5 vulnerabilities classified as CWE-67 (Windows设备名处理不恰当). AI Chinese analysis included.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-27199 | Werkzeug safe_join() allows Windows special device names — werkzeug | 7.5AI | HighAI | 2026-02-21 |
| CVE-2026-21860 | Werkzeug safe_join() allows Windows special device names with compound extensions — werkzeug | 7.5 | - | 2026-01-08 |
| CVE-2025-66221 | Werkzeug safe_join() allows Windows special device names — werkzeug | - | - | 2025-11-29 |
| CVE-2024-51745 | Wasmtime doesn't fully sandbox all the Windows device filenames — wasmtime | 8.2AI | HighAI | 2024-11-05 |
| CVE-2024-35197 | gix refs and paths with reserved Windows device names access the devices — gitoxide | 5.4 | Medium | 2024-05-23 |
Vulnerabilities classified as CWE-67 (Windows设备名处理不恰当) represent 5 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.