快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352749
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-34393 |
Barracuda Service Center 安全漏洞
|
CRITICAL | 10.0 | 2025-12-10 |
Barracuda Networks RMM
barracuda rmm
|
CVE NVD +1 | |
| CVE-2025-34392 |
Barracuda Service Center 安全漏洞
|
CRITICAL | 10.0 | 2025-12-10 |
Barracuda Networks RMM
barracuda rmm
|
CVE NVD +1 | |
| CVE-2025-13125 |
IDOR in Im Park's DijiDemi
|
MEDIUM | 4.3 | 2025-12-10 |
Im Park Information Technology, Electronics, Press, Publishing and Advertising, Education Ltd. Co. DijiDemi
|
CVE NVD | |
| CVE-2025-13155 |
An improper permissions vulnerability was reported in Lenovo Baiying Client that could allow a local...
|
HIGH | 8.5 | 2025-12-10 |
Lenovo Baiying Client
|
CVE NVD | |
| CVE-2025-13152 |
A potential DLL hijacking vulnerability was reported in Lenovo One Client during an internal securit...
|
HIGH | 8.5 | 2025-12-10 |
Lenovo One Client
|
CVE NVD | |
| CVE-2025-12046 |
A DLL hijacking vulnerability was reported in the Lenovo App Store and Lenovo Browser applications t...
|
HIGH | 8.5 | 2025-12-10 |
Lenovo App Store
Lenovo Browser
|
CVE NVD | |
| CVE-2025-13127 |
XSS in TACAS Consulting's GoldenHorn
|
LOW | 3.5 | 2025-12-10 |
TAC Information Services Internal and External Trade Inc. GoldenHorn
|
CVE NVD | |
| CVE-2025-8110 |
File overwrite in file update API in Gogs
|
HIGH | 8.7 | 2025-12-10 |
Gogs Gogs
gogs gogs
|
CVE NVD | |
| CVE-2024-2105 |
JBL: Improper validation of ICM field in connection requests
|
MEDIUM | 6.5 | 2025-12-10 |
JBL Flip 5
JBL Flip 6
+5个
|
CVE NVD | |
| CVE-2024-2104 |
JBL: Improper BLE security configurations and lack of authentication on the device's GATT server
|
HIGH | 8.8 | 2025-12-10 |
JBL LIVE PRO 2 TWS
JBL TUNE FLEX
|
CVE NVD | |
| CVE-2025-13184 |
Unauthenticated Telnet enablement via cstecgi.cgi (auth bypass) leading to unauthenticated root login with a blank password
|
CRITICAL | 9.8 | 2025-12-10 |
Toto Link X5000R's (AX1800 router)
totolink x5000r_firmware
|
CVE NVD | |
| CVE-2025-13953 |
GTT Sistema de Información Tributario 安全漏洞
|
CRITICAL | 9.3 | 2025-12-10 |
GTT Sistema de Información Tributario
|
CVE NVD +1 | |
| CVE-2025-41358 |
i2A CronosWeb 安全漏洞
|
HIGH | 8.3 | 2025-12-10 |
CronosWeb i2A CronosWeb
|
CVE NVD +1 | |
| CVE-2025-41732 |
Stack-based buffer overflow via unsafe sscanf in check_cookie()
|
CRITICAL | 9.8 | 2025-12-10 |
WAGO Indsutrial-Managed-Switches
wago 0852-1328_firmware
+1个
|
CVE NVD | |
| CVE-2025-41730 |
Stack-based buffer overflow via unsafe sscanf in check_account()
|
CRITICAL | 9.8 | 2025-12-10 |
WAGO Indsutrial-Managed-Switches
wago 0852-1328_firmware
+1个
|
CVE NVD | |
| CVE-2025-7073 |
Bitdefender Total Security 后置链接漏洞
|
HIGH | 8.8 | 2025-12-10 |
Bitdefender Total Security
Bitdefender Internet Security
+6个
|
CVE NVD +1 | |
| CVE-2025-66675 |
Apache Struts: File leak in multipart request processing causes disk exhaustion (DoS) - version ranges fixed
|
HIGH | 8.2 | 2025-12-10 |
Apache Software Foundation Apache Struts
apache struts
|
CVE NVD | |
| CVE-2025-14390 |
Video Merchant <= 5.0.4 - Cross-Site Request Forgery to Arbitrary File Upload
|
HIGH | 8.8 | 2025-12-10 |
videomerchant Video Merchant
|
CVE NVD | |
| CVE-2025-66004 |
Local privilege escalation in usbmuxd from arbitrary local user to usbmux
|
MEDIUM | 5.1 | 2025-12-10 |
libimobiledevice usbmuxd
|
CVE NVD | |
| CVE-2025-14082 |
Keycloak-services: keycloak admin rest api: improper access control leads to sensitive role metadata information disclosure
|
LOW | 2.7 | 2025-12-10 |
Red Hat Red Hat Build of Keycloak
|
CVE NVD |