快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 359214
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27700 |
Hono is Vulnerable to Authentication Bypass by IP Spoofing in AWS Lambda ALB conninfo
|
HIGH | 8.2 | 2026-02-25 |
honojs hono
hono hono
|
CVE NVD | |
| CVE-2026-27699 |
Basic FTP has Path Traversal Vulnerability in its downloadToDir() method
|
CRITICAL | 9.1 | 2026-02-25 |
patrickjuchli basic-ftp
patrickjuchli basic-ftp
|
CVE NVD | |
| CVE-2026-27695 |
zae-limiter: DynamoDB hot partition throttling enables per-entity Denial of Service
|
MEDIUM | 4.3 | 2026-02-25 |
zeroae zae-limiter
zeroae zae-limiter
|
CVE NVD | |
| CVE-2026-2878 |
Insufficient Entropy Vulnerability in Telerik UI for ASP.NET AJAX
|
MEDIUM | 5.3 | 2026-02-25 |
Progress Software Telerik UI for ASP.NET AJAX
progress telerik_ui_for_asp.net_ajax
|
CVE NVD | |
| CVE-2026-27692 |
iccDEV has HBO in CIccTagTextDescription::Release()
|
HIGH | 7.1 | 2026-02-25 |
InternationalColorConsortium iccDEV
color iccdev
|
CVE NVD | |
| CVE-2026-27691 |
iccDEV has SIO in parse3DTable() at iccFromCube.cpp Line 218
|
MEDIUM | 6.2 | 2026-02-25 |
InternationalColorConsortium iccDEV
color iccdev
|
CVE NVD | |
| CVE-2026-3203 |
Buffer Over-read in Wireshark
|
MEDIUM | 5.5 | 2026-02-25 |
Wireshark Foundation Wireshark
wireshark wireshark
|
CVE NVD | |
| CVE-2026-3202 |
NULL Pointer Dereference in Wireshark
|
MEDIUM | 4.7 | 2026-02-25 |
Wireshark Foundation Wireshark
wireshark wireshark
|
CVE NVD | |
| CVE-2026-3201 |
Improperly Controlled Sequential Memory Allocation in Wireshark
|
MEDIUM | 4.7 | 2026-02-25 |
Wireshark Foundation Wireshark
wireshark wireshark
|
CVE NVD | |
| CVE-2026-3187 |
feiyuchuixue sz-boot-parent API Endpoint upload unrestricted upload
|
MEDIUM | 5.3 | 2026-02-25 |
feiyuchuixue sz-boot-parent
szadmin sz-boot-parent
+14个
|
CVE NVD | |
| CVE-2026-3186 |
feiyuchuixue sz-boot-parent Password Reset password default password
|
MEDIUM | 5.3 | 2026-02-25 |
feiyuchuixue sz-boot-parent
szadmin sz-boot-parent
+14个
|
CVE NVD | |
| CVE-2026-3185 |
feiyuchuixue sz-boot-parent API Endpoint sys-message authorization
|
MEDIUM | 6.9 | 2026-02-25 |
feiyuchuixue sz-boot-parent
szadmin sz-boot-parent
+14个
|
CVE NVD | |
| CVE-2026-28196 |
In JetBrains TeamCity before 2025.11.3 disabling versioned settings left a credentials config on dis...
|
LOW | 2.3 | 2026-02-25 |
JetBrains TeamCity
jetbrains teamcity
|
CVE NVD | |
| CVE-2026-28195 |
In JetBrains TeamCity before 2025.11.3 missing authorization allowed project developers to add param...
|
MEDIUM | 4.3 | 2026-02-25 |
JetBrains TeamCity
jetbrains teamcity
|
CVE NVD | |
| CVE-2026-28194 |
In JetBrains TeamCity before 2025.11.3 open redirect was possible in the React project creation flow
|
MEDIUM | 4.3 | 2026-02-25 |
JetBrains TeamCity
jetbrains teamcity
|
CVE NVD | |
| CVE-2026-28193 |
In JetBrains YouTrack before 2025.3.121962 apps were able to send requests to the app permissions en...
|
HIGH | 8.8 | 2026-02-25 |
JetBrains YouTrack
jetbrains youtrack
|
CVE NVD | |
| CVE-2026-2624 |
Authentication Bypass in ePati's Antikor NGFW
|
CRITICAL | 9.8 | 2026-02-25 |
ePati Cyber Security Technologies Inc. Antikor Next Generation Firewall (NGFW)
epati antikor_next_generation_firewall
|
CVE NVD | |
| CVE-2026-21725 |
Authorization Bypass via TOCTOU in Grafana Datasource Deletion by Name
|
LOW | 2.6 | 2026-02-25 |
Grafana Grafana
grafana grafana
|
CVE NVD | |
| CVE-2026-0704 |
In affected version of Octopus Deploy it was possible to remove files and/or contents of files on th...
|
MEDIUM | 5.9 | 2026-02-25 |
Octopus Deploy Octopus Server
octopus octopus_server
|
CVE NVD | |
| CVE-2026-3118 |
Rhdh: graphql injection leading to platform-wide denial of service (dos) in rh developer hub orchestrator plugin
|
MEDIUM | 6.5 | 2026-02-25 |
Red Hat Red Hat Developer Hub
redhat developer_hub
|
CVE NVD |