浏览 3,287+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-7089 | code-projects Home Service System Appointment Booking booking.php cross site scripting | code-projects | Home Service System | Medium | 4.3 | 2026-04-27 05:00:18 | Deep Dive |
| CVE-2026-5935 | TSSC/IMC is vulnerable to OS Command Injection | IBM | Total Storage Service Console (TSSC) / TS4500 IMC | High | 7.3 | 2026-04-22 23:30:08 | Deep Dive |
| CVE-2026-35252 | Oracle Security Service 安全漏洞 | Oracle Corporation | Oracle Security Service | Medium | 6.4 | 2026-04-21 20:35:55 | Deep Dive |
| CVE-2025-31981 | HCL BigFix Service Management (SM) Discovery is vulnerable to unenforced encryption | HCLSoftware | BigFix Service Management (SM) | Medium | 5.3 | 2026-04-21 14:26:39 | Deep Dive |
| CVE-2025-31958 | HCL BigFix Service Management (SM) is susceptible to HTTP Request Smuggling | HCLSoftware | BigFix Service Management (SM) | Low | 3.7 | 2026-04-21 13:59:15 | Deep Dive |
| CVE-2026-1636 | Lenovo Service Bridge 安全漏洞 | Lenovo | Service Bridge | Medium | 6.7 | 2026-04-15 12:27:55 | Deep Dive |
| CVE-2026-32176 | SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | Medium | 6.7 | 2026-04-14 16:58:32 | Deep Dive |
| CVE-2026-32167 | SQL Server Elevation of Privilege Vulnerability | Microsoft | Microsoft SQL Server 2016 Service Pack 3 (GDR) | Medium | 6.7 | 2026-04-14 16:57:30 | Deep Dive |
| CVE-2026-27679 | Missing Authorization check in SAP S/4HANA Frontend OData Service (Manage Reference Structures) | SAP_SE | SAP S/4HANA Frontend OData Service (Manage Reference Structures) | Medium | 6.5 | 2026-04-14 00:07:45 | Deep Dive |
| CVE-2026-27678 | Missing Authorization check in SAP S/4HANA Backend OData Service (Manage Reference Structures) | SAP_SE | SAP S/4HANA Backend OData Service (Manage Reference Structures) | Medium | 6.5 | 2026-04-14 00:07:33 | Deep Dive |
| CVE-2026-27677 | Missing Authorization check in SAP S/4HANA OData Service (Manage Reference Equipment) | SAP_SE | SAP S/4HANA OData Service (Manage Reference Equipment) | Medium | 6.5 | 2026-04-14 00:07:23 | Deep Dive |
| CVE-2026-27676 | Missing Authorization check in SAP S/4HANA OData Service (Manage Technical Object Structures) | SAP_SE | SAP S/4HANA OData Service (Manage Technical Object Structures) | Medium | 4.3 | 2026-04-14 00:07:13 | Deep Dive |
| CVE-2026-33105 | Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability | Microsoft | Azure Kubernetes Service | Critical | 10.0 | 2026-04-02 23:26:59 | Deep Dive |
| CVE-2026-5121 | Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing | Red Hat | Red Hat Enterprise Linux 7 Extended Lifecycle Support | High | 7.5 | 2026-03-30 07:47:29 | Deep Dive |
| CVE-2026-3217 | SAML SSO - Service Provider - Critical - Cross-site scripting - SA-CONTRIB-2026-018 | Drupal | SAML SSO - Service Provider | 中危 | - | 2026-03-25 15:24:31 | Deep Dive |
| CVE-2026-33010 | mcp-memory-service's Wildcard CORS with Credentials Enables Cross-Origin Memory Theft | doobidoo | mcp-memory-service | High | 8.1 | 2026-03-20 18:33:39 | Deep Dive |
| CVE-2026-22895 | QuFTP Service | QNAP Systems Inc. | QuFTP Service | 中危 | - | 2026-03-20 16:21:41 | Deep Dive |
| CVE-2026-4424 | Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing | Red Hat | Red Hat Enterprise Linux 10 | High | 7.5 | 2026-03-19 13:50:27 | Deep Dive |
| CVE-2026-4396 | Devolutions Hub Reporting Service 安全漏洞 | Devolutions | Hub Reporting Service | 高危 | - | 2026-03-18 19:41:35 | Deep Dive |
| CVE-2026-3278 | XSS Vulnerability discovered in OpenText™ ZENworks Service Desk. | OpenText™ | ZENworks Service Desk | 高危 | - | 2026-03-18 13:49:29 | Deep Dive |