CWE-304 认证中关键步骤缺失 类弱点 27 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | 发布日期 |
|---|---|---|---|---|
| CVE-2026-40542 | Apache HttpClient 安全漏洞 — Apache HttpClient | 9.1AI | CriticalAI | 2026-04-22 |
| CVE-2025-43798 | Liferay DXP 安全漏洞 — DXP | 8.8AI | HighAI | 2025-09-15 |
| CVE-2025-24322 | Tenda AC6 安全漏洞 — AC6 V5.0 | 8.1 | High | 2025-08-20 |
| CVE-2025-55138 | LinkJoin 安全漏洞 — LinkJoin | 7.4 | High | 2025-08-07 |
| CVE-2024-52965 | Fortinet FortiOS和Fortinet FortiProxy 安全漏洞 — FortiOS | 6.8 | High | 2025-07-08 |
| CVE-2025-5715 | Signal App 安全漏洞 — App | 3.8 | Low | 2025-06-06 |
| CVE-2025-43014 | JetBrains Toolbox App 安全漏洞 — Toolbox App | 6.1 | Medium | 2025-04-17 |
| CVE-2024-9216 | ChuanhuChatGPT 安全漏洞 — gaizhenbiao/chuanhuchatgpt | 7.1 | - | 2025-03-20 |
| CVE-2024-12048 | SuperAGI 安全漏洞 — transformeroptimus/superagi | 8.2 | - | 2025-03-20 |
| CVE-2024-8954 | Composio 安全漏洞 — composiohq/composio | 9.8 | - | 2025-03-20 |
| CVE-2024-11302 | LoLLMs 安全漏洞 — parisneo/lollms | 9.1 | - | 2025-03-20 |
| CVE-2024-12136 | Elfatek Elektronics ANKA JPD00028 安全漏洞 — ANKA JPD-00028 | 6.9 | Medium | 2025-03-19 |
| CVE-2024-20153 | MediaTek Chipsets 安全漏洞 — MT2737, MT6989, MT6991, MT7925, MT8365, MT8518S, MT8532, MT8666, MT8667, MT8673, MT8676, MT8678, MT8755, MT8766, MT8768, MT8775, MT8781, MT8786, MT8788, MT8796, MT8798, MT8893 | 7.5 | - | 2025-01-06 |
| CVE-2024-45764 | Dell Enterprise SONiC OS 安全漏洞 — Enterprise SONiC OS | 9.0 | Critical | 2024-11-08 |
| CVE-2024-7745 | Progress Software Ipswitch WS_FTP Server 安全漏洞 — WS_FTP Server | 6.5 | Medium | 2024-08-28 |
| CVE-2024-2172 | WordPress Plugin Malware Scanner 安全漏洞 — Web Application Firewall – website security | 9.8 | Critical | 2024-03-13 |
| CVE-2023-3629 | Red Hat Infinispan 安全漏洞 — Red Hat Data Grid 8.4.4 | 4.3 | Medium | 2023-12-18 |
| CVE-2023-3628 | Red Hat Infinispan 安全漏洞 — Red Hat Data Grid 8.4.4 | 6.5 | Medium | 2023-12-18 |
| CVE-2023-22833 | Palantir Foundry 安全漏洞 — com.palantir.lime:lime2 | 7.6 | High | 2023-06-06 |
| CVE-2022-39360 | Metabase 授权问题漏洞 — metabase | 6.5 | Medium | 2022-10-26 |
| CVE-2022-40622 | WAVLINK WN531G3 授权问题漏洞 — WN531G3 | 8.8 | - | 2022-09-13 |
| CVE-2022-2821 | NamelessMC 安全漏洞 — namelessmc/nameless | 7.5 | - | 2022-08-15 |
| CVE-2022-2302 | 多款Lenze产品授权问题漏洞 — cabinet c520 | 9.8 | Critical | 2022-07-11 |
| CVE-2022-1065 | Abacus ERP 多个 授权问题漏洞 — Abacus ERP | 8.1 | High | 2022-04-19 |
| CVE-2021-41179 | Nextcloud 安全漏洞 — security-advisories | 6.5 | Medium | 2021-10-25 |
| CVE-2019-16766 | wagtail-2fa 安全漏洞 — wagtail-2fa | 8.7 | High | 2019-11-29 |
| CVE-2011-3172 | Micro Focus SUSE Linux Enterprise 安全漏洞 — SUSE Linux Enterprise | 9.8 | - | 2018-06-08 |
CWE-304(认证中关键步骤缺失) 是常见的弱点类别,本平台收录该类弱点关联的 27 条 CVE 漏洞。