快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358424
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27585 |
Caddy's improper sanitization of glob characters in file matcher may lead to bypassing security protections
|
MEDIUM | 6.9 | 2026-02-24 |
caddyserver caddy
caddyserver caddy
|
CVE NVD | |
| CVE-2026-27571 |
nats-server websockets are vulnerable to pre-auth memory DoS
|
MEDIUM | 5.9 | 2026-02-24 |
nats-io nats-server
nats-io nats-server
+1个
|
CVE NVD | |
| CVE-2025-13776 |
Hard-coded database credentials in Finka software
|
HIGH | 8.6 | 2026-02-24 |
TIK-SOFT Finka-FK
TIK-SOFT Finka-KPR
+10个
|
CVE NVD | |
| CVE-2025-47904 |
Unsigned upgrade package
|
MEDIUM | 5.7 | 2026-02-24 |
Microchip Time Provider 4100
microchip timeprovider_4100_firmware
|
CVE NVD | |
| CVE-2026-27521 |
Binardat 10G08-0800GSM Network Switch Missing Login Rate Limiting
|
MEDIUM | 6.9 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27520 |
Binardat 10G08-0800GSM Network Switch Base64-encoded Password Stored in Cookie
|
HIGH | 8.7 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27519 |
Binardat 10G08-0800GSM Network Switch Hard-coded RC4 Encryption Key
|
HIGH | 8.7 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27518 |
Binardat 10G08-0800GSM Network Switch CSRF
|
MEDIUM | 5.1 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27517 |
Binardat 10G08-0800GSM Network Switch XSS
|
MEDIUM | 5.1 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27516 |
Binardat 10G08-0800GSM Network Switch Plaintext Password Exposure
|
HIGH | 8.6 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27515 |
Binardat 10G08-0800GSM Network Switch Predictable Session Identifiers
|
CRITICAL | 9.3 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27507 |
Binardat 10G08-0800GSM Network Switch Hard-coded Credentials
|
CRITICAL | 9.3 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-23678 |
Binardat 10G08-0800GSM Network Switch Traceroute CLI Command Injection
|
HIGH | 8.7 | 2026-02-24 |
Binardat Ltd. 10G08-0800GSM Network Switch
binardat 10g08-0800gsm_firmware
|
CVE NVD | |
| CVE-2026-27584 |
ActualBudget server is Missing Authentication for SimpleFIN and Pluggy AI bank sync endpoints
|
CRITICAL | 9.2 | 2026-02-24 |
actualbudget actual
actualbudget actual
|
CVE NVD | |
| CVE-2026-0402 |
A post-authentication Out-of-bounds Read vulnerability in SonicOS allows a remote attacker to crash ...
|
MEDIUM | 4.9 | 2026-02-24 |
SonicWall SonicOS
SonicWall SonicOS
+2个
|
CVE NVD | |
| CVE-2026-27732 |
AVideo has Authenticated Server-Side Request Forgery via downloadURL in aVideoEncoder.json.php
|
HIGH | 8.6 | 2026-02-24 |
WWBN AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2026-0401 |
A post-authentication NULL Pointer Dereference vulnerability in SonicOS allows a remote attacker to ...
|
MEDIUM | 4.9 | 2026-02-24 |
SonicWall SonicOS
SonicWall SonicOS
+2个
|
CVE NVD | |
| CVE-2026-0400 |
A post-authentication Format String vulnerability in SonicOS allows a remote attacker to crash a fir...
|
MEDIUM | 4.9 | 2026-02-24 |
SonicWall SonicOS
SonicWall SonicOS
+2个
|
CVE NVD | |
| CVE-2026-27568 |
AVideo has Stored Cross-Site Scripting via Markdown Comment Injection
|
MEDIUM | 5.1 | 2026-02-24 |
WWBN AVideo
wwbn avideo
|
CVE NVD | |
| CVE-2026-0399 |
Multiple post-authentication stack-based buffer overflow vulnerabilities in the SonicOS management i...
|
MEDIUM | 4.9 | 2026-02-24 |
SonicWall SonicOS
SonicWall SonicOS
+2个
|
CVE NVD |