浏览 1,584+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。
| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-3259 | Sensitive Data Disclosure in BigQuery via Materialized View Error Messages | Google Cloud | BigQuery | - | - | 2026-04-23 08:35:04 | Deep Dive |
| CVE-2025-15625 | Unauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud Server | Sparx Systems Pty Ltd. | Sparx Pro Cloud Server | - | - | 2026-04-17 08:39:00 | Deep Dive |
| CVE-2025-15624 | Plaintext Storage of a Password in Sparx Pro Cloud Server. | Sparx Systems Pty Ltd. | Sparx Pro Cloud Server | - | - | 2026-04-17 08:38:37 | Deep Dive |
| CVE-2025-15623 | Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user | Sparx Systems Pty Ltd. | Sparx Pro Cloud Server | - | - | 2026-04-17 08:37:28 | Deep Dive |
| CVE-2026-22734 | Cloud Foundry UAA SAML 2.0 Signature Bypass | Cloud Foundry | UUA | High | 8.6 | 2026-04-16 23:33:44 | Deep Dive |
| CVE-2026-20203 | Improper Access Control in Data Model Acceleration in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 4.3 | 2026-04-15 15:17:56 | Deep Dive |
| CVE-2026-20204 | Improper Handling and Insufficient Isolation of Specific Temporary Files in Splunk Enterprise | Splunk | Splunk Enterprise | High | 7.1 | 2026-04-15 15:17:54 | Deep Dive |
| CVE-2026-20202 | Improper Input Validation during User Account Creation in Splunk Enterprise | Splunk | Splunk Enterprise | Medium | 6.6 | 2026-04-15 15:17:44 | Deep Dive |
| CVE-2025-68649 | Fortinet多款产品 路径遍历漏洞 | Fortinet | FortiManager Cloud | Medium | 6.0 | 2026-04-14 15:39:46 | Deep Dive |
| CVE-2026-39813 | Fortinet FortiSandbox 安全漏洞 | Fortinet | FortiSandbox | Critical | 9.8 | 2026-04-14 15:38:30 | Deep Dive |
| CVE-2025-61848 | Fortinet多款产品 SQL注入漏洞 | Fortinet | FortiManager | High | 7.2 | 2026-04-14 15:38:24 | Deep Dive |
| CVE-2026-22828 | Fortinet FortiManager Cloud和Fortinet FortiAnalyzer Cloud 安全漏洞 | Fortinet | FortiAnalyzer Cloud | High | 8.1 | 2026-04-14 15:38:23 | Deep Dive |
| CVE-2026-25691 | Fortinet FortiSandbox 路径遍历漏洞 | Fortinet | FortiSandbox PaaS | Medium | 6.7 | 2026-04-14 15:38:16 | Deep Dive |
| CVE-2026-4914 | Ivanti Neurons for ITSM 跨站脚本漏洞 | Ivanti | Neurons for ITSM (On-Premise) | Medium | 5.4 | 2026-04-14 14:15:48 | Deep Dive |
| CVE-2026-4913 | Ivanti Neurons for ITSM 安全漏洞 | Ivanti | Neurons for ITSM (On-Premise) | Medium | 5.7 | 2026-04-14 14:10:31 | Deep Dive |
| CVE-2026-34256 | Missing Authorization check in SAP ERP and SAP S/4 HANA (Private Cloud and On-Premise) | SAP_SE | SAP ERP and SAP S/4 HANA (Private Cloud and On-Premise) | High | 7.1 | 2026-04-14 00:08:27 | Deep Dive |
| CVE-2026-27673 | Missing Authorization Check in SAP S/4HANA (Private Cloud and On-Premise) | SAP_SE | SAP S/4HANA (Private Cloud and On-Premise) | Medium | 4.9 | 2026-04-14 00:06:38 | Deep Dive |
| CVE-2026-4810 | Remote Code Execution in Google Agent Development Kit (ADK) | Google Cloud | Agent Development Kit (ADK) | 超危 | - | 2026-04-13 08:35:57 | Deep Dive |
| CVE-2026-22750 | SSL bundle configuration silently bypassed in Spring Cloud Gateway | VMware | Spring Cloud Gateway | High | 7.5 | 2026-04-10 07:32:31 | Deep Dive |
| CVE-2026-3568 | MStore API <= 4.18.3 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary User Meta Update | inspireui | MStore API – Create Native Android & iOS Apps On The Cloud | Medium | 4.3 | 2026-04-09 02:25:07 | Deep Dive |