搜索结果
关于「cxf」的漏洞数据
| AVD编号 | 漏洞名称 | 漏洞类型 | 披露时间 | 漏洞状态 |
|---|---|---|---|---|
| AVD-2026-50645 | Apache CXF附件头数量无限制DoS漏洞(CVE-2026-50645) | 2026-06-12 | ||
| AVD-2026-50634 | Apache CXF JwsJsonContainerRequestFilter 签名验证绕过漏洞(CVE-2026-50634) | 2026-06-12 | ||
| AVD-2026-50633 | Apache CXF JCA模块JNDI注入漏洞(CVE-2026-50633) | 2026-06-12 | ||
| AVD-2026-50632 | Apache CXF JMS JNDI注入漏洞(CVE-2026-50632) | 2026-06-12 | ||
| AVD-2026-50631 | Apache CXF AbstractOAuthDataProvider刷新令牌竞态条件漏洞(CVE-2026-50631) | 2026-06-12 | ||
| AVD-2026-50630 | Apache CXF OAuth2 CRLF注入漏洞(CVE-2026-50630) | 2026-06-12 | ||
| AVD-2026-50629 | Apache CXF OAuth2 日志注入漏洞(CVE-2026-50629) | 2026-06-12 | ||
| AVD-2026-50628 | Apache CXF OAuthRequestFilter IP地址校验逻辑错误漏洞(CVE-2026-50628) | 2026-06-12 | ||
| AVD-2026-50627 | Apache CXF JwtAccessTokenValidator 'aud' 声明验证缺失漏洞(CVE-2026-50627) | 2026-06-12 | ||
| AVD-2026-50623 | Apache CXF OAuth2 TokenIntrospectionService 认证绕过漏洞(CVE-2026-50623) | 2026-06-12 | ||
| AVD-2026-49875 | Apache CXF XXE 外部实体解析漏洞(CVE-2026-49875) | 2026-06-12 | ||
| AVD-2026-44417 | Apache CXF:CVE-2025-48913 的不完整修复(不受信任的 JMS 配置可能导致 RCE)(CVE-2026-44417) | 2026-05-22 | ||
| AVD-2026-44618 | Apache CXF:WS-Transfer 功能中的 XXE 漏洞 (CVE-2026-44618) | 2026-05-22 | ||
| AVD-2026-44930 | Apache CXF:XKMS LDAP 存储库中的 LDAP 注入漏洞 (CVE-2026-44930) | 2026-05-22 | ||
| AVD-2025-48913 | Apache CXF 恶意JMS配置导致JNDI注入漏洞(CVE-2025-48913) | 2025-08-08 | ||
| AVD-2025-48795 | Apache CXF:拒绝日志中的服务和敏感数据暴露(CVE-2025-48795) | 2025-07-15 | ||
| AVD-2025-23184 | Apache CXF:临时文件拒绝服务漏洞(CVE-2025-23184) | 2025-01-21 | ||
| AVD-2024-41172 | Apache CXF:CXF HTTP 客户端中的内存消耗不受限制(CVE-2024-41172) | 2024-07-19 | ||
| AVD-2024-32007 | JOSE 中的 Apache CXF 拒绝服务漏洞(CVE-2024-32007) | 2024-07-19 | ||
| AVD-2024-29736 | Apache CXF:通过 WADL 样式表参数的 SSRF 漏洞(CVE-2024-29736) | 2024-07-19 | ||
| AVD-2024-28752 | Apache CXF Aegis databinding SSRF(CVE-2024-28752) | 2024-03-15 | ||
| AVD-2022-46364 | Apache CXF <3.5.5 SSRF 漏洞 | 2022-12-14 | ||
| AVD-2022-46363 | Apache CXF <3.5.5 存在远程目录列出漏洞 | 2022-12-13 | ||
| AVD-2021-30468 | apache cxf 未加控制的资源消耗(资源穷尽) | 2021-06-16 | ||
| AVD-2021-22696 | apache cxf 未加控制的资源消耗(资源穷尽) | 2021-04-02 | ||
| AVD-2020-13954 | Apache CXF跨站脚本漏洞 | 2020-11-13 | ||
| AVD-2020-1954 | Apache CXF信息泄漏漏洞 | 2020-04-02 | ||
| AVD-2011-2487 | apache cxf 使用已被攻破或存在风险的密码学算法 | 2020-03-12 | ||
| AVD-2019-12423 | Open Id Connect令牌服务没有正确验证客户端Id | 2020-01-17 | ||
| AVD-2019-17573 | Apache CXF Endpoint /services 反射跨站点脚本漏洞 | 2020-01-17 |