Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-494 (下载代码缺少完整性检查) — Vulnerability Class 99

99 vulnerabilities classified as CWE-494 (下载代码缺少完整性检查). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-40066 Anviz Products Download of Code Without Integrity Check — Anviz CX7 Firmware 8.8 High2026-04-17
CVE-2026-3428 ASUS Member Center 安全漏洞 — Member Center(华硕大厅) 7.0AIHighAI2026-04-16
CVE-2026-34841 Axios npm Supply Chain Incident Impacting @usebruno/cli — bruno 9.8 Critical2026-04-06
CVE-2026-3502 TrueConf Client Update Integrity Verification Bypass — TrueConf Client 7.8 High2026-03-30
CVE-2026-33075 FastGPT has Arbitrary Code Execution in GitHub Actions via pull_request_target in fastgpt-preview-image.yml — FastGPT 7.5 -2026-03-20
CVE-2026-1878 ASUS ROG peripheral driver 安全漏洞 — Driver( Keyboard & Mouse ) 7.4AIHighAI2026-03-12
CVE-2026-3000 Changing|IDExpert Windows Logon Agent - Remote Code Execution — IDExpert Windows Logon Agent 9.8 Critical2026-03-02
CVE-2026-2999 Changing|IDExpert Windows Logon Agent - Remote Code Execution — IDExpert Windows Logon Agent 9.8 Critical2026-03-02
CVE-2025-47904 Unsigned upgrade package — Time Provider 4100 9.1AICriticalAI2026-02-24
CVE-2026-27180 MajorDoMo Supply Chain Remote Code Execution via Update URL Poisoning — MajorDoMo 9.8 Critical2026-02-18
CVE-2025-15575 Missing Firmware Authenticity Checks in Solax Power Pocket WiFi models — Pocket WiFi 3.0 4.3AIMediumAI2026-02-12
CVE-2026-20056 Cisco Secure Web Appliance TBD Bypass Vulnerability — Cisco Secure Web Appliance 4.0 Medium2026-02-04
CVE-2025-15556 Notepad++ < 8.8.9 WinGUp Updater Lacks Update Integrity Verification — notepad-plus-plus 7.0AIHighAI2026-02-03
CVE-2026-22865 Gradle's failure to disable repositories failing to answer can expose builds to malicious artifacts — gradle 5.3 -2026-01-16
CVE-2025-69263 pnpm Lockfile Integrity Bypass Allows Remote Dynamic Dependencies — pnpm 7.5 High2026-01-07
CVE-2025-14265 Improper server-side validation in ScreenConnect extension framework — ScreenConnect 9.1 Critical2025-12-11
CVE-2025-66334 Huawei HarmonyOS 安全漏洞 — HarmonyOS 3.3 Low2025-12-08
CVE-2025-66333 Huawei HarmonyOS 安全漏洞 — HarmonyOS 3.3 Low2025-12-08
CVE-2025-66332 Huawei HarmonyOS 安全漏洞 — HarmonyOS 3.3 Low2025-12-08
CVE-2025-66331 Huawei HarmonyOS 安全漏洞 — HarmonyOS 3.3 Low2025-12-08
CVE-2025-40604 SonicWALL Email Security 安全漏洞 — Email Security 6.7 -2025-11-20
CVE-2025-11493 Self-Update Verification Mechanism Process in ConnectWise Automate — Automate 8.8 High2025-10-16
CVE-2025-34212 Vasion Print (formerly PrinterLogic) Insecure Build Pipeline — Print Virtual Appliance Host 8.1AIHighAI2025-09-29
CVE-2025-9319 Lenovo Wallpaper Client 安全漏洞 — Wallpaper Client 7.5 High2025-09-11
CVE-2025-30199 ECOVACS Vacuum and Base Station accept unsigned firmware — DEEBOT X1 Series 7.2 High2025-09-05
CVE-2025-35115 Agiloft insecure download of system packages — Agiloft 8.1 High2025-08-26
CVE-2025-31355 Tenda AC6 安全漏洞 — AC6 V5.0 7.2 High2025-08-20
CVE-2025-53520 EG4 Electronics EG4 Inverters Download of Code Without Integrity Check — EG4 12kPV 8.8 High2025-08-08
CVE-2025-53696 Johnson Controls iSTAR Ultra 安全漏洞 — iSTAR Ultra 8.8AIHighAI2025-07-28
CVE-2025-7620 DSIC|Cross-browser Components for Official Document Creation - Remote Code Execution — Cross-browser Components for Official Document Creation 8.8 High2025-07-14

Vulnerabilities classified as CWE-494 (下载代码缺少完整性检查) represent 99 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.