CWE-22 对路径名的限制不恰当(路径遍历) 类弱点 3364 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-23479 | SolarWinds Access Rights Manager 路径遍历漏洞 — Access Rights Manager | 9.6 | Critical | 2024-02-15 |
| CVE-2024-26261 | HGiga OAKlouds 路径遍历漏洞 — OAKlouds | 9.8 | Critical | 2024-02-15 |
| CVE-2024-25620 | Helm 路径遍历漏洞 — helm | 6.4 | Medium | 2024-02-14 |
| CVE-2024-23607 | F5 F5OS 安全漏洞 — F5OS - Appliance | 5.5 | Medium | 2024-02-14 |
| CVE-2023-5123 | Grafana 安全漏洞 — grafana-json-datasource | 8.0 | High | 2024-02-14 |
| CVE-2024-25125 | Digdag 路径遍历漏洞 — digdag | 5.3 | Medium | 2024-02-14 |
| CVE-2024-1485 | registry-support 安全漏洞 | 8.0 | High | 2024-02-13 |
| CVE-2024-1082 | GitHub Enterprise Server 安全漏洞 — Enterprise Server | 6.3 | Medium | 2024-02-13 |
| CVE-2024-1163 | Mapshaper 路径遍历漏洞 — mbloch/mapshaper | 9.8 | - | 2024-02-13 |
| CVE-2024-23833 | OpenRefine 路径遍历漏洞 — OpenRefine | 7.5 | High | 2024-02-12 |
| CVE-2024-1433 | KDE Workspace 路径遍历漏洞 — Plasma Workspace | 3.1 | Low | 2024-02-11 |
| CVE-2024-0849 | Leanote 路径遍历漏洞 — Leanote | 5.0 | Medium | 2024-02-07 |
| CVE-2024-24591 | Allegro 路径遍历漏洞 — ClearML | 8.0 | High | 2024-02-06 |
| CVE-2024-23673 | Apache Sling 路径遍历漏洞 — Apache Sling Servlets Resolver | 8.5 | High | 2024-02-06 |
| CVE-2024-0964 | Gradio 路径遍历漏洞 — gradio-app/gradio | 9.8 | - | 2024-02-05 |
| CVE-2024-0380 | WordPress plugin WP Recipe Maker 安全漏洞 — WP Recipe Maker | 5.4 | Medium | 2024-02-05 |
| CVE-2024-0221 | WordPress plugin Photo Gallery by 10Web 安全漏洞 — Photo Gallery by 10Web – Mobile-Friendly Image Gallery | 9.1 | Critical | 2024-02-05 |
| CVE-2023-7077 | Sharp NEC Displays 路径遍历漏洞 — P403, P463, P553, P703, P801, X554UN, X464UN, X554UNS, X464UNV, X474HB, X464UNS, X554UNV, X555UNS, X555UNV, X754HB, X554HB, E705, E805, E905, UN551S, UN551VS, X551UHD, X651UHD, X841UHD, X981UHD, MD551C8 | 9.8 | - | 2024-02-05 |
| CVE-2023-45027 | QNAP 多款产品 路径遍历漏洞 — QTS | 5.5 | Medium | 2024-02-02 |
| CVE-2023-45026 | QNAP 多款产品路径遍历漏洞 — QTS | 5.5 | Medium | 2024-02-02 |
| CVE-2023-38019 | IBM QRadar SOAR Plug-in 路径遍历漏洞 — SOAR QRadar Plugin App | 8.1 | High | 2024-02-02 |
| CVE-2024-21852 | Rapid Software Rapid SCADA 路径遍历漏洞 — Rapid SCADA | 8.8 | High | 2024-02-01 |
| CVE-2024-24756 | Crafatar 路径遍历漏洞 — crafatar | 7.5 | High | 2024-02-01 |
| CVE-2024-24569 | Java Code Security Toolkit 路径遍历漏洞 — java-security-toolkit | 5.4 | Medium | 2024-02-01 |
| CVE-2024-23652 | BuildKit 路径遍历漏洞 — buildkit | 10.0 | Critical | 2024-01-31 |
| CVE-2024-24579 | stereoscope 路径遍历漏洞 — stereoscope | 5.3 | Medium | 2024-01-31 |
| CVE-2024-24565 | CrateDB 路径遍历漏洞 — crate | 5.7 | Medium | 2024-01-30 |
| CVE-2024-23334 | aiohttp 路径遍历漏洞 — aiohttp | 5.9 | Medium | 2024-01-29 |
| CVE-2024-23827 | Nginx UI 路径遍历漏洞 — nginx-ui | 9.8 | Critical | 2024-01-29 |
| CVE-2024-23822 | Thruk 路径遍历漏洞 — Thruk | 5.4 | Medium | 2024-01-29 |
CWE-22(对路径名的限制不恰当(路径遍历)) 是常见的弱点类别,本平台收录该类弱点关联的 3364 条 CVE 漏洞。