• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞CVE漏洞

CVE漏洞

RSS
  • CVE-2021-43054
    CVE-2021-43054
    The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL - Developer Edition, and TIBCO eFTL - Enterprise Edition contains an easily exploitable vulnerability ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-43055
    CVE-2021-43055
    The eFTL Server component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL - Developer Edition, and TIBCO eFTL - Enterprise Edition contains an easily exploitable vulnerability ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2021-43971
    CVE-2021-43971
    A SQL injection vulnerability in /mobile/SelectUsers.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to execute arbitrary SQL commands via the filterText parameter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-43972
    CVE-2021-43972
    An unrestricted file copy vulnerability in /UserSelfServiceSettings.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to copy arbitrary files on the server filesystem to the web ro ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2021-43973
    CVE-2021-43973
    An unrestricted file upload vulnerability in /UploadPsIcon.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to upload an arbitrary file via the file parameter in the HTTP POST bod ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2021-43974
    CVE-2021-43974
    An issue was discovered in SysAid ITIL 20.4.74 b10. The /enduserreg endpoint is used to register end users anonymously, but does not respect the server-side setting that determines if anonymous users ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-21833
    CVE-2022-21833
    Virtual Machine IDE Drive Elevation of Privilege Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21834
    CVE-2022-21834
    Windows User-mode Driver Framework Reflector Driver Elevation of Privilege Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21835
    CVE-2022-21835
    Microsoft Cryptographic Services Elevation of Privilege Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21836
    CVE-2022-21836
    Windows Certificate Spoofing Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21837
    CVE-2022-21837
    Microsoft SharePoint Server Remote Code Execution Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2022-21838
    CVE-2022-21838
    Windows Cleanup Manager Elevation of Privilege Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21839
    CVE-2022-21839
    Windows Event Tracing Discretionary Access Control List Denial of Service Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21840
    CVE-2022-21840
    Microsoft Office Remote Code Execution Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21841
    CVE-2022-21841
    Microsoft Excel Remote Code Execution Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:6 | 回复:0
  • CVE-2022-21842
    CVE-2022-21842
    Microsoft Word Remote Code Execution Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:4 | 回复:0
  • CVE-2022-21843
    CVE-2022-21843
    Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21848, CVE-2022-21883, CVE-2022-21889, CVE-2022-21890.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:59 | 阅读:5 | 回复:0
  • CVE-2021-3842
    CVE-2021-3842
    nltk is vulnerable to Inefficient Regular Expression Complexity……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-45913
    CVE-2021-45913
    A hardcoded key in ControlUp Real-Time Agent (cuAgent.exe) before 8.2.5 may allow a potential attacker to run OS commands via a WCF channel.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-45978
    CVE-2021-45978
    Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via xfa.host.gotoURL in the XFA API.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-45979
    CVE-2021-45979
    Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via app.launchURL in the JavaScript API.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-45980
    CVE-2021-45980
    Foxit PDF Reader and PDF Editor before 11.1 on macOS allow remote attackers to execute arbitrary code via getURL in the JavaScript API.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-40148
    CVE-2021-40148
    In Modem EMM, there is a possible information disclosure due to a missing data encryption. This could lead to remote information disclosure with no additional execution privileges needed. User interac ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-41789
    CVE-2021-41789
    In wifi driver, there is a possible system crash due to a missing validation check. This could lead to remote denial of service from a proximal attacker with no additional execution privileges needed. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-45389
    CVE-2021-45389
    StarWind SAN NAS build 1578 and StarWind Command Center Build 6864 Update Manager allows authentication with JTW token which is signed with any key. An attacker could use self-signed JTW token to byp ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-45912
    CVE-2021-45912
    An unauthenticated Named Pipe channel in Controlup Real-Time Agent (cuAgent.exe) before 8.5 potentially allows an attacker to run OS commands via the ProcessActionRequest WCF method.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-20012
    CVE-2022-20012
    In mdp driver, there is a possible memory corruption due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is no ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:5 | 回复:0
  • CVE-2022-20013
    CVE-2022-20013
    In vow driver, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed f ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-20014
    CVE-2022-20014
    In vow driver, there is a possible memory corruption due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-20015
    CVE-2022-20015
    In kd_camera_hw driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-20016
    CVE-2022-20016
    In vow driver, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed f ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-20018
    CVE-2022-20018
    In seninf driver, there is a possible information disclosure due to uninitialized data. This could lead to local information disclosure with System execution privileges needed. User interaction is not ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:5 | 回复:0
  • CVE-2022-20019
    CVE-2022-20019
    In libMtkOmxGsmDec, there is a possible information disclosure due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User in ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:5 | 回复:0
  • CVE-2022-20020
    CVE-2022-20020
    In libvcodecdrv, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interact ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-20021
    CVE-2022-20021
    In Bluetooth, there is a possible application crash due to bluetooth does not properly handle the reception of multiple LMP_host_connection_req. This could lead to remote denial of service of bluetoot ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:5 | 回复:0
  • CVE-2022-20022
    CVE-2022-20022
    In Bluetooth, there is a possible link disconnection due to bluetooth does not properly handle a connection attempt from a host with the same BD address as the currently connected BT host. This could ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:5 | 回复:0
  • CVE-2022-20023
    CVE-2022-20023
    In Bluetooth, there is a possible application crash due to bluetooth flooding a device with LMP_AU_rand packet. This could lead to remote denial of service of bluetooth with no additional execution pr ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-3845
    CVE-2021-3845
    ws-scrcpy is vulnerable to External Control of File Name or Path……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2021-39143
    CVE-2021-39143
    Spinnaker is an open source, multi-cloud continuous delivery platform. A path traversal vulnerability was discovered in uses of TAR files by AppEngine for deployments. This uses a utility to extract f ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0
  • CVE-2022-0086
    CVE-2022-0086
    uppy is vulnerable to Server-Side Request Forgery (SSRF)……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:58 | 阅读:4 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap