2025-12-01 最新CVE漏洞情报和技术资讯头条
CVE 安全漏洞公告AVD-2025-55449:
AstrBot JWT认证绕过漏洞(CVE-2025-55449)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-55449
AVD-2025-64446:
Fortiweb 身份认证绕过漏洞(CVE-2025-64446)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-64446
AVD-2025-52881:
Runc procfs 容器逃逸漏洞 (CVE-2025-52881)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-52881
AVD-2025-52565:
Runc /dev/console 竞争导容器逃逸漏洞 (CVE-2025-52565)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-52565
AVD-2025-31133:
Runc masked path 条件竞争容器逃逸漏洞 (CVE-2025-31133)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-31133
AVD-2025-62712:
JumpServer 连接令牌泄漏漏洞 (CVE-2025-62712)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-62712
AVD-2025-61757:
Oracle Identity Manager 远程代码执行漏洞(CVE-2025-61757)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-61757
AVD-2025-41253:
Spring Cloud Gateway WebFlux SpEL 表达式注入漏洞(CVE-2025-41253)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-41253
AVD-2025-59287:
Windows 服务器更新服务 (WSUS) 远程代码执行漏洞(CVE-2025-59287)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-59287
AVD-2025-52472:
xwiki orderField HQL注入漏洞(CVE-2025-52472)
🔗 详情链接: https://avd.aliyun.com/detail?id=AVD-2025-52472 重要声明‼️‼️随着网络安全越来越重要,"安全info"将定期分享实用安全技术、最新行业动态、案例分析,实战技巧等。鉴于网络安全法的基础文章内容仅供学习,不做其他任何用处!
页:
[1]