快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 358915
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-20128 |
Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability
|
HIGH | 7.5 | 2026-02-25 |
Cisco Cisco Catalyst SD-WAN Manager
Cisco Cisco Catalyst SD-WAN Manager
+136个
|
CVE NVD | |
| CVE-2026-20129 |
Cisco Catayst SD-WAN Authentication Bypass Vulnerability
|
CRITICAL | 9.8 | 2026-02-25 |
Cisco Cisco Catalyst SD-WAN Manager
Cisco Cisco Catalyst SD-WAN Manager
+335个
|
CVE NVD | |
| CVE-2026-20126 |
Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability
|
HIGH | 8.8 | 2026-02-25 |
Cisco Cisco Catalyst SD-WAN Manager
Cisco Cisco Catalyst SD-WAN Manager
+335个
|
CVE NVD | |
| CVE-2026-20133 |
Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability
|
MEDIUM | 6.5 | 2026-02-25 |
Cisco Cisco Catalyst SD-WAN Manager
Cisco Cisco Catalyst SD-WAN Manager
+335个
|
CVE NVD | |
| CVE-2026-3192 |
Chia Blockchain RPC Credential rpc_server_base.py _authenticate improper authentication
|
MEDIUM | 6.3 | 2026-02-25 |
Chia Blockchain
chia blockchain
|
CVE NVD | |
| CVE-2026-3189 |
feiyuchuixue sz-boot-parent download server-side request forgery
|
LOW | 2.3 | 2026-02-25 |
feiyuchuixue sz-boot-parent
|
CVE NVD | |
| CVE-2026-27727 |
mchange-commons-java: Remote Code Execution via JNDI Reference Resolution
|
HIGH | 8.9 | 2026-02-25 |
swaldman mchange-commons-java
|
CVE NVD | |
| CVE-2026-27706 |
Plane Vulnerable to Full Read SSRF via Favicon Fetching in "Add Link" Feature
|
HIGH | 7.7 | 2026-02-25 |
makeplane plane
plane plane
|
CVE NVD | |
| CVE-2026-27705 |
Plane Vulnerable to Cross-Workspace/Cross-Project Asset Modification via IDOR in ProjectAssetEndpoint.patch
|
MEDIUM | 4.9 | 2026-02-25 |
makeplane plane
plane plane
|
CVE NVD | |
| CVE-2026-22866 |
ENS DNSSEC Oracle Vulnerable to RSA Signature Forgery via Missing PKCS#1 v1.5 Padding Validation
|
LOW | 2.7 | 2026-02-25 |
ensdomains ens-contracts
|
CVE NVD | |
| CVE-2026-27730 |
esm.sh has SSRF localhost/private-network bypass in `/http(s)` module route
|
HIGH | 8.6 | 2026-02-25 |
esm-dev esm.sh
esm esm.sh
|
CVE NVD | |
| CVE-2025-50180 |
esm.sh is vulnerable to full-response SSRF
|
HIGH | 8.7 | 2026-02-25 |
esm-dev esm.sh
esm esm.sh
|
CVE NVD | |
| CVE-2026-3188 |
feiyuchuixue sz-boot-parent API templates path traversal
|
MEDIUM | 5.3 | 2026-02-25 |
feiyuchuixue sz-boot-parent
|
CVE NVD | |
| CVE-2025-1242 |
Administrative Credentials Can Be Extracted Through Gardyn API Responses
|
CRITICAL | 9.3 | 2026-02-25 |
Gardyn Home Kit
Gardyn Home Kit Mobile Application
+1个
|
CVE NVD | |
| CVE-2026-27704 |
Dart SDK and Flutter SDK have Zip slip in Dart Pub package extraction
|
MEDIUM | 6.6 | 2026-02-25 |
dart-lang sdk
dart-lang flutter
|
CVE NVD | |
| CVE-2026-27848 |
Missing neutralization in Linksys MR9600, Linksys MX4200
|
CRITICAL | 9.8 | 2026-02-25 |
Linksys MR9600
Linksys MX4200
|
CVE NVD | |
| CVE-2026-3206 |
Improper management of context cancelations
|
LOW | 1.3 | 2026-02-25 |
KrakenD KrakenD-CE
KrakenD KrakenD-EE
|
CVE NVD | |
| CVE-2026-27702 |
Budibase Vulnerable to Remote Code Execution via Unsafe eval() in View Filter Map Function (Budibase Cloud)
|
CRITICAL | 9.9 | 2026-02-25 |
Budibase budibase
budibase budibase
|
CVE NVD | |
| CVE-2026-27847 |
Missing authentication in Linksys MR9600, Linksys MX4200
|
CRITICAL | 9.8 | 2026-02-25 |
Linksys MR9600
Linksys MX4200
|
CVE NVD | |
| CVE-2026-27701 |
LiveCodes vulnerable to JavaScript Injection via untrusted PR title in i18n-update-pull workflow
|
HIGH | 8.8 | 2026-02-25 |
live-codes livecodes
|
CVE NVD |