快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-1787 |
Local admin could to leak information from the Genetec Update Service configuration web page. An aut...
|
MEDIUM | 5.8 | 2026-02-24 |
Genetec Inc. Genetec Update Service
genetec genetec_update_service
|
CVE NVD | |
| CVE-2026-24241 |
NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an att...
|
MEDIUM | 4.3 | 2026-02-24 |
NVIDIA DLS component of NVIDIA License System
NVIDIA DLS component of NVIDIA License System
+1个
|
CVE NVD | |
| CVE-2025-33180 |
NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-pr...
|
HIGH | 8.0 | 2026-02-24 |
NVIDIA Cumulus Linux GA
NVIDIA Cumulus Linux LTS
+6个
|
CVE NVD | |
| CVE-2025-33179 |
NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-pr...
|
HIGH | 8.0 | 2026-02-24 |
NVIDIA Cumulus Linux GA
NVIDIA Cumulus Linux LTS
+6个
|
CVE NVD | |
| CVE-2026-26342 |
Tattile Smart+ / Vega / Basic <= 1.181.5 Insufficient Session Token Expiration
|
HIGH | 8.7 | 2026-02-24 |
Tattile s.r.l. Smart+
Tattile s.r.l. Tolling+
+18个
|
CVE NVD | |
| CVE-2026-26341 |
Tattile Smart+ / Vega / Basic <= 1.181.5 Default Credentials
|
CRITICAL | 9.3 | 2026-02-24 |
Tattile s.r.l. Smart+
Tattile s.r.l. Tolling+
+18个
|
CVE NVD | |
| CVE-2026-26340 |
Tattile Smart+ / Vega / Basic <= 1.181.5 Unauthenticated RTSP Stream Disclosure
|
HIGH | 8.7 | 2026-02-24 |
Tattile s.r.l. Smart+
Tattile s.r.l. Tolling+
+18个
|
CVE NVD | |
| CVE-2026-3105 |
SQL Injection in Contact Activity API Sorting
|
HIGH | 7.6 | 2026-02-24 |
Mautic Mautic
acquia mautic
|
CVE NVD | |
| CVE-2026-26222 |
DocLink .NET Remoting Unauthenticated Arbitrary File Read/Write RCE
|
CRITICAL | 10.0 | 2026-02-24 |
Beyond Limits Inc. Altec DocLink
beyond altec_doclink
|
CVE NVD | |
| CVE-2026-25603 |
Path Traversal vulnerability in Linksys MR9600, Linksys MX4200
|
MEDIUM | 6.6 | 2026-02-24 |
Linksys MR9600
Linksys MX4200
+2个
|
CVE NVD | |
| CVE-2026-27468 |
Mastodon may allow unconfirmed FASP to make subscriptions
|
MEDIUM | 4.8 | 2026-02-24 |
mastodon mastodon
mastodon mastodon
+1个
|
CVE NVD | |
| CVE-2025-14963 |
A vulnerability identified in the Trellix HX Agent driver file fekern.sys allowed a threat actor wi...
|
MEDIUM | 6.2 | 2026-02-24 |
Trellix Endpoint HX Agent (xAgent)
trellix endpoint_security
+2个
|
CVE NVD | |
| CVE-2026-27156 |
NiceGUI has XSS via Code Injection
|
MEDIUM | 6.1 | 2026-02-24 |
zauberzeug nicegui
zauberzeug nicegui
|
CVE NVD | |
| CVE-2025-62512 |
Piwigo Vulnerable to User Enumeration via Password Reset Endpoint
|
MEDIUM | 5.5 | 2026-02-24 |
Piwigo Piwigo
piwigo piwigo
|
CVE NVD | |
| CVE-2024-48928 |
Piwigo's secret key can be brute forced
|
LOW | 2.7 | 2026-02-24 |
Piwigo Piwigo
piwigo piwigo
|
CVE NVD | |
| CVE-2026-27590 |
Caddy: Unicode case-folding length expansion causes incorrect split_path index (SCRIPT_NAME/PATH_INFO confusion) in FastCGI transport
|
HIGH | 8.9 | 2026-02-24 |
caddyserver caddy
caddyserver caddy
|
CVE NVD | |
| CVE-2026-27589 |
Caddy vulnerable to cross-origin config application via local admin API /load (caddy)
|
MEDIUM | 6.9 | 2026-02-24 |
caddyserver caddy
caddyserver caddy
|
CVE NVD | |
| CVE-2026-27588 |
Caddy: MatchHost becomes case-sensitive for large host lists (>100), enabling host-based route/auth bypass
|
HIGH | 7.7 | 2026-02-24 |
caddyserver caddy
caddyserver caddy
|
CVE NVD | |
| CVE-2026-27587 |
Caddy: MatchPath %xx (escaped-path) branch skips case normalization, enabling path-based route/auth bypass
|
HIGH | 7.7 | 2026-02-24 |
caddyserver caddy
caddyserver caddy
|
CVE NVD | |
| CVE-2026-27586 |
Caddy's mTLS client authentication silently fails open when CA certificate file is missing or malformed
|
HIGH | 8.8 | 2026-02-24 |
caddyserver caddy
caddyserver caddy
|
CVE NVD |