CWE-703 对异常条件检查或处理不恰当 类弱点 94 条 CVE 漏洞汇总,含 AI 中文分析。
CWE-703属于异常处理不当漏洞,指软件未能正确预判或处理正常运行中极少发生的异常状况。攻击者通常通过构造特定输入触发罕见异常,导致程序崩溃、信息泄露或执行非预期逻辑,从而绕过安全控制。开发者应避免通过捕获所有异常来掩盖错误,需明确识别并处理特定异常场景,确保在异常发生时系统能安全降级或终止,防止状态不一致或资源泄露。
char buf[10], cp_buf[10]; fgets(buf, 10, stdin); strcpy(cp_buf, buf);public void doExchange() throws IOException, InvocationTargetException, SQLException { ... }public void doExchange() throws Exception { ... }| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2026-34388 | Fleet 安全漏洞 — fleet | 6.5 | - | 2026-03-27 |
| CVE-2025-59787 | 2N Access Commander 安全漏洞 — 2N Access Commander | 8.6AI | HighAI | 2026-03-04 |
| CVE-2026-28407 | malcontent 安全漏洞 — malcontent | 8.2 | - | 2026-02-27 |
| CVE-2026-1996 | HP OfficeJet Pro 安全漏洞 — HP OfficeJet Pro 8710 All-in-One Printer series | 7.5AI | HighAI | 2026-02-10 |
| CVE-2025-68135 | everest-core 安全漏洞 — everest-core | 6.5 | Medium | 2026-01-21 |
| CVE-2026-21895 | RSA 安全漏洞 — RSA | 7.5 | - | 2026-01-08 |
| CVE-2025-14874 | Nodemailer 安全漏洞 — nodemailer | 7.5 | High | 2025-12-18 |
| CVE-2025-64435 | Kubevirt 安全漏洞 — kubevirt | 5.3 | Medium | 2025-11-07 |
| CVE-2025-12890 | Zephyr 安全漏洞 — Zephyr | 6.5 | Medium | 2025-11-07 |
| CVE-2025-59836 | Omni 安全漏洞 — omni | 5.3 | Medium | 2025-10-13 |
| CVE-2025-31998 | HCL Unica Centralized Offer Management 安全漏洞 — Unica Centralized Offer Management | 3.5 | Low | 2025-10-12 |
| CVE-2025-61602 | BigBlueButton 安全漏洞 — bigbluebutton | 7.5 | High | 2025-10-09 |
| CVE-2025-61601 | BigBlueButton 安全漏洞 — bigbluebutton | 7.5 | High | 2025-10-09 |
| CVE-2025-59531 | Argo CD 安全漏洞 — argo-cd | 7.5 | High | 2025-10-01 |
| CVE-2025-58758 | TinyEnv 安全漏洞 — tiny-env | 5.1 | Medium | 2025-09-09 |
| CVE-2025-3084 | MongoDB Server 安全漏洞 — MongoDB Server | 6.5 | Medium | 2025-04-01 |
| CVE-2025-24371 | CometBFT 安全漏洞 — cometbft | 5.3 | - | 2025-02-03 |
| CVE-2024-51491 | notation-go 安全漏洞 — notation-go | 3.3 | Low | 2025-01-13 |
| CVE-2024-55548 | ORing IAP-420 安全漏洞 — IAP-420 | 7.5 | - | 2024-12-10 |
| CVE-2024-10781 | WordPress plugin Spam protection, Anti-Spam, FireWall by CleanTalk 安全漏洞 — Spam protection, Honeypot, Anti-Spam by CleanTalk | 8.1 | High | 2024-11-26 |
| CVE-2024-9104 | WordPress plugin UltimateAI 安全漏洞 — Ultimate AI | 5.6 | Medium | 2024-10-16 |
| CVE-2024-37995 | Siemens SIMATIC 安全漏洞 — SIMATIC Reader RF610R CMIIT | 2.7 | Low | 2024-09-10 |
| CVE-2024-37992 | Siemens SIMATIC 安全漏洞 — SIMATIC Reader RF610R CMIIT | 4.9 | Medium | 2024-09-10 |
| CVE-2024-20089 | MediaTek 芯片 安全漏洞 — MT6835, MT6878, MT6886, MT6897, MT6980, MT6985, MT6989, MT6990, MT8678, MT8775, MT8792, MT8796 | 7.5AI | HighAI | 2024-09-02 |
| CVE-2024-39815 | Vonets 安全漏洞 — VAR1200-H | 9.1 | Critical | 2024-08-08 |
| CVE-2024-38482 | Dell CloudLink 安全漏洞 — CloudLink | 6.6 | Medium | 2024-08-02 |
| CVE-2024-38435 | Unitronics Vision PLC 安全漏洞 — Vision PLC | 6.5 | Medium | 2024-07-21 |
| CVE-2024-6468 | HashiCorp Vault和HashiCorp Vault Enterprise 安全漏洞 — Vault | 7.5 | High | 2024-07-11 |
| CVE-2024-39514 | Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞 — Junos OS | 6.5 | Medium | 2024-07-10 |
| CVE-2024-21525 | node-twain 安全漏洞 — node-twain | 8.3 | High | 2024-07-10 |
CWE-703(对异常条件检查或处理不恰当) 是常见的弱点类别,本平台收录该类弱点关联的 94 条 CVE 漏洞。