• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2021-44453
    CVE漏洞
    CVE-2021-44453
    mySCADA myPRO: Versions 8.20.0 and prior has a vulnerable debug interface which includes a ping utility, which may allow an attacker to inject arbitrary operating system commands.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:7 | 回复:0
  • CVE-2021-43989
    CVE漏洞
    CVE-2021-43989
    mySCADA myPRO Versions 8.20.0 and prior stores passwords using MD5, which may allow an attacker to crack the previously retrieved password hashes.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:9 | 回复:0
  • CVE-2021-43987
    CVE漏洞
    CVE-2021-43987
    An additional, nondocumented administrative account exists in mySCADA myPRO Versions 8.20.0 and prior that is not exposed through the web interface, which cannot be deleted or changed through the regu ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:7 | 回复:0
  • CVE-2021-43985
    CVE漏洞
    CVE-2021-43985
    An unauthenticated remote attacker can access mySCADA myPRO Versions 8.20.0 and prior without any form of authentication or authorization.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:10 | 回复:0
  • CVE-2021-43984
    CVE漏洞
    CVE-2021-43984
    mySCADA myPRO: Versions 8.20.0 and prior has a feature where the firmware can be updated, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:13 | 回复:0
  • CVE-2021-43981
    CVE漏洞
    CVE-2021-43981
    mySCADA myPRO: Versions 8.20.0 and prior has a feature to send emails, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:25 | 回复:0
  • CVE-2021-3584
    CVE漏洞
    CVE-2021-3584
    A server side remote code execution vulnerability was found in Foreman project. A authenticated attacker could use Sendmail configuration options to overwrite the defaults and perform command injectio ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:9 | 回复:0
  • CVE-2021-35243
    CVE漏洞
    CVE-2021-35243
    The HTTP PUT and DELETE methods were enabled in the Web Help Desk web server (12.7.7 and earlier), allowing users to execute dangerous HTTP requests. The HTTP PUT method is normally used to upload dat ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:11 | 回复:0
  • CVE-2021-30767
    CVE漏洞
    CVE-2021-30767
    A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.6.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:8 | 回复:0
  • CVE-2021-27007
    CVE漏洞
    CVE-2021-27007
    NetApp Virtual Desktop Service (VDS) when used with an HTML5 gateway is susceptible to a vulnerability which when successfully exploited could allow an unauthenticated attacker to takeover a Remote De ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:14 | 回复:0
  • CVE-2021-27006
    CVE漏洞
    CVE-2021-27006
    StorageGRID (formerly StorageGRID Webscale) versions 11.5 prior to 11.5.0.5 are susceptible to a vulnerability which may allow an administrative user to escalate their privileges and modify settings i ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:18 | 回复:0
  • CVE-2021-23198
    CVE漏洞
    CVE-2021-23198
    mySCADA myPRO: Versions 8.20.0 and prior has a feature where the password can be specified, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:10 | 回复:0
  • CVE-2021-22657
    CVE漏洞
    CVE-2021-22657
    mySCADA myPRO: Versions 8.20.0 and prior has a feature where the API password can be specified, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:24 | 回复:0
  • CVE-2021-20318
    CVE漏洞
    CVE-2021-20318
    The HornetQ component of Artemis in EAP 7 was not updated with the fix for CVE-2016-4978. A remote attacker could use this flaw to execute arbitrary code with the permissions of the application using ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:21 | 回复:0
  • CVE-2020-3896
    CVE漏洞
    CVE-2020-3896
    This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious application ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:12 | 回复:0
  • CVE-2020-3886
    CVE漏洞
    CVE-2020-3886
    A use after free issue was addressed with improved memory management. This issue is fixed in macOS Catalina 10.15.4, Security Update 2020-002 Mojave, Security Update 2020-002 High Sierra. A malicious ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:17 | 回复:0
  • CVE-2019-8703
    CVE漏洞
    CVE-2019-8703
    This issue was addressed with improved entitlements. This issue is fixed in watchOS 6, tvOS 13, macOS Catalina 10.15, iOS 13. An application may be able to gain elevated privileges.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:10 | 回复:0
  • CVE-2019-8702
    CVE漏洞
    CVE-2019-8702
    This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user m ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:9 | 回复:0
  • CVE-2019-8643
    CVE漏洞
    CVE-2019-8643
    CVE-2019-8643: Arun Sharma of VMWare This issue is fixed in macOS Mojave 10.14. Description: A logic issue was addressed with improved state management..……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:22 | 回复:0
  • CVE-2018-4478
    CVE漏洞
    CVE-2018-4478
    A validation issue was addressed with improved logic. This issue is fixed in macOS High Sierra 10.13.5, Security Update 2018-003 Sierra, Security Update 2018-003 El Capitan. An attacker with physical ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:17 | 回复:0
  • CVE-2018-4302
    CVE漏洞
    CVE-2018-4302
    A null pointer dereference was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13, iCloud for Windows 7.0, watchOS 4, iOS 11, iTunes 12.7 for Windows. Processing malici ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:8 | 回复:0
  • CVE-2017-2488
    CVE漏洞
    CVE-2017-2488
    A cryptographic weakness existed in the authentication protocol of Remote Desktop. This issue was addressed by implementing the Secure Remote Password authentication protocol. This issue is fixed in A ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:17 | 回复:0
  • CVE-2017-2375
    CVE漏洞
    CVE-2017-2375
    An issue existed in preventing the uploading of CallKit call history to iCloud. This issue was addressed through improved logic. This issue is fixed in iOS 10.2.1. Updates for CallKit call history are ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:15 | 回复:0
  • CVE-2017-13910
    CVE漏洞
    CVE-2017-13910
    An access issue was addressed with additional sandbox restrictions on applications. This issue is fixed in macOS High Sierra 10.13. An application may be able to access restricted files.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:16 | 回复:0
  • CVE-2017-13909
    CVE漏洞
    CVE-2017-13909
    An issue existed in the storage of sensitive tokens. This issue was addressed by placing the tokens in Keychain. This issue is fixed in macOS High Sierra 10.13. A local attacker may gain access to iCl ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:18 | 回复:0
  • CVE-2017-13908
    CVE漏洞
    CVE-2017-13908
    An issue in handling file permissions was addressed with improved validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:19 | 回复:0
  • CVE-2017-13907
    CVE漏洞
    CVE-2017-13907
    A state management issue was addressed with improved state validation. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan. The s ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:16 | 回复:0
  • CVE-2017-13906
    CVE漏洞
    CVE-2017-13906
    A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan, macOS ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:31 | 回复:0
  • CVE-2017-13905
    CVE漏洞
    CVE-2017-13905
    A race condition was addressed with additional validation. This issue is fixed in tvOS 11.2, iOS 11.2, macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capit ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:11 | 回复:0
  • CVE-2017-13892
    CVE漏洞
    CVE-2017-13892
    An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sie ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:23 | 回复:0
  • CVE-2017-13880
    CVE漏洞
    CVE-2017-13880
    A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 11.2, watchOS 4.2. An application may be able to execute arbitrary code with kernel privilege.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:13 | 回复:0
  • CVE-2017-13835
    CVE漏洞
    CVE-2017-13835
    A memory corruption issue was addressed with improved memory handling. This issue is fixed in macOS High Sierra 10.13. An application may be able to execute arbitrary code with elevated privileges.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:18 | 回复:0
  • CVE-2021-45469
    CVE漏洞
    CVE-2021-45469
    In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11, there is an out-of-bounds memory access when an inode has an invalid last xattr entry.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:15 | 回复:0
  • CVE-2021-40161
    CVE漏洞
    CVE-2021-40161
    A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through PDF earlier than 9.0.7 version.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:15 | 回复:0
  • CVE-2021-40160
    CVE漏洞
    CVE-2021-40160
    A maliciously crafted PDF file prior to 9.0.7 may be forced to read beyond allocated boundaries when parsing the PDF file. This vulnerability can be exploited to execute arbitrary code.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:24 | 回复:0
  • CVE-2021-4118
    CVE漏洞
    CVE-2021-4118
    pytorch-lightning is vulnerable to Deserialization of Untrusted Data……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:16 | 回复:0
  • CVE-2021-43854
    CVE漏洞
    CVE-2021-43854
    NLTK (Natural Language Toolkit) is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. Versions prior to 3.6.5 are vulne ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:15 | 回复:0
  • CVE-2021-43849
    CVE漏洞
    CVE-2021-43849
    cordova-plugin-fingerprint-aio is a plugin provides a single and simple interface for accessing fingerprint APIs on both Android 6+ and iOS. In versions prior to 5.0.1 The exported activity `de.niklas ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:7 | 回复:0
  • CVE-2021-3892
    CVE漏洞
    CVE-2021-3892
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-18198. Reason: This candidate is a reservation duplicate of CVE-2019-18198. Notes: All CVE users should reference CVE-2019-18198 ins ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:15 | 回复:0
  • CVE-2021-23175
    CVE漏洞
    CVE-2021-23175
    NVIDIA GeForce Experience contains a vulnerability in user authorization, where GameStream does not correctly apply individual user access controls for users on the same device, which, with user inter ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:44 | 阅读:17 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap