快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 353571
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-66208 |
Configuration-Dependent RCE (OS Command Injection) in richdocumentscode proxy
|
HIGH | 7.2 | 2025-12-03 |
CollaboraOnline online
collabora online
|
CVE NVD | |
| CVE-2025-33208 |
NVIDIA TAO contains a vulnerability where an attacker may cause a resource to be loaded via an uncon...
|
HIGH | 8.8 | 2025-12-03 |
NVIDIA TAO
nvidia tao_toolkit
|
CVE NVD | |
| CVE-2025-66032 |
Claude Code Command Validation Bypass Allows Arbitrary Code Execution
|
HIGH | 8.7 | 2025-12-03 |
anthropics claude-code
anthropic claude_code
|
CVE NVD | |
| CVE-2025-33211 |
NVIDIA Triton Server for Linux contains a vulnerability where an attacker may cause an improper vali...
|
HIGH | 7.5 | 2025-12-03 |
NVIDIA Triton Inference Server
nvidia triton_inference_server
|
CVE NVD | |
| CVE-2025-33201 |
NVIDIA Triton Inference Server contains a vulnerability where an attacker may cause an improper chec...
|
HIGH | 7.5 | 2025-12-03 |
NVIDIA Triton Inference Server
nvidia triton_inference_server
|
CVE NVD | |
| CVE-2025-64763 |
Envoy forwards early CONNECT data in TCP proxy mode
|
LOW | 3.7 | 2025-12-03 |
envoyproxy envoy
envoyproxy envoy
+3个
|
CVE NVD | |
| CVE-2025-64527 |
Envoy crashes when JWT authentication is configured with the remote JWKS fetching
|
MEDIUM | 6.5 | 2025-12-03 |
envoyproxy envoy
envoyproxy envoy
+3个
|
CVE NVD | |
| CVE-2025-64443 |
DNS Rebinding vulnerability present when running MCP Gateway in sse or streaming mode
|
HIGH | 7.3 | 2025-12-03 |
docker mcp-gateway
|
CVE NVD | |
| CVE-2025-54065 |
GZDoom engine allows arbitrary code execution via ZScript actor states
|
HIGH | 7.8 | 2025-12-03 |
ZDoom gzdoom
|
CVE NVD | |
| CVE-2025-20388 |
Blind Server Side Request Forgery (SSRF) through Distributed Search Peers in Splunk Enterprise
|
LOW | 2.7 | 2025-12-03 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+3个
|
CVE NVD | |
| CVE-2025-20389 |
Improper Input Validation in "label" column field in Splunk Secure Gateway App
|
MEDIUM | 4.3 | 2025-12-03 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+4个
|
CVE NVD | |
| CVE-2025-20387 |
Incorrect permissions assignment on Splunk Universal Forwarder for Windows during new installation or upgrade
|
HIGH | 8.0 | 2025-12-03 |
Splunk Splunk Enterprise
splunk splunk
|
CVE NVD | |
| CVE-2025-20383 |
Improper access control through push notifications for reports and alerts in Splunk Secure Gateway app
|
MEDIUM | 4.3 | 2025-12-03 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+4个
|
CVE NVD | |
| CVE-2025-20384 |
Unauthenticated Log Injection in Splunk Enterprise
|
MEDIUM | 5.3 | 2025-12-03 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+3个
|
CVE NVD | |
| CVE-2025-20386 |
Incorrect permission assignment on Splunk Enterprise for Windows during new installation or upgrade
|
HIGH | 8.0 | 2025-12-03 |
Splunk Splunk Enterprise
splunk splunk
|
CVE NVD | |
| CVE-2025-20385 |
Stored Cross-Site scripting (XSS) through Anchor Tag "href" in Navigation Bar Collections in Splunk Enterprise
|
LOW | 2.4 | 2025-12-03 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+2个
|
CVE NVD | |
| CVE-2025-20381 |
SPL commands allowlist controls bypass in Splunk MCP Server app through "run_splunk_query" MCP tool
|
MEDIUM | 5.4 | 2025-12-03 |
Splunk Splunk MCP Server
|
CVE NVD | |
| CVE-2025-20382 |
URL validation bypass through Views Dashboard in Splunk Enterprise
|
LOW | 3.5 | 2025-12-03 |
Splunk Splunk Enterprise
Splunk Splunk Cloud Platform
+2个
|
CVE NVD | |
| CVE-2025-34319 |
TOTOLINK N300RT <= V2.1.8-B20201030.1539 Boa formWsc RCE
|
CRITICAL | 9.3 | 2025-12-03 |
TOTOLINK N300RT
|
CVE NVD | |
| CVE-2024-32643 |
Masa CMS vulnerable to authentication bypass with /tag/
|
HIGH | 7.5 | 2025-12-03 |
MasaCMS MasaCMS
MasaCMS MasaCMS
+2个
|
CVE NVD |