• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

CVE漏洞

RSS
  • CVE-2021-33289
    CVE-2021-33289
    In NTFS-3G versions 2021.8.22, when a specially crafted MFT section is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:27 | 回复:0
  • CVE-2021-35268
    CVE-2021-35268
    In NTFS-3G versions 2021.8.22, when a specially crafted NTFS inode is loaded in the function ntfs_inode_real_open, a heap buffer overflow can occur allowing for code execution and escalation of privi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:25 | 回复:0
  • CVE-2021-35269
    CVE-2021-35269
    NTFS-3G versions 2021.8.22, when a specially crafted NTFS attribute from the MFT is setup in the function ntfs_attr_setup_flag, a heap buffer overflow can occur allowing for code execution and escala ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:15 | 回复:0
  • CVE-2020-19131
    CVE-2020-19131
    Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the invertImage() function in the component tiffcrop.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:16 | 回复:0
  • CVE-2020-7819
    CVE-2020-7819
    A SQL-Injection vulnerability in the nTracker USB Enterprise(secure USB management solution) allows a remote unauthenticated attacker to perform SQL query to access username password and other session ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:8 | 回复:0
  • CVE-2020-7832
    CVE-2020-7832
    A vulnerability (improper input validation) in the DEXT5 Upload solution allows an unauthenticated attacker to download and execute an arbitrary file via AddUploadFile, SetSelectItem, DoOpenFile funct ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:9 | 回复:0
  • CVE-2020-7865
    CVE-2020-7865
    A vulnerability(improper input validation) in the ExECM CoreB2B solution allows an unauthenticated attacker to download and execute an arbitrary file via httpDownload function. A successful exploit co ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:19 | 回复:0
  • CVE-2021-33286
    CVE-2021-33286
    In NTFS-3G versions 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:19 | 回复:0
  • CVE-2021-33287
    CVE-2021-33287
    In NTFS-3G versions 2021.8.22, when specially crafted NTFS attributes are read in the function ntfs_attr_pread_i, a heap buffer overflow can occur and allow for writing to arbitrary memory or denial ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:12 | 回复:0
  • CVE-2021-35266
    CVE-2021-35266
    In NTFS-3G versions 2021.8.22, when a specially crafted NTFS inode pathname is supplied in an NTFS image a heap buffer overflow can occur resulting in memory disclosure, denial of service and even co ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:10 | 回复:0
  • CVE-2021-35267
    CVE-2021-35267
    NTFS-3G versions 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:14 | 回复:0
  • CVE-2021-39251
    CVE-2021-39251
    A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:21 | 回复:0
  • CVE-2021-39252
    CVE-2021-39252
    A crafted NTFS image can cause an out-of-bounds read in ntfs_ie_lookup in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:12 | 回复:0
  • CVE-2021-39253
    CVE-2021-39253
    A crafted NTFS image can cause an out-of-bounds read in ntfs_runlists_merge_i in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:8 | 回复:0
  • CVE-2021-39254
    CVE-2021-39254
    A crafted NTFS image can cause an integer overflow in memmove, leading to a heap-based buffer overflow in the function ntfs_attr_record_resize, in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:12 | 回复:0
  • CVE-2021-39255
    CVE-2021-39255
    A crafted NTFS image can trigger an out-of-bounds read, caused by an invalid attribute in ntfs_attr_find_in_attrdef, in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:12 | 回复:0
  • CVE-2021-39256
    CVE-2021-39256
    A crafted NTFS image can cause a heap-based buffer overflow in ntfs_inode_lookup_by_name in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:11 | 回复:0
  • CVE-2021-39257
    CVE-2021-39257
    A crafted NTFS image with an unallocated bitmap can lead to a endless recursive function call chain (starting from ntfs_attr_pwrite), causing stack consumption in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:13 | 回复:0
  • CVE-2021-39258
    CVE-2021-39258
    A crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find and ntfs_external_attr_find in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:14 | 回复:0
  • CVE-2021-39259
    CVE-2021-39259
    A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_name, in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:21 | 回复:0
  • CVE-2021-39260
    CVE-2021-39260
    A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:20 | 回复:0
  • CVE-2021-39261
    CVE-2021-39261
    A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:22 | 回复:0
  • CVE-2021-39262
    CVE-2021-39262
    A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:23 | 回复:0
  • CVE-2021-39263
    CVE-2021-39263
    A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in ntfs_get_attribute_value, in NTFS-3G 2021.8.22.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:34 | 回复:0
  • CVE-2021-38123
    CVE-2021-38123
    Open Redirect vulnerability in Micro Focus Network Automation, affecting Network Automation versions 10.4x, 10.5x, 2018.05, 2018.11, 2019.05, 2020.02, 2020.08, 2020.11, 2021.05. The vulnerability coul ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:26 | 回复:0
  • CVE-2021-40539
    CVE-2021-40539
    Zoho ManageEngine ADSelfService Plus version 6113 and prior is vulnerable to REST API authentication bypass with resultant remote code execution.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:16 | 回复:0
  • CVE-2021-38142
    CVE-2021-38142
    Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software upgrades. An attacker on the local network can achieve remote code execution on any computer that tries ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:14 | 回复:0
  • CVE-2021-39197
    CVE-2021-39197
    better_errors is an open source replacement for the standard Rails error page with more information rich error pages. It is also usable outside of Rails in any Rack app as Rack middleware. better_erro ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:28 | 回复:0
  • CVE-2021-35947
    CVE-2021-35947
    The public share controller in the ownCloud server before version 10.8.0 allows a remote attacker to see the internal path and the username of a public share by including invalid characters in the URL ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:27 | 回复:0
  • CVE-2021-35949
    CVE-2021-35949
    The shareinfo controller in the ownCloud Server before 10.8.0 allows an attacker to bypass the permission checks for upload only shares and list metadata about the share.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:19 | 回复:0
  • CVE-2021-39195
    CVE-2021-39195
    Misskey is an open source, decentralized microblogging platform. In affected versions a Server-Side Request Forgery vulnerability exists in Upload from URL and remote attachment handling. This could r ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:12 | 回复:0
  • CVE-2021-39196
    CVE-2021-39196
    pcapture is an open source dumpcap web service interface . In affected versions this vulnerability allows an authenticated but unprivileged user to use the REST API to capture and download packets wit ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:25 | 回复:0
  • CVE-2021-39199
    CVE-2021-39199
    remark-html is an open source nodejs library which compiles Markdown to HTML. In affected versions the documentation of remark-html has mentioned that it was safe by default. In practice the default w ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:14 | 回复:0
  • CVE-2020-19750
    CVE-2020-19750
    An issue was discovered in gpac 0.8.0. The strdup function in box_code_base.c has a heap-based buffer over-read.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:17 | 回复:0
  • CVE-2020-19751
    CVE-2020-19751
    An issue was discovered in gpac 0.8.0. The gf_odf_del_ipmp_tool function in odf_code.c has a heap-based buffer over-read.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:9 | 回复:0
  • CVE-2020-19752
    CVE-2020-19752
    The find_color_or_error function in gifsicle 1.92 contains a NULL pointer dereference.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:13 | 回复:0
  • CVE-2021-32782
    CVE-2021-32782
    Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application is vulnerable to a stored Cross-Site Scripting (XSS) vulner ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:17 | 回复:0
  • CVE-2021-35946
    CVE-2021-35946
    A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:24 | 回复:0
  • CVE-2021-35948
    CVE-2021-35948
    Session fixation on password protected public links in the ownCloud Server before 10.8.0 allows an attacker to bypass the password protection when they can force a target client to use a controlled co ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:25 | 回复:0
  • CVE-2021-37630
    CVE-2021-37630
    Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application allowed any user to join any Secret Circle without approval ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:39 | 阅读:13 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
专题导读
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap