CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-39967

There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast permission settings in Smartphones.Successful exploitation of this vulnerability may affect service con ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：5 | 回复：0
CVE-2021-39968

Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation of this vulnerability may expand the attack surface of the message class.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：7 | 回复：0
CVE-2021-39969

There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：6 | 回复：0
CVE-2021-39970

HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this vulnerability may create any file with the system app permission.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：6 | 回复：0
CVE-2021-39971

Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：8 | 回复：0
CVE-2021-39972

MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：9 | 回复：0
CVE-2021-39973

There is a Null pointer dereference in Smartphones.Successful exploitation of this vulnerability may cause the kernel to break down.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：9 | 回复：0
CVE-2021-39974

There is an Out-of-bounds read in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：11 | 回复：0
CVE-2021-39975

Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause denial of service attacks.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：11 | 回复：0
CVE-2021-39977

The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：12 | 回复：0
CVE-2021-39978

Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerability may cause privacy and security issues.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：10 | 回复：0
CVE-2021-39979

HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may affect HHEE system integrity.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：13 | 回复：0
CVE-2021-39980

Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could lead to sensitive information disclosure.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：15 | 回复：0
CVE-2021-39981

Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：13 | 回复：0
CVE-2021-39982

Phone Manager application has a Improper Privilege Management vulnerability.Successful exploitation of this vulnerability may read and write arbitrary files by tampering with Phone Manager notificatio ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：16 | 回复：0
CVE-2021-39983

The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：16 | 回复：0
CVE-2021-39984

Huawei idap module has a Out-of-bounds Read vulnerability.Successful exploitation of this vulnerability may cause Denial of Service.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：24 | 回复：0
CVE-2021-39985

The HwNearbyMain module has a Improper Validation of Array Index vulnerability.Successful exploitation of this vulnerability may cause a process to restart.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：17 | 回复：0
CVE-2021-39987

The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：16 | 回复：0
CVE-2021-39988

The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：27 | 回复：0
CVE-2021-39989

The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability may cause a process to restart.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：19 | 回复：0
CVE-2021-39990

The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of this vulnerability may affect user experience.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：20 | 回复：0
CVE-2021-45829

HDF5 1.13.1-1 is affected by: segmentation fault, which causes a Denial of Service.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：19 | 回复：0
CVE-2021-43942

Affected versions of Atlassian Jira Server and Data Center allow remote attackers to inject arbitrary HTML or JavaScript via a Reflected Cross-Site Scripting (XSS) vulnerability in the /rest/collector ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：20 | 回复：0
CVE-2021-20868

Incorrect authorization vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhub ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：27 | 回复：0
CVE-2021-20869

Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C30 ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：30 | 回复：0
CVE-2021-20870

Improper handling of exceptional conditions vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：43 | 回复：0
CVE-2021-20871

Exposure of sensitive information to an unauthorized actor vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C30 ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：29 | 回复：0
CVE-2021-20872

Protection mechanism failure vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, b ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：34 | 回复：0
CVE-2022-0083

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：32 | 回复：0
CVE-2021-34797

Apache Geode versions up to 1.12.4 and 1.13.4 are vulnerable to a log file redaction of sensitive information flaw when using values that begin with characters other than letters or numbers for passwo ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：45 | 回复：0
CVE-2021-38542

Apache James prior to release 3.6.1 is vulnerable to a buffering attack relying on the use of the STARTTLS command. This can result in Man-in -the-middle command injection attacks, leading potentially ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：63 | 回复：0
CVE-2021-40110

In Apache James, using Jazzer fuzzer, we identified that an IMAP user can craft IMAP LIST commands to orchestrate a Denial Of Service using a vulnerable Regular expression. This affected Apache James ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：71 | 回复：0
CVE-2021-40111

In Apache James, while fuzzing with Jazzer the IMAP parsing stack, we discover that crafted APPEND and STATUS IMAP command could be used to trigger infinite loops resulting in expensive CPU computatio ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：147 | 回复：0
CVE-2021-40525

Apache James ManagedSieve implementation alongside with the file storage for sieve scripts is vulnerable to path traversal, allowing reading and writing any file. This vulnerability had been patched i ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：71 | 回复：0
CVE-2021-31833

Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in attacker to circumvent the application solidification ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：46 | 回复：0
CVE-2021-44168

A download of code without integrity check vulnerability in the execute restore src-vis command of FortiOS before 7.0.3 may allow a local authenticated attacker to download arbitrary files on the devi ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：46 | 回复：0
CVE-2021-43711

The downloadFlile.cgi binary file in TOTOLINK EX200 V4.0.3c.7646_B20201211 has a command injection vulnerability when receiving GET parameters. The parameter name can be constructed for unauthenticate ...……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：36 | 回复：0
CVE-2021-3842

nltk is vulnerable to Inefficient Regular Expression Complexity……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：34 | 回复：0
CVE-2021-45913

A hardcoded key in ControlUp Real-Time Agent (cuAgent.exe) before 8.2.5 may allow a potential attacker to run OS commands via a WCF channel.……

作者：菜鸟教程小白 | 时间：2022-6-22 21:58 | 阅读：36 | 回复：0