CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2022-27223

In drivers/usb/gadget/udc/udc-xilinx.c in the Linux kernel before 5.16.12, the endpoint index is not validated and might be manipulated by the host for out-of-array access.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：37 | 回复：0
CVE-2021-43955

The /rest-service-fecru/server-v1 resource in Fisheye and Crucible before version 4.8.9 allowed authenticated remote attackers to obtain information about installation directories via information disc ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：32 | 回复：0
CVE-2021-43956

The jQuery deserialize library in Fisheye and Crucible before version 4.8.9 allowed remote attackers to to inject arbitrary HTML and/or JavaScript via a prototype pollution vulnerability.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：33 | 回复：0
CVE-2021-43957

Affected versions of Atlassian Fisheye Crucible allowed remote attackers to browse local files via an Insecure Direct Object References (IDOR) vulnerability in the WEB-INF directory and bypass the fi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：39 | 回复：0
CVE-2021-43958

Various rest resources in Fisheye and Crucible before version 4.8.9 allowed remote attackers to brute force user login credentials as rest resources did not check if users were beyond their max failed ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：32 | 回复：0
CVE-2022-27225

Gradle Enterprise before 2021.4.3 relies on cleartext data transmission in some situations. It uses Keycloak for identity management services. During the sign-in process, Keycloak sets browser cookies ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：39 | 回复：0
CVE-2022-0911

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：39 | 回复：0
CVE-2021-45851

A Server-Side Request Forgery (SSRF) attack in FUXA 1.1.3 can be carried out leading to the obtaining of sensitive information from the server's internal environment and services, often potentiall ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：36 | 回复：0
CVE-2021-45852

An issue was discovered in Projectworlds Hospital Management System v1.0. Unauthorized malicious attackers can add patients without restriction via add_patient.php.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：39 | 回复：0
CVE-2021-46705

A Insecure Temporary File vulnerability in grub-once of grub2 in SUSE Linux Enterprise Server 15 SP4, openSUSE Factory allows local attackers to truncate arbitrary files. This issue affects: SUSE Linu ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：32 | 回复：0
CVE-2022-0704

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：31 | 回复：0
CVE-2022-21945

A Insecure Temporary File vulnerability in cscreen of openSUSE Factory allows local attackers to cause DoS for cscreen and a system DoS for non-default systems. This issue affects: openSUSE Factory cs ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：31 | 回复：0
CVE-2022-21946

A Improper Privilege Management vulnerability in the sudoers configuration in cscreen of openSUSE Factory allows any local users to gain the privileges of the tty and dialout groups and access and man ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：32 | 回复：0
CVE-2022-0705

Cross-site Scripting (XSS) - Stored in GitHub repository pimcore/pimcore prior to 10.4.0.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：34 | 回复：0
CVE-2021-42552

Cross-site Scripting (XSS) vulnerability in ArchivistaBox webclient allows an attacker to craft a malicious link, executing JavaScript in the context of a victim's browser. This issue affects all ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：38 | 回复：0
CVE-2021-45786

In maccms v10, an attacker can log in through /index.php/user/login in the col and openid parameters to gain privileges.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：37 | 回复：0
CVE-2021-45787

There is a stored Cross Site Scripting (XSS) vulnerability in maccms v10 through adding videos. XSS code can be inserted at parameter positions including name and remarks.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：33 | 回复：0
CVE-2022-0986

Reflected Cross-site Scripting (XSS) Vulnerability in GitHub repository hestiacp/hestiacp prior to 1.5.11.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：27 | 回复：0
CVE-2022-24751

Zulip is an open source group chat application. Starting with version 4.0 and prior to version 4.11, Zulip is vulnerable to a race condition during account deactivation, where a simultaneous access by ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：44 | 回复：0
CVE-2020-25721

Kerberos acceptors need easy access to stable AD identifiers (eg objectSid). Samba as an AD DC now provides a way for Linux applications to obtain a reliable SID (and samAccountName) in issued tickets ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：29 | 回复：0
CVE-2021-0957

In NotificationStackScrollLayout of NotificationStackScrollLayout.java, there is a possible way to bypass Factory Reset Protections. This could lead to local escalation of privilege with no additional ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：30 | 回复：0
CVE-2021-20180

A flaw was found in ansible module where credentials are disclosed in the console log by default and not protected by the security feature when using the bitbucket_pipeline_variable module. This flaw ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：25 | 回复：0
CVE-2021-20257

An infinite loop flaw was found in the e1000 NIC emulator of the QEMU. This issue occurs while processing transmits (tx) descriptors in process_tx_desc if various descriptor fields are initialized wit ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：27 | 回复：0
CVE-2021-20299

A flaw was found in OpenEXR's Multipart input file functionality. A crafted multi-part input file with no actual parts can trigger a NULL pointer dereference. The highest threat from this vulnerab ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：24 | 回复：0
CVE-2021-23158

A flaw was found in htmldoc in v1.9.12. Double-free in function pspdf_export(),in ps-pdf.cxx may result in a write-what-where condition, allowing an attacker to execute arbitrary code and denial of se ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：30 | 回复：0
CVE-2021-23165

A flaw was found in htmldoc before v1.9.12. Heap buffer overflow in pspdf_prepare_outpages(), in ps-pdf.cxx may lead to execute arbitrary code and denial of service.……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：25 | 回复：0
CVE-2021-33853

A Cross-Site Scripting (XSS) attack can cause arbitrary code (javascript) to run in a user’s browser while the browser is connected to a trusted website. As the vehicle for the attack, the applicatio ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：23 | 回复：0
CVE-2021-39624

In PackageManager, there is a possible permanent denial of service due to resource exhaustion. This could lead to local denial of service with User execution privileges needed. User interaction is not ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：25 | 回复：0
CVE-2021-39667

In ih264d_parse_decode_slice of ih264d_parse_slice.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to remote information disclosure with no additional executi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：29 | 回复：0
CVE-2021-39685

In various setup methods of the USB gadget subsystem, there is a possible out of bounds write due to an incorrect flag check. This could lead to local escalation of privilege with no additional execut ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：26 | 回复：0
CVE-2021-39686

In several functions of binder.c, there is a possible way to represent the wrong domain to SELinux due to a race condition. This could lead to local escalation of privilege with no additional executio ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：24 | 回复：0
CVE-2021-39689

In multiple functions of odsign_main.cpp, there is a possible way to persist system attack due to a logic error in the code. This could lead to local escalation of privilege with System execution priv ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：36 | 回复：0
CVE-2021-39690

In setDisplayPadding of WallpaperManagerService.java, there is a possible way to cause a persistent DoS due to improper input validation. This could lead to local denial of service with no additional ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：27 | 回复：0
CVE-2021-39692

In onCreate of SetupLayoutActivity.java, there is a possible way to setup a work profile bypassing user consent due to a tapjacking/overlay attack. This could lead to local escalation of privilege wit ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：24 | 回复：0
CVE-2021-39693

In onUidStateChanged of AppOpsService.java, there is a possible way to access location without a visible indicator due to a logic error in the code. This could lead to local escalation of privilege wi ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：21 | 回复：0
CVE-2021-39694

In parse of RoleParser.java, there is a possible way for default apps to get permissions explicitly denied by the user due to a permissions bypass. This could lead to local escalation of privilege wit ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：26 | 回复：0
CVE-2021-39695

In createOrUpdate of BasePermission.java, there is a possible permission bypass due to a logic error in the code. This could lead to local escalation of privilege with User execution privileges needed ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：23 | 回复：0
CVE-2021-39697

In checkFileUriDestination of DownloadProvider.java, there is a possible way to bypass external storage private directories protection due to a missing permission check. This could lead to local escal ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：22 | 回复：0
CVE-2021-39698

In aio_poll_complete_work of aio.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：25 | 回复：0
CVE-2021-39701

In serviceConnection of ControlsProviderLifecycleManager.kt, there is a possible way to keep service running in foreground without notification or permission due to improper input validation. This cou ...……

作者：菜鸟教程小白 | 时间：2022-6-23 10:53 | 阅读：21 | 回复：0