• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2021-40003
    CVE漏洞
    CVE-2021-40003
    HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-40002
    CVE漏洞
    CVE-2021-40002
    The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-40001
    CVE漏洞
    CVE-2021-40001
    The CaasKit module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the MeeTime application to be unavailable.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:6 | 回复:0
  • CVE-2021-40000
    CVE漏洞
    CVE-2021-40000
    The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:7 | 回复:0
  • CVE-2021-39998
    CVE漏洞
    CVE-2021-39998
    There is Vulnerability of APIs being concurrently called for multiple times in HwConnectivityExService a in smartphones. Successful exploitation of this vulnerability may cause the system to crash and ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:8 | 回复:0
  • CVE-2021-39996
    CVE漏洞
    CVE-2021-39996
    There is a Heap-based buffer overflow vulnerability with the NFC module in smartphones. Successful exploitation of this vulnerability may cause memory overflow.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:8 | 回复:0
  • CVE-2021-39993
    CVE漏洞
    CVE-2021-39993
    There is an Integer overflow vulnerability with ACPU in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-38990
    CVE漏洞
    CVE-2021-38990
    IBM AIX 7.1, 7.2, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the mount command which could lead to code execution. IBM X-Force ID: 212952.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-38957
    CVE漏洞
    CVE-2021-38957
    IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive information due to hazardous input validation during QR code generation. IBM X-Force ID: 212040.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-38956
    CVE漏洞
    CVE-2021-38956
    IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could disclose sensitive version information in HTTP response headers that could aid in further attacks against the system. IBM X-Force ID: 212038……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-38921
    CVE漏洞
    CVE-2021-38921
    IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 210067.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-38895
    CVE漏洞
    CVE-2021-38895
    IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-38894
    CVE漏洞
    CVE-2021-38894
    IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information co ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:10 | 回复:0
  • CVE-2021-35247
    CVE漏洞
    CVE-2021-35247
    Serv-U web login screen to LDAP authentication was allowing characters that were not sufficiently sanitized. SolarWinds has updated the input mechanism to perform additional validation and sanitizatio ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-34087
    CVE漏洞
    CVE-2021-34087
    In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver can be used for clickjacking. This includes the setti ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:10 | 回复:0
  • CVE-2021-34086
    CVE漏洞
    CVE-2021-34086
    In Ultimaker S3 3D printer, Ultimaker S5 3D printer, Ultimaker 3 3D printer S-line through 6.3 and Ultimaker 3 through 5.2.16, the local webserver hosts APIs vulnerable to CSRF. They do not verify inc ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-32998
    CVE漏洞
    CVE-2021-32998
    The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-32996
    CVE漏洞
    CVE-2021-32996
    The FANUC R-30iA and R-30iB series controllers are vulnerable to integer coercion errors, which cause the device to crash. A restart is required.……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:7 | 回复:0
  • CVE-2021-30360
    CVE漏洞
    CVE-2021-30360
    Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the repair, an attacker can initiate the installation repair and place a spe ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 22:00 | 阅读:9 | 回复:0
  • CVE-2021-23594
    CVE漏洞
    CVE-2021-23594
    All versions of package realms-shim are vulnerable to Sandbox Bypass via a Prototype Pollution attack vector.……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2021-23568
    CVE漏洞
    CVE-2021-23568
    The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2021-23543
    CVE漏洞
    CVE-2021-23543
    All versions of package realms-shim are vulnerable to Sandbox Bypass via a Prototype Pollution attack vector.……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2021-23173
    CVE漏洞
    CVE-2021-23173
    The affected product is vulnerable to an improper access control, which may allow an authenticated user to gain unauthorized access to sensitive data.……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2021-22569
    CVE漏洞
    CVE-2021-22569
    An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser for ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:6 | 回复:0
  • CVE-2021-22060
    CVE漏洞
    CVE-2021-22060
    In Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries. This ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:6 | 回复:0
  • CVE-2021-20048
    CVE漏洞
    CVE-2021-20048
    A Stack-based buffer overflow in the SonicOS SessionID HTTP response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in the fir ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:6 | 回复:0
  • CVE-2021-20046
    CVE漏洞
    CVE-2021-20046
    A Stack-based buffer overflow in the SonicOS HTTP Content-Length response header allows a remote authenticated attacker to cause Denial of Service (DoS) and potentially results in code execution in th ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:8 | 回复:0
  • CVE-2020-9061
    CVE漏洞
    CVE-2020-9061
    Z-Wave devices using Silicon Labs 500 and 700 series chipsets, including but not likely limited to the SiLabs UZB-7 version 7.00, ZooZ ZST10 version 6.04, Aeon Labs ZW090-A version 3.95, and Samsung S ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2020-9060
    CVE漏洞
    CVE-2020-9060
    Z-Wave devices based on Silicon Labs 500 series chipsets using S2, including but likely not limited to the ZooZ ZST10 version 6.04, ZooZ ZEN20 version 5.03, ZooZ ZEN25 version 5.03, Aeon Labs ZW090-A ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:8 | 回复:0
  • CVE-2020-9059
    CVE漏洞
    CVE-2020-9059
    Z-Wave devices based on Silicon Labs 500 series chipsets using S0 authentication are susceptible to uncontrolled resource consumption leading to battery exhaustion. As an example, the Schlage BE468 ve ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:8 | 回复:0
  • CVE-2020-9058
    CVE漏洞
    CVE-2020-9058
    Z-Wave devices based on Silicon Labs 500 series chipsets using CRC-16 encapsulation, including but likely not limited to the Linear LB60Z-1 version 3.5, Dome DM501 version 4.26, and Jasco ZW4201 versi ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2020-9057
    CVE漏洞
    CVE-2020-9057
    Z-Wave devices based on Silicon Labs 100, 200, and 300 series chipsets do not support encryption, allowing an attacker within radio range to take control of or cause a denial of service to a vulnerabl ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:10 | 回复:0
  • CVE-2020-29050
    CVE漏洞
    CVE-2020-29050
    SphinxSearch in Sphinx Technologies Sphinx through 3.1.1 allows directory traversal (in conjunction with CVE-2019-14511) because the mysql client can be used for CALL SNIPPETS and load_file operations ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:10 | 回复:0
  • CVE-2020-10137
    CVE漏洞
    CVE-2020-10137
    Z-Wave devices based on Silicon Labs 700 series chipsets using S2 do not adequately authenticate or encrypt FIND_NODE_IN_RANGE frames, allowing a remote, unauthenticated attacker to inject a FIND_NODE ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:9 | 回复:0
  • CVE-2021-38674
    CVE漏洞
    CVE-2021-38674
    A cross-site scripting (XSS) vulnerability has been reported to affect QTS, QuTS hero and QuTScloud. If exploited, this vulnerability allows remote attackers to inject malicious code. We have already ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:11 | 回复:0
  • CVE-2021-25743
    CVE漏洞
    CVE-2021-25743
    kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:10 | 回复:0
  • CVE-2022-21664
    CVE漏洞
    CVE-2022-21664
    WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to lack of proper sanitization in one of the classes, there's potential for uni ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:12 | 回复:0
  • CVE-2022-21663
    CVE漏洞
    CVE-2022-21663
    WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. On a multisite, users with Super Admin role can bypass explicit/additional hardening un ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:10 | 回复:0
  • CVE-2022-21662
    CVE漏洞
    CVE-2022-21662
    WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Low-privileged authenticated users (like author) in WordPress core are able to execute ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:14 | 回复:0
  • CVE-2022-21661
    CVE漏洞
    CVE-2022-21661
    WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to improper sanitization in WP_Query, there can be cases where SQL injection is pos ...……
    作者:菜鸟教程小白 | 时间:2022-6-22 21:59 | 阅读:11 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap