• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

CVE漏洞

RSS
  • CVE-2021-30713
    CVE-2021-30713
    A permissions issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.4. A malicious application may be able to bypass Privacy preferences. Apple is aware of a report tha ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:38 | 回复:0
  • CVE-2021-30714
    CVE-2021-30714
    A race condition was addressed with improved state handling. This issue is fixed in iOS 14.6 and iPadOS 14.6. An application may be able to cause unexpected system termination or write kernel memory.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:42 | 回复:0
  • CVE-2021-30715
    CVE-2021-30715
    A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. Processing a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:60 | 回复:0
  • CVE-2021-30716
    CVE-2021-30716
    A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a privileged n ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:56 | 回复:0
  • CVE-2021-30717
    CVE-2021-30717
    A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An attacker in a ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:56 | 回复:0
  • CVE-2021-30718
    CVE-2021-30718
    This issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.4. A non-privileged user may be able to modify restricted settings.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:36 | 回复:0
  • CVE-2021-30719
    CVE-2021-30719
    A local user may be able to cause unexpected system termination or read kernel memory. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina. An out-of-bounds read issue was add ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:29 | 回复:0
  • CVE-2020-24672
    CVE-2020-24672
    A vulnerability in Base Software for SoftControl allows an attacker to insert and run arbitrary code in a computer running the affected product. This issue affects: .……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:31 | 回复:0
  • CVE-2021-21897
    CVE-2021-21897
    A code execution vulnerability exists in the DL_Dxf::handleLWPolylineData functionality of Ribbonsoft dxflib 3.17.0. A specially-crafted .dxf file can lead to a heap buffer overflow. An attacker can p ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:51 | 回复:0
  • CVE-2021-35526
    CVE-2021-35526
    Backup file without encryption vulnerability is found in Hitachi ABB Power Grids System Data Manager – SDM600 allows attacker to gain access to sensitive information. This issue affects: Hitachi ABB ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:47 | 回复:0
  • CVE-2021-21103
    CVE-2021-21103
    Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to di ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:37 | 回复:0
  • CVE-2021-21104
    CVE-2021-21104
    Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to re ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:39 | 回复:0
  • CVE-2021-21105
    CVE-2021-21105
    Adobe Illustrator version 25.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to ac ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:39 | 回复:0
  • CVE-2021-28566
    CVE-2021-28566
    Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are vulnerable to an Information Disclosure vulnerability when uploading a modified png file to a product image. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:41 | 回复:0
  • CVE-2021-28567
    CVE-2021-28567
    Magento versions 2.4.2 (and earlier), 2.4.1-p1 (and earlier) and 2.3.6-p1 (and earlier) are vulnerable to an Improper Authorization vulnerability in the customers module. Successful exploitation could ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:42 | 回复:0
  • CVE-2021-28568
    CVE-2021-28568
    Adobe Genuine Services version 7.1 (and earlier) is affected by an Insecure file permission vulnerability during installation process. A local authenticated attacker could leverage this vulnerability ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:47 | 回复:0
  • CVE-2021-28569
    CVE-2021-28569
    Adobe Media Encoder version 15.1 (and earlier) is affected by an Out-of-bounds Read vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability t ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:50 | 回复:0
  • CVE-2021-28571
    CVE-2021-28571
    Adobe After Effects version 18.1 (and earlier) is affected by a potential Command injection vulnerability when chained with a development and debugging tool for JavaScript scripts. An unauthenticated ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:48 | 回复:0
  • CVE-2021-28732
    CVE-2021-28732
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-28372. Reason: This candidate is a duplicate of CVE-2021-28372. A typo caused the wrong ID to be used. Notes: All CVE users should r ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:42 | 回复:0
  • CVE-2021-33981
    CVE-2021-33981
    An insecure, direct object vulnerability in hunting/fishing license retrieval function of the Fish | Hunt FL iOS app versions 3.8.0 and earlier allows a remote authenticated attacker to retrieve other ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:44 | 回复:0
  • CVE-2021-33982
    CVE-2021-33982
    An insufficient session expiration vulnerability exists in the Fish | Hunt FL iOS app version 3.8.0 and earlier, which allows a remote attacker to reuse, spoof, or steal other user and admin sessions.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:34 | 回复:0
  • CVE-2021-3049
    CVE-2021-3049
    An improper authorization vulnerability in the Palo Alto Networks Cortex XSOAR server enables an authenticated network-based attacker with investigation read permissions to download files from inciden ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:42 | 回复:0
  • CVE-2021-3051
    CVE-2021-3051
    An improper verification of cryptographic signature vulnerability exists in Cortex XSOAR SAML authentication that enables an unauthenticated network-based attacker with specific knowledge of the Corte ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:44 | 回复:0
  • CVE-2021-3052
    CVE-2021-3052
    A reflected cross-site scripting (XSS) vulnerability in the Palo Alto Network PAN-OS web interface enables an authenticated network-based attacker to mislead another authenticated PAN-OS administrator ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:47 | 回复:0
  • CVE-2021-3053
    CVE-2021-3053
    An improper handling of exceptional conditions vulnerability exists in the Palo Alto Networks PAN-OS dataplane that enables an unauthenticated network-based attacker to send specifically crafted traff ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:46 | 回复:0
  • CVE-2021-3054
    CVE-2021-3054
    A time-of-check to time-of-use (TOCTOU) race condition vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator with permission to upload plugins to execute ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:30 | 回复:0
  • CVE-2021-3055
    CVE-2021-3055
    An improper restriction of XML external entity (XXE) reference vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to read any arbitrary file from the f ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:25 | 回复:0
  • CVE-2021-40346
    CVE-2021-40346
    An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HA ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:35 | 回复:0
  • CVE-2021-31274
    CVE-2021-31274
    In LibreNMS 21.3.0, a stored XSS vulnerability was identified in the API Access page due to insufficient sanitization of the $api-description variable. As a result, arbitrary Javascript code can get ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:42 | 回复:0
  • CVE-2021-32805
    CVE-2021-32805
    Flask-AppBuilder is an application development framework, built on top of Flask. In affected versions if using Flask-AppBuilder OAuth, an attacker can share a carefully crafted URL with a trusted doma ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:37 | 回复:0
  • CVE-2021-36215
    CVE-2021-36215
    LINE client for iOS 10.21.3 and before allows address bar spoofing due to inappropriate address handling.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:33 | 回复:0
  • CVE-2021-36216
    CVE-2021-36216
    LINE for Windows 6.2.1.2289 and before allows arbitrary code execution via malicious DLL injection.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:38 | 回复:0
  • CVE-2021-38388
    CVE-2021-38388
    Central Dogma allows privilege escalation with mirroring to the internal dogma repository that has a file managing the authorization of the project.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:35 | 回复:0
  • CVE-2021-40537
    CVE-2021-40537
    Server Side Request Forgery (SSRF) vulnerability exists in owncloud/user_ldap 0.15.4 in the settings of the user_ldap app. Administration role is necessary for exploitation.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:37 | 回复:0
  • CVE-2021-40797
    CVE-2021-40797
    An issue was discovered in the routes middleware in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. By making API requests involving nonexistent controllers, an authentica ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:29 | 回复:0
  • CVE-2020-19137
    CVE-2020-19137
    Incorrect Access Control in Autumn v1.0.4 and earlier allows remote attackers to obtain clear-text login credentials via the component autumn-cms/user/getAllUser/?page=1limit=10.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:40 | 回复:0
  • CVE-2020-19138
    CVE-2020-19138
    Unrestricted Upload of File with Dangerous Type in DotCMS v5.2.3 and earlier allow remote attackers to execute arbitrary code via the component /src/main/java/com/dotmarketing/filters/CMSFilter.java.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:36 | 回复:0
  • CVE-2020-26772
    CVE-2020-26772
    Command Injection in PPGo_Jobs v2.8.0 allows remote attackers to execute arbitrary code via the 'AjaxRun()' function.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:45 | 回复:0
  • CVE-2021-30605
    CVE-2021-30605
    Inappropriate implementation in the ChromeOS Readiness Tool installer on Windows prior to 1.0.2.0 loosens DCOM access rights on two objects allowing an attacker to potentially bypass discretionary acc ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:41 | 回复:0
  • CVE-2021-36440
    CVE-2021-36440
    Unrestricted File Upload in ShowDoc v2.9.5 allows remote attackers to execute arbitrary code via the 'file_url' parameter in the component AdminUpdateController.class.php'.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:41 | 阅读:51 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
专题导读
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap