汇总 netease 相关全部产品的 CVE 与安全漏洞情报,包括 CVSS、EPSS、公开时间与漏洞情报数据。
历史漏洞主要涉及 命令注入 等安全问题,并影响 软件部署与生产负载 相关场景。
相关漏洞数据主要来源于公开漏洞披露与安全公告,可用于评估历史漏洞暴露面与修复优先级。
| CVE | 摘要 | 来源 | 最高 CVSS | EPSS % | 公开时间 | 更新时间 |
|---|---|---|---|---|---|---|
| CVE-2025-45737 | An issue in NetEase (Hangzhou) Network Co., Ltd NeacSafe64 Driver before v1.0.0.8 allows attackers to escalate privileges via sending crafted IOCTL commands to the NeacSafe64.sys component. | [email protected] | 6.5 | 0.28% | 2025-06-27 | 2026-06-17 |
| CVE-2023-47454 | An Untrusted search path vulnerability in NetEase CloudMusic 2.10.4 for Windows allows local users to gain escalated privileges through the urlmon.dll file in the current working directory. | [email protected] | 7.8 | 0.32% | 2023-11-30 | 2026-06-17 |
| CVE-2020-7620 | pomelo-monitor through 0.3.7 is vulnerable to Command Injection.It allows injection of arbitrary commands as part of 'pomelo-monitor' params. | [email protected] | 9.8 | 2.06% | 2020-04-02 | 2026-06-16 |
| CVE-2019-18954 | Pomelo v2.2.5 allows external control of critical state data. A malicious user input can corrupt arbitrary methods and attributes in template/game-server/app/servers/connector/handler/entryHandler.js because certain internal attributes can be overwritten via a conflicting name. Hence, a malicious attacker can manipulate internal attributes by adding additional attributes to user input. | [email protected] | 5.3 | 1.16% | 2019-11-13 | 2026-06-16 |
| CVE-2012-1385 | Unspecified vulnerability in the NetEase WeiboHD (com.netease.wbhd) application 1.0.0 for Android has unknown impact and attack vectors. | [email protected] | 10.0 | 1.43% | 2012-03-07 | 2026-06-16 |
| CVE-2012-1384 | Unspecified vulnerability in the NetEase Pmail (com.netease.rpmms) application 0.5.0 and 0.5.2 for Android has unknown impact and attack vectors. | [email protected] | 10.0 | 1.43% | 2012-03-07 | 2026-06-16 |
| CVE-2012-1383 | Unspecified vulnerability in the NetEase Reader (com.netease.pris) application 1.1.2 and 1.2.0 for Android has unknown impact and attack vectors. | [email protected] | 10.0 | 1.41% | 2012-03-07 | 2026-06-16 |
| CVE-2012-1382 | Unspecified vulnerability in the Youdao Dictionary (com.youdao.dict) application 1.6.1, 2.0.1(2), and 3.0.0(1) for Android has unknown impact and attack vectors. | [email protected] | 10.0 | 1.37% | 2012-03-07 | 2026-06-16 |
| CVE-2012-1381 | Unspecified vulnerability in the NetEase CloudAlbum (com.netease.cloudalbum) application 2.0.0 and 2.2.0 for Android has unknown impact and attack vectors. | [email protected] | 10.0 | 1.41% | 2012-03-07 | 2026-06-16 |
| CVE-2012-1380 | Unspecified vulnerability in the NetEaseWeibo (com.netease.wb) application 1.2.1 and 1.2.2 for Android has unknown impact and attack vectors. | [email protected] | 10.0 | 1.41% | 2012-03-07 | 2026-06-16 |