CWE-644 对HTTP头部进行脚本语法转义处理不恰当 类弱点 45 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | 发布日期 |
|---|---|---|---|---|
| CVE-2026-33805 | fastify/reply-from和fastify/http-proxy 安全漏洞 — @fastify/reply-from | 7.5 | - | 2026-04-15 |
| CVE-2025-66485 | IBM Aspera Shares 安全漏洞 — Aspera Shares | 5.4 | Medium | 2026-04-01 |
| CVE-2026-33149 | Tandoor Recipes 安全漏洞 — recipes | 8.1 | High | 2026-03-26 |
| CVE-2025-14807 | IBM InfoSphere Information Server 安全漏洞 — InfoSphere Information Server | 6.5 | Medium | 2026-03-25 |
| CVE-2025-13213 | IBM Aspera Orchestrator 安全漏洞 — Aspera Orchestrator | 5.4 | Medium | 2026-03-10 |
| CVE-2025-36227 | IBM Aspera Faspex 安全漏洞 — Aspera Faspex 5 | 5.4 | Medium | 2026-03-10 |
| CVE-2026-1698 | PcVue 安全漏洞 — PcVue | 6.5AI | MediumAI | 2026-02-26 |
| CVE-2025-27901 | IBM DB2 Recovery Expert 安全漏洞 — DB2 Recovery Expert for LUW | 6.5 | Medium | 2026-02-17 |
| CVE-2026-26234 | JUNG Smart Visu Server 安全漏洞 — JUNG Smart Visu Server | 8.8 | High | 2026-02-12 |
| CVE-2024-51451 | IBM Concert 安全漏洞 — Concert | 6.5 | Medium | 2026-02-04 |
| CVE-2025-52660 | HCL AION 安全漏洞 — AION | 2.7 | Low | 2026-01-19 |
| CVE-2025-64425 | Coolify 安全漏洞 — coolify | 8.0 | - | 2026-01-05 |
| CVE-2025-13803 | MediaCrush 安全漏洞 — MediaCrush | 7.3 | High | 2025-12-01 |
| CVE-2025-13434 | Hush Framework 安全漏洞 — Hush Framework | 5.3 | Medium | 2025-11-20 |
| CVE-2025-36223 | IBM OpenPages 安全漏洞 — OpenPages | 5.4 | Medium | 2025-11-12 |
| CVE-2025-64484 | OAuth2-Proxy 安全漏洞 — oauth2-proxy | 8.5 | High | 2025-11-10 |
| CVE-2025-52647 | HCL BigFix WebUI 安全漏洞 — BigFix WebUI | 6.1 | Medium | 2025-10-10 |
| CVE-2024-40686 | IBM Operations Analytics-Log Analysis 安全漏洞 — SmartCloud Analytics Log Analysis | 5.4 | Medium | 2025-07-23 |
| CVE-2025-40631 | IceWarp Mail Server 安全漏洞 — Icewarp Mail Server | 6.1AI | MediumAI | 2025-05-16 |
| CVE-2025-24339 | Bosch Rexroth ctrlX OS 安全漏洞 — ctrlX OS - Device Admin | 5.0 | Medium | 2025-04-30 |
| CVE-2025-2950 | IBM i 安全漏洞 — i | 5.4 | Medium | 2025-04-18 |
| CVE-2022-43847 | IBM Aspera Console 安全漏洞 — Aspera Console | 5.4 | Medium | 2025-04-14 |
| CVE-2025-0154 | IBM TXSeries for Multiplatforms 安全漏洞 — TXSeries for Multiplatforms | 5.3 | Medium | 2025-04-02 |
| CVE-2025-27632 | Hitachi Energy TRMTracker 注入漏洞 — TRMTracker | 6.1 | Medium | 2025-03-25 |
| CVE-2023-35894 | IBM Control Center 安全漏洞 — Control Center | 5.4 | Medium | 2025-03-07 |
| CVE-2025-23191 | SAP Fiori 安全漏洞 — SAP Fiori for SAP ERP | 3.1 | Low | 2025-02-11 |
| CVE-2024-30129 | HCL Nomad 安全漏洞 — Nomad server on Domino | 5.3 | Medium | 2024-12-06 |
| CVE-2024-10006 | HashiCorp Consul 安全漏洞 — Consul | 8.3 | High | 2024-10-30 |
| CVE-2024-47549 | Sharp MFP 安全漏洞 — Sharp Digital Full-color MFPs and Monochrome MFPs | 7.4 | High | 2024-10-25 |
| CVE-2023-26289 | IBM Aspera Orchestrator 安全漏洞 — Aspera Orchestrator | 5.4 | Medium | 2024-07-30 |
CWE-644(对HTTP头部进行脚本语法转义处理不恰当) 是常见的弱点类别,本平台收录该类弱点关联的 45 条 CVE 漏洞。