更新: 103 个文件 - 2026-03-18 19:24:37
这个提交包含在:
hao
@@ -5,14 +5,14 @@
|
||||
- 系统 ID: `apache-httpd`
|
||||
- 分类: `servers`
|
||||
- 覆盖策略: `history-full`
|
||||
- 总案例数: `0`
|
||||
- 总案例数: `135`
|
||||
- 近 30 天新增/更新: `0`
|
||||
- 重点 Markdown 案例数: `0`
|
||||
- 已实证(真实版本): `0`
|
||||
- 已实证(synthetic): `0`
|
||||
- 阻塞数: `0`
|
||||
- 待人工/缺浏览器证据: `0`
|
||||
- 最近渲染时间: `2026-03-18T21:18:14+00:00`
|
||||
- 待人工/缺浏览器证据: `135`
|
||||
- 最近渲染时间: `2026-03-19T02:23:04+00:00`
|
||||
|
||||
## 目标约束
|
||||
|
||||
@@ -32,4 +32,138 @@
|
||||
|
||||
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|
||||
|------|--------|----------|----------|----------|------------|----------|--------|
|
||||
| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |
|
||||
| Apache HTTP Server Improper Escaping of Output Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-05-22` | - |
|
||||
| Apache HTTP Server-Side Request Forgery (SSRF) | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2021-12-15` | - |
|
||||
| Apache HTTP Server Privilege Escalation Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2022-05-03` | - |
|
||||
| Apache HTTP Server Path Traversal Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2021-11-17` | - |
|
||||
| Apache HTTP Server Path Traversal Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2021-11-17` | - |
|
||||
| CVE-2007-1860 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1742 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1743 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1741 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1842 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1801 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1720 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1633 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1577 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1524 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0450 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-7098 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0637 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0419 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0173 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0086 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0098 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-6869 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-6613 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-6445 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-6390 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-6047 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-5894 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-5733 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-5263 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-4625 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2006-4636 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2006-4558 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2006-4191 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2006-4004 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2006-3918 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2006-2330 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-3630 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-4814 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-2088 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2004-2115 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2004-2343 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2004-0646 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2004-0113 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2003-0249 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2003-1307 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2003-1418 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-1793 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-2007 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-1157 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-0240 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2001-1556 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2000-1168 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2000-0505 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-1999-1412 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| libapreq | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Trunk | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-59775 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-28330 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Documentation | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-38473 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Flood | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Mailing Lists | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-40725 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-38472 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-66200 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Wiki | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-54090 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| impact rating | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-47252 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-23048 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-55753 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Sponsorship | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| FAQ | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| mod_fcgid | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Miscellaneous | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-43204 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Download! | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Apache Traffic Control | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| User Support | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Trunk (dev) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| APR | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Contributors | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2023-27522 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2023-43622 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-42516 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-40898 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Version 2.4 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2023-25690 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2006-20001 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-24795 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| mod_perl | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-53020 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-27316 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Security Reports | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-65082 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2023-38709 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Apache Traffic Server | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-39573 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-30556 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Test | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| General Information | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-49630 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| mod_ftp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-36760 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-58098 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-43394 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-36387 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2023-31122 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-26377 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Thanks! | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-28615 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| License | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Docs | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-38474 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Developer Info | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Bug Reports | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-38477 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-29404 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Apache httpd 2.2 vulnerabilities list | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-37436 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Get Involved | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| ¶ | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2023-45802 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-38476 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 2.4 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-39884 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Privacy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| About | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-28614 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Modules | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2024-38475 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2022-30522 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-49812 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
|
||||
@@ -5,14 +5,14 @@
|
||||
- 系统 ID: `apache-tomcat`
|
||||
- 分类: `servers`
|
||||
- 覆盖策略: `history-full`
|
||||
- 总案例数: `0`
|
||||
- 总案例数: `136`
|
||||
- 近 30 天新增/更新: `0`
|
||||
- 重点 Markdown 案例数: `0`
|
||||
- 已实证(真实版本): `0`
|
||||
- 已实证(synthetic): `0`
|
||||
- 阻塞数: `0`
|
||||
- 待人工/缺浏览器证据: `0`
|
||||
- 最近渲染时间: `2026-03-18T21:18:14+00:00`
|
||||
- 待人工/缺浏览器证据: `136`
|
||||
- 最近渲染时间: `2026-03-19T02:23:04+00:00`
|
||||
|
||||
## 目标约束
|
||||
|
||||
@@ -32,4 +32,139 @@
|
||||
|
||||
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|
||||
|------|--------|----------|----------|----------|------------|----------|--------|
|
||||
| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |
|
||||
| Apache Tomcat Path Equivalence Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-22` | - |
|
||||
| Apache Tomcat Remote Code Execution Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2023-06-02` | - |
|
||||
| Apache Tomcat on Windows Remote Code Execution Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2022-04-15` | - |
|
||||
| Apache Tomcat Remote Code Execution Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2022-04-15` | - |
|
||||
| Apache Tomcat Improper Privilege Management Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2022-03-17` | - |
|
||||
| Cisco HyperFlex HX Data Platform Command Injection Vulnerability | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2021-11-17` | - |
|
||||
| CVE-2008-1232 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2008-1947 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-5333 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-6286 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2008-0002 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2008-0457 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2008-0128 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-5342 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-5461 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-4724 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-3382 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-3385 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-3386 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-3384 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-3383 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-2449 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-2450 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1860 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-7195 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-7196 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1358 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1858 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-7197 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0450 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-1491 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2007-0774 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2006-3835 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-1753 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-1754 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-4703 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-4836 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-3510 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-3164 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2005-0808 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-1567 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-1394 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-1895 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-2006 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-2007 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-2008 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-2009 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-2272 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-0935 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-0493 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2002-0682 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2000-1210 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2001-0829 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2001-0590 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2000-0759 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| CVE-2000-0760 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-03T01:03:51.193` | - |
|
||||
| 5053fa82 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-48989 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-48988 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Taglibs | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 238d2aa5 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat 9 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| af6e9181 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 2aa62612 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat 9.0 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2026-24734 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Presentations | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2026-24733 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 130d36d8 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat 10.1 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat Native | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat Native 2 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| building.html | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 667ddd76 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 8621e4c6 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat Connectors | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-52520 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Which version? | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tools | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Mailing Lists | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 73c04a10 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Who We Are | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Bug Database | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Maven Plugin | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Legal | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-61795 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-49125 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat Connectors | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-48976 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Security Considerations | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 972f9a5e | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 138d7f5c | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat Native 1.3 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| security impact rating | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Contact | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Home | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-55754 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Blog | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-31651 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 066bf6b6 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-66614 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Migration Guide | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat 11.0 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| BUILDING.txt | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-55752 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Heritage | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-55668 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Overview | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat 10 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat 11 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Security Reports | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| end of life | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Twitter | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Fixed in Apache Tomcat 10.1.52 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Wiki | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| YouTube | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-31650 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| cdde8e65 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-46701 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Buildbot | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Source code | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 2c680011 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Taglibs | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Resources | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 7617b9c2 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Upgrading | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Find help | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| e0e07812 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| fc42bbcc | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-49124 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| FAQ | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 711b465c | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Archives | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Tomcat Migration Tool for Jakarta EE | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Swag | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| CVE-2025-53506 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
|
||||
@@ -5,14 +5,14 @@
|
||||
- 系统 ID: `caddy`
|
||||
- 分类: `servers`
|
||||
- 覆盖策略: `rolling-24m`
|
||||
- 总案例数: `0`
|
||||
- 近 30 天新增/更新: `0`
|
||||
- 总案例数: `27`
|
||||
- 近 30 天新增/更新: `6`
|
||||
- 重点 Markdown 案例数: `0`
|
||||
- 已实证(真实版本): `0`
|
||||
- 已实证(synthetic): `0`
|
||||
- 阻塞数: `0`
|
||||
- 待人工/缺浏览器证据: `0`
|
||||
- 最近渲染时间: `2026-03-18T21:18:14+00:00`
|
||||
- 待人工/缺浏览器证据: `27`
|
||||
- 最近渲染时间: `2026-03-19T02:23:04+00:00`
|
||||
|
||||
## 目标约束
|
||||
|
||||
@@ -31,4 +31,33 @@
|
||||
|
||||
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|
||||
|------|--------|----------|----------|----------|------------|----------|--------|
|
||||
| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |
|
||||
| Caddy: Unicode case-folding length expansion causes incorrect split_path index in FastCGI transport | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-27T19:55:10Z` | - |
|
||||
| Caddy is vulnerable to cross-origin config application via local admin API /load | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-27T19:54:36Z` | - |
|
||||
| Caddy: MatchHost becomes case-sensitive for large host lists (>100), enabling host-based route/auth bypass | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-27T19:53:54Z` | - |
|
||||
| Caddy: MatchPath %xx (escaped-path) branch skips case normalization, enabling path-based route/auth bypass | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-27T19:53:17Z` | - |
|
||||
| Caddy: mTLS client authentication silently fails open when CA certificate file is missing or malformed | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-27T19:52:41Z` | - |
|
||||
| Caddy: Improper sanitization of glob characters in file matcher may lead to bypassing security protections | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-27T19:51:57Z` | - |
|
||||
| Caddy: MatchHost becomes case-sensitive for large host lists (>100), enabling host-based route/auth bypass | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Notifications | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| mTLS client authentication silently fails open when CA certificate file is missing or malformed | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Sign up | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| caddy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| caddyserver | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Improper sanitization of glob characters in file matcher may lead to bypassing security protections | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Issues
|
||||
201 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Security
|
||||
8 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Actions | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| vars_regexp double-expands user input, leaking env vars and files | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Sign in | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Caddy: MatchPath %xx (escaped-path) branch skips case normalization, enabling path-based route/auth bypass | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| cross-origin config application via local admin API /load (caddy) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Unicode case-folding length expansion causes incorrect split_path index (SCRIPT_NAME/PATH_INFO confusion) in FastCGI transport | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Skip to content | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Insights | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Policy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Pull requests
|
||||
46 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Caddy forward_auth copy_headers Does Not Strip Client-Supplied Headers, Allowing Identity Injection and Privilege Escalation | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Report a vulnerability | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
|
||||
@@ -5,14 +5,14 @@
|
||||
- 系统 ID: `haproxy`
|
||||
- 分类: `servers`
|
||||
- 覆盖策略: `rolling-24m`
|
||||
- 总案例数: `0`
|
||||
- 总案例数: `6`
|
||||
- 近 30 天新增/更新: `0`
|
||||
- 重点 Markdown 案例数: `0`
|
||||
- 已实证(真实版本): `0`
|
||||
- 已实证(synthetic): `0`
|
||||
- 阻塞数: `0`
|
||||
- 待人工/缺浏览器证据: `0`
|
||||
- 最近渲染时间: `2026-03-18T21:18:14+00:00`
|
||||
- 待人工/缺浏览器证据: `6`
|
||||
- 最近渲染时间: `2026-03-19T02:23:04+00:00`
|
||||
|
||||
## 目标约束
|
||||
|
||||
@@ -32,4 +32,9 @@
|
||||
|
||||
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|
||||
|------|--------|----------|----------|----------|------------|----------|--------|
|
||||
| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |
|
||||
| Omnissa Horizon alternative: how HAProxy solves UDP load balancing | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Wed, 25 Feb 2026 14:00:00 +0000` | - |
|
||||
| Don't panic: a low-risk strategy for Ingress NGINX retirement | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Thu, 19 Feb 2026 09:00:00 +0000` | - |
|
||||
| Announcing HAProxy Fusion 2.0 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Mon, 16 Mar 2026 08:00:00 +0000` | - |
|
||||
| Load balancing VMware Horizon's UDP and TCP traffic: a guide with HAProxy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Fri, 27 Feb 2026 09:59:00 +0000` | - |
|
||||
| Securing 80,000 transactions per second at Infobip with HAProxy Enterprise WAF | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Fri, 27 Feb 2026 00:00:00 +0000` | - |
|
||||
| Streamlining your NIS2 and DORA compliance solution with HAProxy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `Fri, 13 Mar 2026 12:00:00 +0000` | - |
|
||||
|
||||
@@ -5,14 +5,14 @@
|
||||
- 系统 ID: `nginx`
|
||||
- 分类: `servers`
|
||||
- 覆盖策略: `history-full`
|
||||
- 总案例数: `0`
|
||||
- 总案例数: `110`
|
||||
- 近 30 天新增/更新: `0`
|
||||
- 重点 Markdown 案例数: `0`
|
||||
- 已实证(真实版本): `0`
|
||||
- 已实证(synthetic): `0`
|
||||
- 阻塞数: `0`
|
||||
- 待人工/缺浏览器证据: `0`
|
||||
- 最近渲染时间: `2026-03-18T21:18:14+00:00`
|
||||
- 待人工/缺浏览器证据: `110`
|
||||
- 最近渲染时间: `2026-03-19T02:23:04+00:00`
|
||||
|
||||
## 目标约束
|
||||
|
||||
@@ -32,4 +32,113 @@
|
||||
|
||||
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|
||||
|------|--------|----------|----------|----------|------------|----------|--------|
|
||||
| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |
|
||||
| CVE-2019-18371 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:33:09.193` | - |
|
||||
| CVE-2019-15517 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:28:54.740` | - |
|
||||
| CVE-2019-13980 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:25:49.497` | - |
|
||||
| CVE-2019-13617 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:25:22.417` | - |
|
||||
| CVE-2019-13067 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:24:07.910` | - |
|
||||
| CVE-2019-12938 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:23:51.743` | - |
|
||||
| CVE-2019-12208 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:22:25.360` | - |
|
||||
| CVE-2019-12207 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:22:25.223` | - |
|
||||
| CVE-2019-12206 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:22:25.087` | - |
|
||||
| CVE-2019-11839 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:21:52.253` | - |
|
||||
| CVE-2019-11838 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:21:52.120` | - |
|
||||
| CVE-2019-11837 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:21:51.960` | - |
|
||||
| CVE-2019-9161 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:51:06.693` | - |
|
||||
| CVE-2019-9945 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:52:38.800` | - |
|
||||
| CVE-2018-11747 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:43:57.247` | - |
|
||||
| CVE-2019-7401 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-08-12T17:24:44.367` | - |
|
||||
| CVE-2018-16845 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:53:25.953` | - |
|
||||
| CVE-2018-16844 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:53:25.810` | - |
|
||||
| CVE-2018-16843 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:53:25.653` | - |
|
||||
| CVE-2018-1000653 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:40:20.017` | - |
|
||||
| CVE-2018-11046 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:42:33.560` | - |
|
||||
| CVE-2018-12029 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:44:27.120` | - |
|
||||
| CVE-2018-8059 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T04:13:12.287` | - |
|
||||
| CVE-2018-1299 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2024-11-21T03:59:34.407` | - |
|
||||
| CVE-2017-7529 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-20T01:37:25.860` | - |
|
||||
| CVE-2017-8301 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-20T01:37:25.860` | - |
|
||||
| CVE-2016-1247 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2016-4450 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2016-0747 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2016-0746 | `critical` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2016-0742 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2014-3556 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2014-3616 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2014-0088 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2014-0133 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-12T10:46:40.837` | - |
|
||||
| CVE-2013-4547 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2013-0337 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2013-2070 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2013-2028 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2012-3380 | `low` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2011-4963 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2012-2089 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2012-1180 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2011-4315 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2010-2266 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2010-2263 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-11T00:51:21.963` | - |
|
||||
| CVE-2009-4487 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2009-3898 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2009-3896 | `medium` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| CVE-2009-2629 | `high` | `triage` | `triage-manual` | `synthetic` | `official` | `2025-04-09T00:30:58.490` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| blog | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| gateway fabric | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| faq | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| community | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| ingress controller | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| download | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| news | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| community forum (new) | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| books | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| here | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| njs | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| x.com | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| documentation | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| about | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| PGP public keys | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Watch the CNCF webinar: ingress-nginx and NGINX Ingress Controller | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Advisory | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| pgp | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| enterprise | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| The patch | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
|
||||
@@ -5,14 +5,14 @@
|
||||
- 系统 ID: `traefik`
|
||||
- 分类: `servers`
|
||||
- 覆盖策略: `rolling-24m`
|
||||
- 总案例数: `0`
|
||||
- 近 30 天新增/更新: `0`
|
||||
- 总案例数: `43`
|
||||
- 近 30 天新增/更新: `16`
|
||||
- 重点 Markdown 案例数: `0`
|
||||
- 已实证(真实版本): `0`
|
||||
- 已实证(synthetic): `0`
|
||||
- 阻塞数: `0`
|
||||
- 待人工/缺浏览器证据: `0`
|
||||
- 最近渲染时间: `2026-03-18T21:18:14+00:00`
|
||||
- 待人工/缺浏览器证据: `43`
|
||||
- 最近渲染时间: `2026-03-19T02:23:04+00:00`
|
||||
|
||||
## 目标约束
|
||||
|
||||
@@ -31,4 +31,50 @@
|
||||
|
||||
| 标题 | 严重度 | 案例状态 | 实证状态 | 实证方式 | 来源置信度 | 更新时间 | 案例页 |
|
||||
|------|--------|----------|----------|----------|------------|----------|--------|
|
||||
| No advisories yet | `n/a` | `empty` | `n/a` | `n/a` | `n/a` | `n/a` | - |
|
||||
| Traefik: HTTP/2 frames can cause a running server to panic | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-14T03:09:48.127568Z` | - |
|
||||
| Traefik: kubernetes gateway rule injection via unescaped backticks in HTTPRoute match values | `medium` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-18T13:59:10.423590Z` | - |
|
||||
| traefik CVE-2024-45410 fix bypass: lowercase `Connection` tokens can delete traefik-managed forwarded identity headers (for example, `X-Real-Ip`) | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-05T22:46:31.066201Z` | - |
|
||||
| Traefik: tcp router clears read deadlines before tls forwarding, enabling stalled handshakes (Slowloris DOS) | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-05T22:46:34.795238Z` | - |
|
||||
| Traefik has unbounded io.ReadAll on auth server response body that causes OOM DOS | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-05T22:46:37.079765Z` | - |
|
||||
| Traefik affected by TLS ClientAuth Bypass on HTTP/3 | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-13T10:47:38.380633Z` | - |
|
||||
| Traefik: TCP readTimeout bypass via STARTTLS on Postgres | `low` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-02-25T14:44:05.939193Z` | - |
|
||||
| Traefik's ACME TLS-ALPN fast path lacks timeouts and close on handshake stall in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:57:52.435901Z` | - |
|
||||
| Path Normalization Bypass in Traefik Router + Middleware Rules in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:57:45.825626Z` | - |
|
||||
| Traefik Inverted TLS Verification Logic in ingress-nginx Provider in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:57:46.762301Z` | - |
|
||||
| Traefik allows path traversal using url encoding in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:56:38.338929Z` | - |
|
||||
| Traefik has a possible vulnerability with the path matchers in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:56:30.468018Z` | - |
|
||||
| Traefik affected by Go HTTP Request Smuggling Vulnerability in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:56:31.085358Z` | - |
|
||||
| Traefik affected by CVE-2024-53259 in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:56:09.454939Z` | - |
|
||||
| HTTP client can manipulate custom HTTP headers that are added by Traefik in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:55:48.536445Z` | - |
|
||||
| Bypassing IP allow-lists in traefik via HTTP/3 early data requests in QUIC 0-RTT handshakes in github.com/traefik/traefik | `unknown` | `generated` | `triage-manual` | `synthetic` | `official` | `2026-03-03T04:55:33.607072Z` | - |
|
||||
| Issues
|
||||
678 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| TCP readTimeout bypass via STARTTLS on Postgres | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Policy | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Report a vulnerability | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Inverted TLS Verification Logic in Kubernetes NGINX Provider | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| traefik | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Sign in | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Next | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Security
|
||||
35 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Pull requests
|
||||
95 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Sign up | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 3 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| traefik | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Skip to content | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| HTTP/2 frames can cause a running server to panic | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| 4 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| ForwardAuth Middleware Allows Unbounded Response Body, Causing Potential Denial of Service | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| ACME TLS-ALPN fast path lacks timeouts and close on handshake stall | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Projects | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Path Normalization Bypass in Traefik Router + Middleware Rules | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Actions | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Case-Sensitive Bypass in Connection Header Allows Removal of X-Forwarded Headers | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Insights | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| TLS Handshake Error Handling Allows Stalled Connections on TCP Routers | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Kubernetes gateway rule injection via unescaped backticks in HTTPRoute match values | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| TLS ClientAuth Bypass on HTTP/3 | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
| Star
|
||||
62.2k | `unknown` | `triage` | `triage-manual` | `synthetic` | `official` | `` | - |
|
||||
|
||||
在新工单中引用
屏蔽一个用户