• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

CVE漏洞

RSS
  • CVE-2021-22406
    CVE-2021-22406
    There is an Uncaught Exception vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the app to exit unexpectedly.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:64 | 回复:0
  • CVE-2021-22407
    CVE-2021-22407
    There is a Configuration defects in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:46 | 回复:0
  • CVE-2021-22436
    CVE-2021-22436
    There is a Logic Bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service integrity and availability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:33 | 回复:0
  • CVE-2021-22450
    CVE-2021-22450
    A component of the HarmonyOS has a Incomplete Cleanup vulnerability. Local attackers may exploit this vulnerability to cause memory exhaustion.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:56 | 回复:0
  • CVE-2021-22451
    CVE-2021-22451
    A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause memory overwriting.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:56 | 回复:0
  • CVE-2021-22452
    CVE-2021-22452
    A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to read at any address.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:36 | 回复:0
  • CVE-2021-22453
    CVE-2021-22453
    A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to cause nearby process crash.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:48 | 回复:0
  • CVE-2021-22454
    CVE-2021-22454
    A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause core dump.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:54 | 回复:0
  • CVE-2021-22455
    CVE-2021-22455
    A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause the memory which is not released.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:57 | 回复:0
  • CVE-2021-22456
    CVE-2021-22456
    A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel System unavailable.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:50 | 回复:0
  • CVE-2021-22457
    CVE-2021-22457
    A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to cause out-of-bounds write.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:40 | 回复:0
  • CVE-2021-22458
    CVE-2021-22458
    A component of the HarmonyOS has a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability. Local attackers may exploit this vulnerability to cause arbitrary code executi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:44 | 回复:0
  • CVE-2021-22459
    CVE-2021-22459
    A component of the HarmonyOS has a NULL Pointer Dereference vulnerability. Local attackers may exploit this vulnerability to cause System functions which are unavailable.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:50 | 回复:0
  • CVE-2021-22460
    CVE-2021-22460
    A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerability to bypass the control mechanism.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:16 | 阅读:51 | 回复:0
  • CVE-2021-35228
    CVE-2021-35228
    This vulnerability occurred due to missing input sanitization for one of the output fields that is extracted from headers on specific section of page causing a reflective cross site scripting attack. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:10 | 回复:0
  • CVE-2021-41146
    CVE-2021-41146
    qutebrowser is an open source keyboard-focused browser with a minimal GUI. Starting with qutebrowser v1.7.0, the Windows installer for qutebrowser registers a `qutebrowserurl:` URL handler. With certa ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:19 | 回复:0
  • CVE-2021-41159
    CVE-2021-41159
    FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections (`/gt:rpc`) fail to valid ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:12 | 回复:0
  • CVE-2021-41160
    CVE-2021-41160
    FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a malicious server might trigger out of bound writes in a connected clien ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:12 | 回复:0
  • CVE-2021-42715
    CVE-2021-42715
    An issue was discovered in stb stb_image.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:14 | 回复:0
  • CVE-2021-42716
    CVE-2021-42716
    An issue was discovered in stb stb_image.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the re ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:5 | 回复:0
  • CVE-2021-22034
    CVE-2021-22034
    Releases prior to VMware vRealize Operations Tenant App 8.6 contain an Information Disclosure Vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:12 | 回复:0
  • CVE-2021-39321
    CVE-2021-39321
    Version 3.3.23 of the Sassy Social Share WordPress plugin is vulnerable to PHP Object Injection via the wp_ajax_heateor_sss_import_config AJAX action due to deserialization of unvalidated user supplie ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:9 | 回复:0
  • CVE-2021-39328
    CVE-2021-39328
    The Simple Job Board WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $job_board_privacy_policy_label variable echo'd out via the ~/admin/settings/ ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:11 | 回复:0
  • CVE-2021-39348
    CVE-2021-39348
    The LearnPress WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $custom_profile parameter found in the ~/inc/admin/views/backend-user-profile.php file ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:10 | 回复:0
  • CVE-2021-39352
    CVE-2021-39352
    The Catch Themes Demo Import WordPress plugin is vulnerable to arbitrary file uploads via the import functionality found in the ~/inc/CatchThemesDemoImport.php file, in versions up to and including 1. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:14 | 回复:0
  • CVE-2021-39354
    CVE-2021-39354
    The Easy Digital Downloads WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the $start_date and $end_date parameters found in the ~/includes/admin/payments/class-payments-table.php ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:23 | 回复:0
  • CVE-2021-39356
    CVE-2021-39356
    The Content Staging WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and escaping via several parameters that are echo'd out via the ~/templates/s ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:19 | 回复:0
  • CVE-2021-39357
    CVE-2021-39357
    The Leaky Paywall WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via the ~/class.php file which allowed attackers with administrati ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:22 | 回复:0
  • CVE-2021-40719
    CVE-2021-40719
    Adobe Connect version 11.2.3 (and earlier) is affected by a Deserialization of Untrusted Data vulnerability to achieve arbitrary method invocation when AMF messages are deserialized on an Adobe Connec ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:24 | 回复:0
  • CVE-2021-41168
    CVE-2021-41168
    Snudown is a reddit-specific fork of the Sundown Markdown parser used by GitHub, with Python integration added. In affected versions snudown was found to be vulnerable to denial of service attacks to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:19 | 回复:0
  • CVE-2021-27746
    CVE-2021-27746
    HCL Connections Security Update for Reflected Cross-Site Scripting (XSS) Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:16 | 回复:0
  • CVE-2021-36869
    CVE-2021-36869
    Reflected Cross-Site Scripting (XSS) vulnerability in WordPress Ivory Search plugin (versions = 4.6.6). Vulnerable parameter: post.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:20 | 回复:0
  • CVE-2021-41127
    CVE-2021-41127
    Rasa is an open source machine learning framework to automate text-and voice-based conversations. In affected versions a vulnerability exists in the functionality that loads a trained model `tar.gz` f ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:7 | 回复:0
  • CVE-2021-41169
    CVE-2021-41169
    Sulu is an open-source PHP content management system based on the Symfony framework. In versions before 1.6.43 are subject to stored cross site scripting attacks. HTML input into Tag names is not prop ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:25 | 回复:0
  • CVE-2021-34362
    CVE-2021-34362
    A command injection vulnerability has been reported to affect QNAP device running Media Streaming add-on. If exploited, this vulnerability allow remote attackers to run arbitrary commands. We have alr ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:15 | 回复:0
  • CVE-2021-31834
    CVE-2021-31834
    Stored Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where th ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:10 | 回复:0
  • CVE-2021-31835
    CVE-2021-31835
    Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via a specific parameter where the admi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:9 | 回复:0
  • CVE-2021-31682
    CVE-2021-31682
    The login portal for the Automated Logic WebCTRL/WebCTRL OEM web application contains a vulnerability that allows for reflected XSS attacks due to the operatorlocale GET parameter not being sanitized. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:16 | 回复:0
  • CVE-2021-35230
    CVE-2021-35230
    As a result of an unquoted service path vulnerability present in the Kiwi CatTools Installation Wizard, a local attacker could gain escalated privileges by inserting an executable into the path of the ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:10 | 回复:0
  • CVE-2021-36357
    CVE-2021-36357
    An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for endian conversion of a uint16_t year value, resulting in a type mismatch that can truncate a higher intege ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:15 | 阅读:8 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
专题导读
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap