快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 350655
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-22642 |
An open redirect vulnerability has been identified in Grafana OSS organization switching functionali...
|
MEDIUM | 4.2 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-22641 |
This vulnerability in Grafana's datasource proxy API allows authorization checks to be bypassed by a...
|
MEDIUM | 5.0 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-22640 |
An access control vulnerability was discovered in Grafana OSS where an Organization administrator co...
|
MEDIUM | 5.5 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-22639 |
Grafana is an open-source platform for monitoring and observability. The Grafana Alerting DingDing i...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-22638 |
A cross-site scripting (XSS) vulnerability exists in Grafana caused by combining a client path trave...
|
HIGH | 8.3 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-22637 |
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permission...
|
MEDIUM | 6.8 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-0713 |
A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows authenticated users t...
|
HIGH | 8.3 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-0712 |
An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve X...
|
HIGH | 7.6 | 2026-01-15 |
SICK AG Incoming Goods Suite
|
CVE NVD | |
| CVE-2026-22920 |
The device's passwords have not been adequately salted, making them vulnerable to password extractio...
|
LOW | 3.7 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22919 |
An attacker with administrative access may inject malicious content into the login page, potentially...
|
LOW | 3.8 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22918 |
An attacker may exploit missing protection against clickjacking by tricking users into performing un...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22917 |
Improper input handling in a system endpoint may allow attackers to overload resources, causing a de...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22916 |
An attacker with low privileges may be able to trigger critical system functions such as reboot or f...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22915 |
An attacker with low privileges may be able to read files from specific directories on the device, p...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22914 |
An attacker with limited permissions may still be able to write files to specific locations on the d...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22913 |
Improper handling of a URL parameter may allow attackers to execute code in a user's browser after l...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22912 |
Improper validation of a login parameter may allow attackers to redirect users to malicious websites...
|
MEDIUM | 4.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22911 |
Firmware update files may expose password hashes for system accounts, which could allow a remote att...
|
MEDIUM | 5.3 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22910 |
The device is deployed with weak and publicly known default passwords for certain hidden user levels...
|
HIGH | 7.5 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD | |
| CVE-2026-22909 |
Certain system functions may be accessed without proper authorization, allowing attackers to start, ...
|
HIGH | 7.5 | 2026-01-15 |
SICK AG TDC-X401GL
|
CVE NVD |