快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 352871
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2025-42896 |
Server-Side Request Forgery (SSRF) in SAP BusinessObjects Business Intelligence Platform
|
MEDIUM | 5.4 | 2025-12-09 |
SAP_SE SAP BusinessObjects Business Intelligence Platform
SAP_SE SAP BusinessObjects Business Intelligence Platform
+1个
|
CVE NVD | |
| CVE-2025-42891 |
Missing Authorization check in SAP Enterprise Search for ABAP
|
MEDIUM | 5.5 | 2025-12-09 |
SAP_SE SAP Enterprise Search for ABAP
SAP_SE SAP Enterprise Search for ABAP
+6个
|
CVE NVD | |
| CVE-2025-42880 |
Code Injection vulnerability in SAP Solution Manager
|
CRITICAL | 9.9 | 2025-12-09 |
SAP_SE SAP Solution Manager
|
CVE NVD | |
| CVE-2025-42878 |
Sensitive Data Exposure in SAP Web Dispatcher and Internet Communication Manager (ICM)
|
HIGH | 8.2 | 2025-12-09 |
SAP_SE SAP Web Dispatcher and Internet Communication Manager (ICM)
SAP_SE SAP Web Dispatcher and Internet Communication Manager (ICM)
+9个
|
CVE NVD | |
| CVE-2025-42877 |
Memory Corruption vulnerability in SAP Web Dispatcher, Internet Communication Manager and SAP Content Server
|
HIGH | 7.5 | 2025-12-09 |
SAP_SE SAP Web Dispatcher, Internet Communication Manager and SAP Content Server
SAP_SE SAP Web Dispatcher, Internet Communication Manager and SAP Content Server
+5个
|
CVE NVD | |
| CVE-2025-42876 |
Missing Authorization Check in SAP S/4 HANA Private Cloud (Financials General Ledger)
|
HIGH | 7.1 | 2025-12-09 |
SAP_SE SAP S/4 HANA Private Cloud (Financials General Ledger)
SAP_SE SAP S/4 HANA Private Cloud (Financials General Ledger)
+4个
|
CVE NVD | |
| CVE-2025-42875 |
Missing Authentication check in SAP NetWeaver Internet Communication Framework
|
MEDIUM | 6.6 | 2025-12-09 |
SAP_SE SAP NetWeaver Internet Communication Framework
SAP_SE SAP NetWeaver Internet Communication Framework
+12个
|
CVE NVD | |
| CVE-2025-42874 |
Denial of service (DOS) in SAP NetWeaver (remote service for Xcelsius)
|
HIGH | 7.9 | 2025-12-09 |
SAP_SE SAP NetWeaver (remote service for Xcelsius)
SAP_SE SAP NetWeaver (remote service for Xcelsius)
+3个
|
CVE NVD | |
| CVE-2025-42873 |
Denial of Service (DoS) in SAPUI5 framework (Markdown-it component)
|
MEDIUM | 5.9 | 2025-12-09 |
SAP_SE SAPUI5 framework (Markdown-it component)
SAP_SE SAPUI5 framework (Markdown-it component)
+2个
|
CVE NVD | |
| CVE-2025-42872 |
Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal
|
MEDIUM | 6.1 | 2025-12-09 |
SAP_SE SAP NetWeaver Enterprise Portal
|
CVE NVD | |
| CVE-2025-66622 |
Matrix Rust SDK 安全漏洞
|
LOW | 1.3 | 2025-12-09 |
matrix-org matrix-rust-sdk
|
CVE NVD +1 | |
| CVE-2025-66568 |
Ruby SAML 数据伪造问题漏洞
|
CRITICAL | 9.3 | 2025-12-09 |
SAML-Toolkits ruby-saml
onelogin ruby-saml
|
CVE NVD +1 | |
| CVE-2025-66567 |
OneLogin ruby-saml 数据伪造问题漏洞
|
CRITICAL | 9.3 | 2025-12-09 |
SAML-Toolkits ruby-saml
onelogin ruby-saml
|
CVE NVD +1 | |
| CVE-2025-66565 |
Fiber Utils 安全特征问题漏洞
|
CRITICAL | 9.3 | 2025-12-09 |
gofiber utils
gofiber utils
+2个
|
CVE NVD +1 | |
| CVE-2025-66508 |
1Panel IP Access Control Bypass via Untrusted X-Forwarded-For Headers
|
MEDIUM | 6.5 | 2025-12-09 |
1Panel-dev 1Panel
fit2cloud 1panel
|
CVE NVD | |
| CVE-2025-14286 |
Tenda AC9 Configuration File DownloadCfg.jpg information disclosure
|
MEDIUM | 6.9 | 2025-12-09 |
Tenda AC9
tenda ac9_firmware
|
CVE NVD | |
| CVE-2023-53866 |
ASoC: soc-compress: Reposition and add pcm_mutex
|
MEDIUM | -1.0 | 2025-12-09 |
Linux Linux
Linux Linux
|
CVE NVD | |
| CVE-2023-53865 |
Linux kernel 安全漏洞
|
UNKNOWN | N/A | 2025-12-09 |
Linux Linux
Linux Linux
|
CVE NVD +1 | |
| CVE-2023-53864 |
Linux kernel 安全漏洞
|
UNKNOWN | N/A | 2025-12-09 |
Linux Linux
Linux Linux
|
CVE NVD +1 | |
| CVE-2023-53863 |
netlink: do not hard code device address lenth in fdb dumps
|
MEDIUM | -1.0 | 2025-12-09 |
Linux Linux
Linux Linux
|
CVE NVD |