CVE漏洞

OGeek|极客世界-中国程序员成长平台 › 门户 › 漏洞›CVE漏洞

RSS

CVE-2021-1349

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct Cypher query language injection attacks on an affected s ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：34 | 回复：0
CVE-2021-1350

A vulnerability in the web UI of Cisco Umbrella could allow an unauthenticated, remote attacker to negatively affect the performance of this service. The vulnerability exists due to insufficient rate ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：26 | 回复：0
CVE-2021-1353

A vulnerability in the IPv4 protocol handling of Cisco StarOS could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is d ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：41 | 回复：0
CVE-2021-1355

Multiple vulnerabilities in Cisco Unified Communications Manager IM amp; Presence Service (Unified CM IMamp;P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on an ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：24 | 回复：0
CVE-2021-1357

Multiple vulnerabilities in Cisco Unified Communications Manager IM amp; Presence Service (Unified CM IMamp;P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on an ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：26 | 回复：0
CVE-2021-1364

Multiple vulnerabilities in Cisco Unified Communications Manager IM amp; Presence Service (Unified CM IMamp;P) could allow an attacker to conduct path traversal attacks and SQL injection attacks on an ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：39 | 回复：0
CVE-2021-1135

Multiple vulnerabilities in the REST API endpoint of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to view, modify, and delete data without proper authorizatio ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：30 | 回复：0
CVE-2021-1138

Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：32 | 回复：0
CVE-2021-1139

Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：25 | 回复：0
CVE-2021-1140

Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：24 | 回复：0
CVE-2021-1141

Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：26 | 回复：0
CVE-2021-1142

Multiple vulnerabilities in the web UI of Cisco Smart Software Manager Satellite could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system. For m ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：27 | 回复：0
CVE-2021-1218

A vulnerability in the web management interface of Cisco Smart Software Manager satellite could allow an authenticated, remote attacker to redirect a user to an undesired web page. The vulnerability i ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：18 | 回复：0
CVE-2021-1219

A vulnerability in Cisco Smart Software Manager Satellite could allow an authenticated, local attacker to access sensitive information on an affected system. The vulnerability is due to insufficient p ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：34 | 回复：0
CVE-2021-1222

A vulnerability in the web-based management interface of Cisco Smart Software Manager Satellite could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. Th ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：34 | 回复：0
CVE-2021-1225

Multiple vulnerabilities in the web-based management interface of Cisco SD-WAN vManage Software could allow an unauthenticated, remote attacker to conduct SQL injection attacks on an affected system. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：23 | 回复：0
CVE-2021-1233

A vulnerability in the CLI of Cisco SD-WAN Software could allow an authenticated, local attacker to access sensitive information on an affected device. The vulnerability is due to insufficient input v ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：27 | 回复：0
CVE-2021-1235

A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficien ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：37 | 回复：0
CVE-2021-1241

Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute denial of service (DoS) attacks against an affected device. For more information about thes ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：28 | 回复：0
CVE-2021-1247

Multiple vulnerabilities in certain REST API endpoints of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to execute arbitrary SQL commands on an affected device ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：34 | 回复：0
CVE-2021-1248

Multiple vulnerabilities in certain REST API endpoints of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to execute arbitrary SQL commands on an affected device ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：19 | 回复：0
CVE-2021-1249

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow a remote attacker with network-operator privileges to conduct a cross-site script ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：29 | 回复：0
CVE-2021-1250

Multiple vulnerabilities in the web-based management interface of Cisco Data Center Network Manager (DCNM) could allow a remote attacker with network-operator privileges to conduct a cross-site script ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：26 | 回复：0
CVE-2020-26252

OpenMage is a community-driven alternative to Magento CE. In OpenMage before versions 19.4.10 and 20.0.6, there is a vulnerability which enables remote code execution. In affected versions an administ ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：17 | 回复：0
CVE-2020-26278

Weave Net is open source software which creates a virtual network that connects Docker containers across multiple hosts and enables their automatic discovery. Weave Net before version 2.8.0 has a vuln ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：19 | 回复：0
CVE-2021-1067

NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the implementation of the RPMB command status, in which an attacker can write to the Write Protect Configuration Block, which ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：21 | 回复：0
CVE-2021-1068

NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVDEC component, in which an attacker can read from or write to a memory location that is outside the intended boundary o ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：20 | 回复：0
CVE-2021-1069

NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVHost function, which may lead to abnormal reboot due to a null pointer reference, causing data loss.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：21 | 回复：0
CVE-2020-27221

In Eclipse OpenJ9 up to and including version 0.23, there is potential for a stack-based buffer overflow when the virtual machine or JNI natives are converting from UTF-8 characters to platform encodi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：22 | 回复：0
CVE-2020-11119

Buffer over-read can happen when the buffer length received from response handlers is more than the size of the payload in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Cons ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：15 | 回复：0
CVE-2020-11136

Buffer Over-read in audio driver while using malloc management function due to not returning NULL for zero sized memory requirement in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：16 | 回复：0
CVE-2020-11137

Integer multiplication overflow resulting in lower buffer size allocation than expected causes memory access out of bounds resulting in possible device instability in Snapdragon Auto, Snapdragon Compu ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：21 | 回复：0
CVE-2020-11138

Uninitialized pointers accessed during music play back with incorrect bit stream due to an uninitialized heap memory result in instability in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：21 | 回复：0
CVE-2020-11139

Out of bound memory access while processing frames due to lack of check of invalid frames received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：22 | 回复：0
CVE-2020-11140

Out of bound memory access during music playback with ALAC modified content due to improper validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdra ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：23 | 回复：0
CVE-2020-11143

Out of bound memory access during music playback with modified content due to copying data without checking destination buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：18 | 回复：0
CVE-2020-11144

Buffer over-read while UE process invalid DL ROHC packet for decompression due to lack of check of size of compresses packet in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：18 | 回复：0
CVE-2020-11145

Divide by zero issue can happen while updating delta extension header due to improper validation of master SN and extension header SN in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, S ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：40 | 回复：0
CVE-2020-11146

Out of bound write while copying data using IOCTL due to lack of check of array index received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapd ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：20 | 回复：0
CVE-2020-11148

Use after free issue in HIDL while using callback to post event in Rx thread when internal mutex is not acquired and meantime close is triggered and callback instance is deleted in Snapdragon Auto, Sn ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:48 | 阅读：40 | 回复：0