高危漏洞库
阿里云安全专家专业评估分析,帮助客户精准研判高危风险漏洞。
AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
---|---|---|---|---|
AVD-2024-23321 | Apache RocketMQ 敏感信息泄露漏洞(CVE-2024-23321) | 2024-07-22 | ||
AVD-2024-36991 | Splunk Enterprise Windows平台 modules/messaging 目录遍历漏洞(CVE-2024-36991) | 2024-07-02 | ||
AVD-2024-36401 | GeoServer property 表达式注入代码执行漏洞(CVE-2024-36401) | 2024-07-02 | ||
AVD-2024-6387 | OpenSSH Server 远程代码执行漏洞(CVE-2024-6387) | 2024-07-01 | ||
AVD-2024-37032 | Ollama 目录遍历致代码执行漏洞(CVE-2024-37032) | 2024-06-25 | ||
AVD-2024-32030 | UI for Apache Kafka 后台 jmx jndi 代码执行漏洞(CVE-2024-32030) | 2024-06-20 | ||
AVD-2024-34102 | Magento estimate-shipping-methods XXE漏洞(CVE-2024-34102) | 2024-06-13 | ||
AVD-2024-36412 | SuiteCRM delegate SQL注入漏洞(CVE-2024-36412) | 2024-06-11 | ||
AVD-2024-4577 | PHP CGI Windows平台远程代码执行漏洞(CVE-2024-4577) | 2024-06-07 | ||
AVD-2024-28995 | SolarWinds Serv-U FTP 目录遍历文件读取漏洞(CVE-2024-28995) | 2024-06-06 | ||
AVD-2024-0087 | Triton Inference Server 远程代码执行漏洞(CVE-2024-0087) | 2024-06-06 | ||
AVD-2024-36522 | Apache Wicket XSLT 代码执行漏洞(CVE-2024-36522) | 2024-06-05 | ||
AVD-2024-36104 | Apache OFBiz 目录遍历致代码执行漏洞(CVE-2024-36104) | 2024-06-03 | ||
AVD-2024-29824 | Ivanti EPM EventHandler SQL注入致命令执行漏洞(CVE-2024-29824) | 2024-06-01 | ||
AVD-2024-23692 | Rejetto HFS 2.x 远程代码执行漏洞(CVE-2024-23692) | 2024-05-31 | ||
AVD-2024-24919 | CheckPoint Gateway 文件读取漏洞(CVE-2024-24919) | 2024-05-29 | ||
AVD-2024-21683 | Atlassian Confluence 登陆后代码执行漏洞(CVE-2024-21683) | 2024-05-22 | ||
AVD-2024-22120 | Zabbix Server Audit Log SQL 注入漏洞 (CVE-2024-22120) | 2024-05-17 | ||
AVD-2024-4956 | Nexus Repository 3 目录遍历与文件读取漏洞(CVE-2024-4956) | 2024-05-17 | ||
AVD-2024-32640 | Mura CMS processAsyncObject SQL注入漏洞(CVE-2024-32640) | 2024-05-09 | ||
AVD-2024-26026 | F5 BIG-IP Next Central Manager SQL注入漏洞(CVE-2024-26026) | 2024-05-08 | ||
AVD-2024-32113 | Apache OFBiz 目录遍历致代码执行漏洞(CVE-2024-32113) | 2024-05-08 | ||
AVD-2024-1723189 | 瑞友天翼应用虚拟化系统 appsave SQL注入漏洞 | 2024-05-07 | ||
AVD-2024-1723009 | 瑞友天翼应用虚拟化系统 hmrao.php SQL注入致代码执行漏洞 | 2024-05-06 | ||
AVD-2024-32114 | Apache ActiveMQ Jolokia REST API 未授权访问漏洞(CVE-2024-32114) | 2024-05-02 | ||
AVD-2024-1720490 | ZenTao PMS 项目管理系统身份认证绕过漏洞 | 2024-04-25 | ||
AVD-2024-1720287 | Primeton EOS Platform jmx 远程代码执行漏洞 | 2024-04-24 | ||
AVD-2024-4040 | CrushFTP 认证绕过模板注入漏洞(CVE-2024-4040) | 2024-04-23 | ||
AVD-2024-27348 | Apache HugeGraph-Server <1.3.0 Gremlin命令执行漏洞(CVE-2024-27348) | 2024-04-22 | ||
AVD-2024-1719112 | kkFileView 任意文件上传致远程代码执行漏洞 | 2024-04-17 |