快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353571
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-12994 |
Medtronic CareLink Network allows an unauthenticated remote attacker to initiate a request for secur...
|
MEDIUM | 5.3 | 2025-12-04 |
Medtronic CareLink Network
medtronic carelink_network
|
CVE NVD | |
| CVE-2025-65958 |
Open WebUI vulnerable to Server-Side Request Forgery (SSRF) via Arbitrary URL Processing in /api/v1/retrieval/process/web
|
HIGH | 8.5 | 2025-12-04 |
open-webui open-webui
openwebui open_webui
|
CVE NVD | |
| CVE-2025-12097 |
There is a relative path traversal vulnerability in the NI System Web Server that may result in info...
|
HIGH | 8.7 | 2025-12-04 |
NI LabVIEW
|
CVE NVD | |
| CVE-2025-65945 |
auth0/node-jws improper HMAC signature verification vulnerability
|
HIGH | 7.5 | 2025-12-04 |
auth0 node-jws
auth0 node-jws
|
CVE NVD | |
| CVE-2025-14016 |
macrozheng mall-swarm delete improper authorization
|
MEDIUM | 5.3 | 2025-12-04 |
macrozheng mall-swarm
macrozheng mall-swarm
+3个
|
CVE NVD | |
| CVE-2025-14015 |
H3C Magic B0 aspForm EditWlanMacList buffer overflow
|
HIGH | 8.7 | 2025-12-04 |
H3C Magic B0
h3c magic_b0_firmware
|
CVE NVD | |
| CVE-2025-13488 |
Nexus Repository 3 - Stored Cross-Site Scripting (XSS)
|
MEDIUM | 5.1 | 2025-12-04 |
Sonatype Nexus Repository
|
CVE NVD | |
| CVE-2025-14013 |
JIZHICMS Comment addcomment.html cross site scripting
|
MEDIUM | 4.8 | 2025-12-04 |
jizhicms jizhicms
|
CVE NVD | |
| CVE-2025-9127 |
PX Enterprise Improper Sanitization Vulnerability
|
HIGH | 8.4 | 2025-12-04 |
Pure Storage PX Enterprise
Pure Storage PX Enterprise
+4个
|
CVE NVD | |
| CVE-2025-14012 |
JIZHICMS Batch Delete Comments deleteAll.html delete sql injection
|
MEDIUM | 5.1 | 2025-12-04 |
jizhicms jizhicms
|
CVE NVD | |
| CVE-2025-14011 |
JIZHICMS Add Display Name Field addcomment.html commentlist sql injection
|
MEDIUM | 5.1 | 2025-12-04 |
jizhicms jizhicms
|
CVE NVD | |
| CVE-2025-66287 |
Webkitgtk: processing maliciously crafted web content may lead to an unexpected process crash
|
HIGH | 8.8 | 2025-12-04 |
The WebKitGTK Team WebKitGTK
Red Hat Red Hat Enterprise Linux 7 Extended Lifecycle Support
+16个
|
CVE NVD | |
| CVE-2025-66516 |
Apache Tika 代码问题漏洞
|
HIGH | 8.4 | 2025-12-04 |
Apache Software Foundation Apache Tika core
Apache Software Foundation Apache Tika parsers
+2个
|
CVE NVD +1 | |
| CVE-2025-40266 |
KVM: arm64: Check the untrusted offset in FF-A memory share
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2025-40265 |
vfat: fix missing sb_min_blocksize() return value checks
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2025-40264 |
be2net: pass wrb_params in case of OS2BMC
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2025-40263 |
Input: cros_ec_keyb - fix an invalid memory access
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2025-40262 |
Input: imx_sc_key - fix memory corruption on unload
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2025-40261 |
nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl()
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2025-40260 |
sched_ext: Fix scx_enable() crash on helper kthread creation failure
|
MEDIUM | -1.0 | 2025-12-04 |
Linux Linux
Linux Linux
|
CVE NVD |