CWE-22 对路径名的限制不恰当(路径遍历) 类弱点 3364 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-31978 | Siemens SINEC NMS 路径遍历漏洞 — SINEC NMS | 7.6 | High | 2024-04-09 |
| CVE-2023-52544 | Huawei HarmonyOS 安全漏洞 — HarmonyOS | 7.5AI | HighAI | 2024-04-08 |
| CVE-2024-30417 | Huawei HarmonyOS 安全漏洞 — HarmonyOS | 6.5AI | MediumAI | 2024-04-07 |
| CVE-2024-0406 | archiver 路径遍历漏洞 | 6.1 | Medium | 2024-04-06 |
| CVE-2024-22328 | IBM Maximo Application Suite 安全漏洞 — Maximo Application Suite | 7.5 | High | 2024-04-06 |
| CVE-2024-31851 | CData Sync 安全漏洞 — Sync | 8.6 | High | 2024-04-05 |
| CVE-2024-31850 | CData Arc 安全漏洞 — Arc | 8.6 | High | 2024-04-05 |
| CVE-2024-31849 | CData Connect 安全漏洞 — Connect | 9.8 | Critical | 2024-04-05 |
| CVE-2024-31848 | CData API Server 安全漏洞 — API Server | 9.8 | Critical | 2024-04-05 |
| CVE-2024-31220 | Sunshine 安全漏洞 — Sunshine | 7.3 | High | 2024-04-05 |
| CVE-2024-3311 | Dreamer CMS 路径遍历漏洞 — CMS | 6.3 | Medium | 2024-04-04 |
| CVE-2024-30270 | mailcow 安全漏洞 — mailcow-dockerized | 6.2 | Medium | 2024-04-04 |
| CVE-2024-30254 | MesonLSP 安全漏洞 — mesonlsp | 5.8 | Medium | 2024-04-04 |
| CVE-2024-25693 | Esri Portal For ArcGIS 路径遍历漏洞 — Portal for ArcGIS | 9.9 | Critical | 2024-04-04 |
| CVE-2016-15038 | NUUO NVRmini 路径遍历漏洞 — NVRmini 2 | 6.5 | Medium | 2024-04-01 |
| CVE-2024-30492 | WordPress Plugin Export and Import Users and Customers 路径遍历漏洞 — Import Export WordPress Users | 4.3 | Medium | 2024-03-29 |
| CVE-2024-3078 | Qdrant 路径遍历漏洞 — Qdrant | 5.5 | Medium | 2024-03-29 |
| CVE-2024-0980 | Okta Verify 安全漏洞 — Okta Verify for Windows | 8.8AI | HighAI | 2024-03-27 |
| CVE-2023-0582 | 编号已被CVE保留 — access management | 8.1 | High | 2024-03-27 |
| CVE-2024-2203 | WordPress Plugin The Plus Addons for Elementor 安全漏洞 — The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce | 6.4 | Medium | 2024-03-27 |
| CVE-2024-2210 | WordPress Plugin The Plus Addons for Elementor 安全漏洞 — The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce | 6.4 | Medium | 2024-03-27 |
| CVE-2024-25136 | AutomationDirect C-MORE EA9 HMI 路径遍历漏洞 — C-MORE EA9 HMI EA9-T6CL | 7.5 | High | 2024-03-26 |
| CVE-2023-41973 | Zscaler Client Connector 安全漏洞 — Client Connector | 7.3 | High | 2024-03-26 |
| CVE-2024-29196 | phpMyFAQ 安全漏洞 — phpMyFAQ | 3.8 | Low | 2024-03-26 |
| CVE-2024-2227 | Oracle JavaServer Faces 路径遍历漏洞 — IdentityIQ | 10.0 | Critical | 2024-03-22 |
| CVE-2024-25567 | Delta Electronics DIAEnergie 路径遍历漏洞 — DIAEnergie | 8.1 | High | 2024-03-21 |
| CVE-2024-28171 | Delta Electronics DIAEnergie 路径遍历漏洞 — DIAEnergie | 8.1 | High | 2024-03-21 |
| CVE-2024-27921 | Grav 安全漏洞 — grav | 8.8 | High | 2024-03-21 |
| CVE-2024-29180 | webpack-dev-middleware 安全漏洞 — webpack-dev-middleware | 7.4 | High | 2024-03-21 |
| CVE-2023-41877 | GeoServer 路径遍历漏洞 — geoserver | 7.2 | High | 2024-03-20 |
CWE-22(对路径名的限制不恰当(路径遍历)) 是常见的弱点类别,本平台收录该类弱点关联的 3364 条 CVE 漏洞。