Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

unspecified — Vulnerabilities & Security Advisories 259

Browse all 259 CVE security advisories affecting unspecified. AI-powered Chinese analysis, POCs, and references for each vulnerability.

The term "unspecified" in cybersecurity contexts typically refers to software components, libraries, or hardware modules where the vendor or manufacturer has not been publicly identified or disclosed. This anonymity often complicates vulnerability tracking, resulting in a significant backlog of assigned CVEs, currently totaling 259. Historically, these unidentified assets frequently exhibit critical flaws such as remote code execution, cross-site scripting, and privilege escalation vulnerabilities, stemming from a lack of standardized security development lifecycles. The absence of clear attribution hinders coordinated patching efforts and incident response, leaving downstream users exposed to prolonged risk. Notable incidents involving unspecified components often involve supply chain attacks or zero-day exploits where the origin remains obscure until forensic analysis reveals the underlying architecture. This opacity creates a persistent threat landscape, as defenders cannot implement targeted mitigations without knowing the specific software stack or vendor context associated with the vulnerability.

Top products by unspecified: ffmpeg Hindu Matrimonial Script PHPList unspecified Movie Ticket Booking System Home Clean Services Management System uTorrent HumHub jenkins House Rental System GPAC studygolang WP-Ban LibTIFF School Club Application System phpservermon Zoo Management System Demokratian Online Hotel Booking System laravel Open5GS MAVLink Exim ovirt-engine 389-ds-base Simplessus Hospital Management Center Student Attendance Management System Atahualpa Theme Student Information System
CVE IDTitleCVSSSeverityPublished
CVE-2021-4240 phpservermon User.php generatePasswordResetToken predictable algorithm in random number generator — phpservermonCWE-331 2.6 Low2022-11-15
CVE-2022-3988 Frappe Search navbar_search.html cross site scripting — FrappeCWE-707 3.5 Low2022-11-14
CVE-2022-3964 ffmpeg QuickTime RPZA Video Encoder rpzaenc.c out-of-bounds — ffmpegCWE-119 4.3 Medium2022-11-13
CVE-2022-3978 NodeBB abort cross-site request forgery — NodeBBCWE-863 4.3 Medium2022-11-13
CVE-2022-3971 matrix-appservice-irc PgDataStore.ts sql injection — matrix-appservice-ircCWE-707 4.6 Medium2022-11-13
CVE-2022-3970 LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow — LibTIFFCWE-189 6.3 Medium2022-11-13
CVE-2022-3969 OpenKM FileUtils.java getFileExtension temp file — OpenKMCWE-377 2.6 Low2022-11-13
CVE-2022-3968 emlog article_save.php cross site scripting — emlogCWE-707 3.5 Low2022-11-13
CVE-2022-3967 Vesta Control Panel sed main.sh argument injection — Vesta Control PanelCWE-707 5.3 Medium2022-11-13
CVE-2022-3966 Ultimate Member Plugin Template class-shortcodes.php load_template pathname traversal — Ultimate Member PluginCWE-22 4.3 Medium2022-11-13
CVE-2022-3965 ffmpeg QuickTime Graphics Video Encoder smcenc.c smc_encode_stream out-of-bounds — ffmpegCWE-119 4.3 Medium2022-11-13
CVE-2022-3963 gnuboard5 FAQ Key ID faq.php cross site scripting — gnuboard5CWE-707 3.5 Low2022-11-12
CVE-2022-3959 drogon Session Hash small space of random values — drogonCWE-330 3.1 Low2022-11-11
CVE-2022-3957 GPAC SVG Parser svg_attributes.c svg_parse_preserveaspectratio memory leak — GPACCWE-404 4.3 Medium2022-11-11
CVE-2022-3941 Activity Log Plugin HTTP Header neutralization for logs — Activity Log PluginCWE-707 5.3 Medium2022-11-11
CVE-2022-3845 phpipam Import Preview import-load-data.php cross site scripting — phpipamCWE-707 2.4 Low2022-11-02
CVE-2022-3827 centreon Contact Groups Form formContactGroup.php sql injection — centreonCWE-707 6.3 Medium2022-11-02
CVE-2022-3783 node-red-dashboard ui_text Format ui-component-ctrl.js cross site scripting — node-red-dashboardCWE-707 3.5 Low2022-10-31
CVE-2022-3734 Redis on Windows dbghelp.dll uncontrolled search path — RedisCWE-426 6.3 Medium2022-10-28
CVE-2022-3705 vim autocmd quickfix.c qf_update_buffer use after free — vimCWE-119 5.0 Medium2022-10-26
CVE-2022-3704 Ruby on Rails _table.html.erb cross site scripting — Ruby on RailsCWE-707 3.5 Low2022-10-26
CVE-2022-3620 Exim DMARC dmarc.c dmarc_dns_lookup use after free — EximCWE-119 5.6 Medium2022-10-20
CVE-2022-3559 Exim Regex use after free — EximCWE-119 4.6 Medium2022-10-17
CVE-2022-3502 Human Resource Management System Leave cross site scripting — Human Resource Management SystemCWE-707 3.5 Low2022-10-14
CVE-2022-3464 puppyCMS settings.php cross site scripting — puppyCMSCWE-707 4.3 Medium2022-10-12
CVE-2022-3354 Open5GS UDP Packet ogs-tlv-msg.c denial of service — Open5GSCWE-404 3.5 Low2022-09-28
CVE-2022-3299 Open5GS AMF client.c denial of service — Open5GSCWE-404 4.3 Medium2022-09-26
CVE-2022-2886 Laravel deserialization — LaravelCWE-502 5.0 Medium2022-08-19
CVE-2022-2870 laravel deserialization — laravelCWE-502 4.1 Medium2022-08-17
CVE-2022-2726 SEMCMS Ant_Check.php sql injection — SEMCMSCWE-89 6.3 Medium2022-08-09

This page lists every published CVE security advisory associated with unspecified. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.