浏览 300+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-32650 | Anviz CrossChex Standard Algorithm Downgrade | Anviz | Anviz CrossChex Standard | High | 7.5 | 2026-04-17 19:52:45 | Deep Dive |
| CVE-2026-40434 | Anviz CrossChex Standard Improper Verification of Source of a Communication Channel | Anviz | Anviz CrossChex Standard | High | 8.1 | 2026-04-17 19:49:28 | Deep Dive |
| CVE-2026-5397 | Vulnerability Related to an Uncontrolled Search Path Element in a UPS Management Application | OMRON SOCIAL SOLUTIONS CO., Ltd. | PowerAttendant Standard Edition | High | 7.8 | 2026-04-15 04:11:30 | Deep Dive |
| CVE-2026-32280 | Unexpected work during chain building in crypto/x509 | Go standard library | crypto/x509 | - | - | 2026-04-08 01:06:59 | Deep Dive |
| CVE-2026-32283 | Unauthenticated TLS 1.3 KeyUpdate record can cause persistent connection retention and DoS in crypto/tls | Go standard library | crypto/tls | - | - | 2026-04-08 01:06:58 | Deep Dive |
| CVE-2026-32281 | Inefficient policy validation in crypto/x509 | Go standard library | crypto/x509 | - | - | 2026-04-08 01:06:58 | Deep Dive |
| CVE-2026-32288 | Unbounded allocation for old GNU sparse in archive/tar | Go standard library | archive/tar | - | - | 2026-04-08 01:06:57 | Deep Dive |
| CVE-2026-33810 | Case-sensitive excludedSubtrees name constraints cause Auth Bypass in crypto/x509 | Go standard library | crypto/x509 | - | - | 2026-04-08 01:06:57 | Deep Dive |
| CVE-2026-32289 | JsBraceDepth Context Tracking Bugs (XSS) in html/template | Go standard library | html/template | - | - | 2026-04-08 01:06:56 | Deep Dive |
| CVE-2026-32282 | TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix | Go standard library | internal/syscall/unix | - | - | 2026-04-08 01:06:56 | Deep Dive |
| CVE-2025-36187 | Multiple Security vulnerabilities affecting IBM Knowledge Catalog Standard Cartridge | IBM | Knowledge Catalog Standard Cartridge | Medium | 4.4 | 2026-03-25 21:26:47 | Deep Dive |
| CVE-2026-27142 | URLs in meta content attribute actions are not escaped in html/template | Go standard library | html/template | 中危 | - | 2026-03-06 21:28:15 | Deep Dive |
| CVE-2026-27139 | FileInfo can escape from a Root in os | Go standard library | os | 中危 | - | 2026-03-06 21:28:14 | Deep Dive |
| CVE-2026-25679 | Incorrect parsing of IPv6 host literals in net/url | Go standard library | net/url | 高危 | - | 2026-03-06 21:28:14 | Deep Dive |
| CVE-2026-27138 | Panic in name constraint checking for malformed certificates in crypto/x509 | Go standard library | crypto/x509 | 高危 | - | 2026-03-06 21:28:14 | Deep Dive |
| CVE-2026-27137 | Incorrect enforcement of email constraints in crypto/x509 | Go standard library | crypto/x509 | 高危 | - | 2026-03-06 21:28:14 | Deep Dive |
| CVE-2025-32008 | Intel AMT和Intel Standard Manageability 缓冲区错误漏洞 | - | Intel(R) AMT and Intel(R) Standard Manageability | High | 8.6 | 2026-02-10 16:25:45 | Deep Dive |
| CVE-2025-20080 | Intel AMT和Intel Standard Manageability 代码问题漏洞 | - | Intel(R) AMT and Intel(R) Standard Manageability | Medium | 6.8 | 2026-02-10 16:25:08 | Deep Dive |
| CVE-2025-68121 | Unexpected session resumption in crypto/tls | Go standard library | crypto/tls | - | - | 2026-02-05 17:48:44 | Deep Dive |
| CVE-2025-22873 | Improper access to parent directory of root in os | Go standard library | os | - | - | 2026-02-04 23:05:25 | Deep Dive |