• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞CVE漏洞

CVE漏洞

RSS
  • CVE-2021-46053
    CVE-2021-46053
    A Denial of Service vulnerability exists in Binaryen 103. The program terminates with signal SIGKILL.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46054
    CVE-2021-46054
    A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46055
    CVE-2021-46055
    A Denial of Service vulnerability exists in Binaryen 104 due to an assertion abort in wasm::WasmBinaryBuilder::visitRethrow(wasm::Rethrow*).……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2021-46058
    CVE-2021-46058
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46059
    CVE-2021-46059
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46060
    CVE-2021-46060
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46146
    CVE-2021-46146
    An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. The WikibaseMediaInfo component is vulnerable to XSS via the caption fields for a given media file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46147
    CVE-2021-46147
    An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. MassEditRegex allows CSRF.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:6 | 回复:0
  • CVE-2021-46148
    CVE-2021-46148
    An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Some unprivileged users can view confidential information (e.g., IP addresses and User-Agent headers ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46149
    CVE-2021-46149
    An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. A denial of service (resource consumption) can be accomplished by searching for a very long key in a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46150
    CVE-2021-46150
    An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. Special:CheckUserLog allows CheckUser XSS because of date mishandling, as demonstrated by an XSS pay ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46163
    CVE-2021-46163
    Kentico Xperience 13.0.44 allows XSS via an XML document to the Media Libraries subsystem.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46164
    CVE-2021-46164
    Zoho ManageEngine Desktop Central before 10.0.662 allows remote code execution by an authenticated user who has complete access to the Reports module.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46165
    CVE-2021-46165
    Zoho ManageEngine Desktop Central before 10.0.662, during startup, launches an executable file from the batch files, but this file's path might not be properly defined.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-46166
    CVE-2021-46166
    Zoho ManageEngine Desktop Central before 10.0.662 allows authenticated users to obtain sensitive information from the database by visiting the Reports page.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-0132
    CVE-2022-0132
    peertube is vulnerable to Server-Side Request Forgery (SSRF)……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-0133
    CVE-2022-0133
    peertube is vulnerable to Improper Access Control……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21667
    CVE-2022-21667
    soketi is an open-source WebSockets server. There is an unhandled case when reading POST requests which results in the server crashing if it could not read the body of a request. In the event that a P ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-21823
    CVE-2022-21823
    A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control 2021.2 (10.7.30.0) that could allow an attacker with locally authenticated low privileges to obtain key inf ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-22263
    CVE-2022-22263
    Unprotected dynamic receiver in SecSettings prior to SMR Jan-2022 Release 1 allows untrusted applications to launch arbitrary activity.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-22264
    CVE-2022-22264
    Improper sanitization of incoming intent in Dressroom prior to SMR Jan-2022 Release 1 allows local attackers to read and write arbitrary files without permission.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-22265
    CVE-2022-22265
    An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-2022 Release 1 allows arbitrary memory write and code execution.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22266
    CVE-2022-22266
    (Applicable to China models only) Unprotected WifiEvaluationService in TencentWifiSecurity application prior to SMR Jan-2022 Release 1 allows untrusted applications to get WiFi information without pro ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22267
    CVE-2022-22267
    Implicit Intent hijacking vulnerability in ActivityMetricsLogger prior to SMR Jan-2022 Release 1 allows attackers to get running application information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22268
    CVE-2022-22268
    Incorrect implementation of Knox Guard prior to SMR Jan-2022 Release 1 allows physically proximate attackers to temporary unlock the Knox Guard via Samsung DeX mode.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22269
    CVE-2022-22269
    Keeping sensitive data in unprotected BluetoothSettingsProvider prior to SMR Jan-2022 Release 1 allows untrusted applications to get a local Bluetooth MAC address.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22270
    CVE-2022-22270
    An implicit Intent hijacking vulnerability in Dialer prior to SMR Jan-2022 Release 1 allows unprivileged applications to access contact information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-22271
    CVE-2022-22271
    A missing input validation before memory copy in TIMA trustlet prior to SMR Jan-2022 Release 1 allows attackers to copy data from arbitrary memory.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-22272
    CVE-2022-22272
    Improper authorization in TelephonyManager prior to SMR Jan-2022 Release 1 allows attackers to get IMSI without READ_PRIVILEGED_PHONE_STATE permission……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22283
    CVE-2022-22283
    Improper session management vulnerability in Samsung Health prior to 6.20.1.005 prevents logging out from Samsung Health App.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22284
    CVE-2022-22284
    Improper authentication vulnerability in Samsung Internet prior to 16.0.2.19 allows attackers to bypass secret mode password authentication……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22285
    CVE-2022-22285
    A vulnerability using PendingIntent in Reminder prior to version 12.2.05.0 in Android R(11.0) and 12.3.02.1000 in Android S(12.0) allows attackers to execute privileged action by hijacking and modifyi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22286
    CVE-2022-22286
    A vulnerability using PendingIntent in Bixby Routines prior to version 3.1.21.8 in Android R(11.0) and 2.6.30.5 in Android Q(10.0) allows attackers to execute privileged action by hijacking and modify ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22287
    CVE-2022-22287
    Abitrary file access vulnerability in Samsung Email prior to 6.1.60.16 allows attacker to read isolated data in sandbox.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22288
    CVE-2022-22288
    Improper authorization vulnerability in Galaxy Store prior to 4.5.36.5 allows remote app installation of the allowlist.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22289
    CVE-2022-22289
    Improper access control vulnerability in S Assistant prior to version 7.5 allows attacker to remotely get senstive information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22701
    CVE-2022-22701
    PartKeepr versions up to v1.4.0, loads attachments using a URL while creating a part and allows the use of the 'file://' URI scheme, allowing an authenticated user to read local files.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-22702
    CVE-2022-22702
    PartKeepr versions up to v1.4.0, in the functionality to upload attachments using a URL when creating a part does not validate that requests can be made to local ports, allowing an authenticated user ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-22815
    CVE-2022-22815
    path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:6 | 回复:0
  • CVE-2022-22816
    CVE-2022-22816
    path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap