CVE NVD | |
| CVE-2025-11567 |
CWE-276: Incorrect Default Permissions vulnerability exists that could cause elevated system access ...
|
HIGH | 7.3 | 2025-11-12 |
Schneider Electric PowerChute™ Serial Shutdown
|
CVE NVD | |
| CVE-2025-11566 |
CWE-307: Improper Restriction of Excessive Authentication Attempts vulnerability exists that would a...
|
MEDIUM | 6.9 | 2025-11-12 |
Schneider Electric PowerChute™ Serial Shutdown
|
CVE NVD | |
| CVE-2025-11565 |
CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability...
|
HIGH | 7.3 | 2025-11-12 |
Schneider Electric PowerChute™ Serial Shutdown
|
CVE NVD | |
| CVE-2025-62876 |
A Execution with Unnecessary Privileges vulnerability in lightdm-kde-greeter allows escalation from ...
|
MEDIUM | 5.3 | 2025-11-12 |
SUSE openSUSE
|
CVE NVD | |
| CVE-2025-12998 |
TYPO3 Extension Modules 安全漏洞
|
HIGH | 8.2 | 2025-11-12 |
TYPO3 Extension "Modules"
|
CVE NVD +1 | |
| CVE-2025-11994 |
Easy Email Subscription <= 1.3 - Unauthenticated Stored Cross-Site Scripting
|
HIGH | 7.2 | 2025-11-12 |
yudiz Easy Email Subscription
|
CVE NVD | |
| CVE-2025-11454 |
Specific Content For Mobile – Customize the mobile version without redirections <= 0.5.5 - Authenticated (Contributor+) SQL Injection
|
MEDIUM | 6.5 | 2025-11-12 |
giuse Specific Content For Mobile – Customize the mobile version without redirections
|
CVE NVD |