• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

漏洞

RSS

下级分类:

  • CVE-2022-21726
    CVE-2022-21726
    Tensorflow is an Open Source Machine Learning Framework. The implementation of `Dequantize` does not fully validate the value of `axis` and can result in heap OOB accesses. The `axis` argument can be ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:37 | 回复:0
  • CVE-2022-24121
    CVE-2022-24121
    SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:28 | 回复:0
  • CVE-2022-23873
    CVE-2022-23873
    Victor CMS v1.0 was discovered to contain a SQL injection vulnerability that allows attackers to inject arbitrary commands via 'user_firstname' parameter.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:38 | 回复:0
  • CVE-2022-23871
    CVE-2022-23871
    Multiple cross-site scripting (XSS) vulnerabilities in the component outcomes_addProcess.php of Gibbon CMS v22.0.01 allow attackers to execute arbitrary web scripts or HTML via a crafted payload inste ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:31 | 回复:0
  • CVE-2022-23357
    CVE-2022-23357
    mozilo2.0 was discovered to be vulnerable to directory traversal attacks via the parameter curent_dir.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:39 | 回复:0
  • CVE-2022-24031
    CVE-2022-24031
    An issue was discovered in NvmExpressDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploit ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:32 | 回复:0
  • CVE-2022-24030
    CVE-2022-24030
    An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.1 through 5.5. An SMM memory corruption vulnerability allows an attacker to write fixed or predictable data to SMRAM. Exploiting ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:37 | 回复:0
  • CVE-2022-23833
    CVE-2022-23833
    An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2. Passing certain inputs to multipart forms could result in an infinite loop when parsing ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:30 | 回复:0
  • CVE-2022-22818
    CVE-2022-22818
    The {% debug %} template tag in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2 does not properly encode the current context. This may lead to XSS.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:29 | 回复:0
  • CVE-2021-43615
    CVE-2021-43615
    An issue was discovered in HddPassword in Insyde InsydeH2O with kernel 5.1 before 05.16.23, 5.2 before 05.26.23, 5.3 before 05.35.23, 5.4 before 05.43.22, and 5.5 before 05.51.22. An SMM memory corrup ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:39 | 回复:0
  • CVE-2021-43323
    CVE-2021-43323
    An issue was discovered in UsbCoreDxe in Insyde InsydeH2O with kernel 5.5 before 05.51.45, 5.4 before 05.43.45, 5.3 before 05.35.45, 5.2 before 05.26.45, 5.1 before 05.16.45, and 5.0 before 05.08.45. ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:35 | 回复:0
  • CVE-2021-42554
    CVE-2021-42554
    An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:38 | 回复:0
  • CVE-2021-42113
    CVE-2021-42113
    An issue was discovered in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, and Kernel 5.3 before 05.32.25. An SMM callout vulnerability allow ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:51 | 回复:0
  • CVE-2021-42060
    CVE-2021-42060
    An issue was discovered in Insyde InsydeH2O Kernel 5.0 through 05.08.41, Kernel 5.1 through 05.16.41, Kernel 5.2 before 05.23.22, and Kernel 5.3 before 05.32.22. An Int15ServiceSmm SMM callout vulnera ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:40 | 回复:0
  • CVE-2021-42059
    CVE-2021-42059
    An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.08.41, Kernel 5.1 before 05.16.41, Kernel 5.2 before 05.26.41, Kernel 5.3 before 05.35.41, and Kernel 5.4 before 05.42.20. A stack-base ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:41 | 回复:0
  • CVE-2021-41841
    CVE-2021-41841
    An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary code ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:32 | 回复:0
  • CVE-2021-41840
    CVE-2021-41840
    An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary c ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:39 | 回复:0
  • CVE-2021-41839
    CVE-2021-41839
    An issue was discovered in NvmExpressDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to wr ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:40 | 回复:0
  • CVE-2021-41838
    CVE-2021-41838
    An issue was discovered in SdHostDriver in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an attacker to access the System Management Mode and execute arbitrary co ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:36 | 回复:0
  • CVE-2021-41837
    CVE-2021-41837
    An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereference that causes SMM memory corruption, an attacker may be able to write ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:47 | 回复:0
  • CVE-2021-33627
    CVE-2021-33627
    An issue was discovered in Insyde InsydeH2O 5.x, affecting FwBlockServiceSmm. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether the a ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:70 | 回复:0
  • CVE-2021-33625
    CVE-2021-33625
    An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate() function of the EFI_SMM_COMMUNICATION_PROTOCOL do not check whether t ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:59 | 回复:0
  • CVE-2020-5953
    CVE-2020-5953
    A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler that dereferences gRT (EFI_RUNTIME_SERVICES) pointer to call a GetVariabl ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:104 | 回复:0
  • CVE-2022-24069
    CVE-2022-24069
    An issue was discovered in AhciBusDxe in Insyde InsydeH2O with kernel 5.0 before 05.08.41, 5.1 before 05.16.29, 5.2 before 05.26.29, 5.3 before 05.35.29, 5.4 before 05.43.29, and 5.5 before 05.51.29. ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:190 | 回复:0
  • CVE-2021-43522
    CVE-2021-43522
    An issue was discovered in Insyde InsydeH2O with kernel 5.1 through 2021-11-08, 5.2 through 2021-11-08, and 5.3 through 2021-11-08. A StorageSecurityCommandDxe SMM memory corruption vulnerability allo ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:102 | 回复:0
  • CVE-2022-0432
    CVE-2022-0432
    Prototype Pollution in GitHub repository mastodon/mastodon prior to 3.5.0.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:146 | 回复:0
  • CVE-2022-0443
    CVE-2022-0443
    Use After Free in GitHub repository vim/vim prior to 8.2.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:66 | 回复:0
  • CVE-2021-39021
    CVE-2021-39021
    IBM Guardium Data Encryption (GDE) 5.0.0.2 behaves differently or sends different responses under different circumstances in a way that is observable to an unauthorized actor, which could facilitate u ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:47 | 回复:0
  • CVE-2021-42642
    CVE-2021-42642
    PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to disclose the plaintext con ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:40 | 回复:0
  • CVE-2021-42641
    CVE-2021-42641
    PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to disclose the username and ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:52 | 回复:0
  • CVE-2021-42640
    CVE-2021-42640
    PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to an Insecure Direct Object Reference (IDOR) vulnerability that allows an unauthenticated attacker to reassign drivers for any p ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:48 | 回复:0
  • CVE-2021-42639
    CVE-2021-42639
    PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to multiple reflected cross site scripting vulnerabilities. Attacker controlled input is reflected back in the page without sanit ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:36 | 回复:0
  • CVE-2021-42637
    CVE-2021-42637
    PrinterLogic Web Stack versions 19.1.1.13 SP9 and below use user-controlled input to craft a URL, resulting in a Server Side Request Forgery (SSRF) vulnerability.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:21 | 回复:0
  • CVE-2021-42633
    CVE-2021-42633
    PrinterLogic Web Stack versions 19.1.1.13 SP9 and below are vulnerable to SQL Injection, which may allow an attacker to access additional audit records.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:24 | 回复:0
  • CVE-2022-22510
    CVE-2022-22510
    Codesys Profinet in version V4.2.0.0 is prone to null pointer dereference that allows a denial of service (DoS) attack of an unauthenticated user via SNMP.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:17 | 回复:0
  • CVE-2022-22509
    CVE-2022-22509
    In Phoenix Contact FL SWITCH Series 2xxx in version 3.00 an incorrect privilege assignment allows an low privileged user to enable full access to the device configuration.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:17 | 回复:0
  • CVE-2022-21817
    CVE-2022-21817
    NVIDIA Omniverse Launcher contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker, if they can get user to browse malicious site, to acquire acces ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:13 | 回复:0
  • CVE-2022-21724
    CVE-2022-21724
    pgjdbc is the offical PostgreSQL JDBC Driver. A security hole was found in the jdbc driver for postgresql database while doing security research. The system using the postgresql library will be attack ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:10 | 回复:0
  • CVE-2022-0366
    CVE-2022-0366
    An authenticated and authorized agent user could potentially gain administrative access via an SQLi vulnerability to Capsule8 Console between versions 4.6.0 and 4.9.1.……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:9 | 回复:0
  • CVE-2021-41018
    CVE-2021-41018
    A improper neutralization of special elements used in an os command ('os command injection') in Fortinet FortiWeb version 6.4.1 and below, 6.3.15 and below allows attacker to execute unauthori ...……
    作者:菜鸟教程小白 | 时间:2022-6-23 08:26 | 阅读:9 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap