• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞CVE漏洞

CVE漏洞

RSS
  • CVE-2020-35231
    CVE-2020-35231
    The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was affected by an authentication issue that allows an attacker to bypass access controls and obtain full control of the ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:88 | 回复:0
  • CVE-2020-35232
    CVE-2020-35232
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-35782. Reason: This candidate is a reservation duplicate of CVE-2020-35782. Notes: All CVE users should reference CVE-2020-35782 ins ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:57 | 回复:0
  • CVE-2020-35233
    CVE-2020-35233
    The TFTP server fails to handle multiple connections on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices, and allows external attackers to force device reboots by sending concurrent connections, aka a deni ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:68 | 回复:0
  • CVE-2021-21265
    CVE-2021-21265
    October is a free, open-source, self-hosted CMS platform based on the Laravel PHP Framework. In October before version 1.1.2, when running on poorly configured servers (i.e. the server routes any requ ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:63 | 回复:0
  • CVE-2021-21334
    CVE-2021-21334
    In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/c ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:71 | 回复:0
  • CVE-2021-21371
    CVE-2021-21371
    Tenable for Jira Cloud is an open source project designed to pull Tenable.io vulnerability data, then generate Jira Tasks and sub-tasks based on the vulnerabilities' current state. It published in ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:44 | 回复:0
  • CVE-2020-15260
    CVE-2020-15260
    PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In version 2.10 and earlier, PJ ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:54 | 回复:0
  • CVE-2021-21375
    CVE-2021-21375
    PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earli ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:76 | 回复:0
  • CVE-2021-27918
    CVE-2021-27918
    encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:61 | 回复:0
  • CVE-2021-27919
    CVE-2021-27919
    archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service (panic) upon attempted use of the Reader.Open API for a ZIP archive in which ../ occurs at the beginning of any fil ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:62 | 回复:0
  • CVE-2021-28134
    CVE-2021-28134
    Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal API ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:56 | 回复:0
  • CVE-2020-1898
    CVE-2020-1898
    The fb_unserialize function did not impose a depth limit for nested deserialization. That meant a maliciously constructed string could cause deserialization to recurse, leading to stack exhaustion. Th ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:59 | 回复:0
  • CVE-2020-1899
    CVE-2020-1899
    The unserialize() function supported a type code, S, which was meant to be supported only for APC serialization. This type code allowed arbitrary memory addresses to be accessed as if they were static ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:59 | 回复:0
  • CVE-2020-1900
    CVE-2020-1900
    When unserializing an object with dynamic properties HHVM needs to pre-reserve the full size of the dynamic property array before inserting anything into it. Otherwise the array might resize, invalida ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:40 | 回复:0
  • CVE-2021-21363
    CVE-2021-21363
    swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defin ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:59 | 回复:0
  • CVE-2021-21364
    CVE-2021-21364
    swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defin ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:54 | 回复:0
  • CVE-2021-21378
    CVE-2021-21378
    Envoy is a cloud-native high-performance edge/middle/service proxy. In Envoy version 1.17.0 an attacker can bypass authentication by presenting a JWT token with an issuer that is not in the provider l ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:63 | 回复:0
  • CVE-2021-28132
    CVE-2021-28132
    LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:74 | 回复:0
  • CVE-2020-4976
    CVE-2020-4976
    IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to read and write specific files due to weak file permissions. IBM X-Force ID ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:50 | 回复:0
  • CVE-2020-5024
    CVE-2020-5024
    IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated attacker to cause a denial of service due a hang in the SSL handshake r ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:45 | 回复:0
  • CVE-2020-5025
    CVE-2020-5025
    IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:47 | 回复:0
  • CVE-2021-1640
    CVE-2021-1640
    Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26878.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:48 | 回复:0
  • CVE-2021-1729
    CVE-2021-1729
    Windows Update Stack Setup Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:53 | 回复:0
  • CVE-2021-20336
    CVE-2021-20336
    IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:55 | 回复:0
  • CVE-2021-24089
    CVE-2021-24089
    HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24110, CVE-2021-26902, CVE-2021-27047, CVE-2021-27048, CVE-2021-27049, CVE-2021-27050, CVE-2021-27051, CVE ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:52 | 回复:0
  • CVE-2021-24090
    CVE-2021-24090
    Windows Error Reporting Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:53 | 回复:0
  • CVE-2021-24095
    CVE-2021-24095
    DirectX Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:52 | 回复:0
  • CVE-2021-24104
    CVE-2021-24104
    Microsoft SharePoint Spoofing Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:67 | 回复:0
  • CVE-2021-24107
    CVE-2021-24107
    Windows Event Tracing Information Disclosure Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:58 | 回复:0
  • CVE-2021-24108
    CVE-2021-24108
    Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-27057, CVE-2021-27059.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:60 | 回复:0
  • CVE-2021-24110
    CVE-2021-24110
    HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24089, CVE-2021-26902, CVE-2021-27047, CVE-2021-27048, CVE-2021-27049, CVE-2021-27050, CVE-2021-27051, CVE ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:72 | 回复:0
  • CVE-2021-26411
    CVE-2021-26411
    Internet Explorer Memory Corruption Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:51 | 回复:0
  • CVE-2021-26859
    CVE-2021-26859
    Microsoft Power BI Information Disclosure Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:51 | 回复:0
  • CVE-2021-26860
    CVE-2021-26860
    Windows App-V Overlay Filter Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:59 | 回复:0
  • CVE-2021-26861
    CVE-2021-26861
    Windows Graphics Component Remote Code Execution Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:43 | 回复:0
  • CVE-2021-26862
    CVE-2021-26862
    Windows Installer Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:50 | 回复:0
  • CVE-2021-26863
    CVE-2021-26863
    Windows Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26875, CVE-2021-26900, CVE-2021-27077.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:37 | 回复:0
  • CVE-2021-26864
    CVE-2021-26864
    Windows Virtual Registry Provider Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:49 | 回复:0
  • CVE-2021-26865
    CVE-2021-26865
    Windows Container Execution Agent Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26891.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:37 | 回复:0
  • CVE-2021-26866
    CVE-2021-26866
    Windows Update Service Elevation of Privilege Vulnerability……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:45 | 阅读:47 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap