• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2021-35535
    CVE漏洞
    CVE-2021-35535
    Insecure Boot Image vulnerability in Hitachi Energy Relion Relion 670/650/SAM600-IO series allows an attacker who manages to get access to the front network port and to cause a reboot sequences of the ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:33 | 回复:0
  • CVE-2021-43549
    CVE漏洞
    CVE-2021-43549
    A remote authenticated attacker with write access to a PI Server could trick a user into interacting with a PI Web API endpoint and redirect them to a malicious website. As a result, a victim may disc ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:39 | 回复:0
  • CVE-2021-36909
    CVE漏洞
    CVE-2021-36909
    Authenticated Database Reset vulnerability in WordPress WP Reset PRO Premium plugin (versions = 5.98) allows any authenticated user to wipe the entire database regardless of their authorization. It le ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:34 | 回复:0
  • CVE-2021-36908
    CVE漏洞
    CVE-2021-36908
    Cross-Site Request Forgery (CSRF) vulnerability leading to Database Reset in WordPress WP Reset PRO Premium plugin (versions = 5.98) allows attackers to trick authenticated into making unintentional d ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:33 | 回复:0
  • CVE-2021-27026
    CVE漏洞
    CVE-2021-27026
    A flaw was divered in Puppet Enterprise and other Puppet products where sensitive plan parameters may be logged……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:35 | 回复:0
  • CVE-2021-27025
    CVE漏洞
    CVE-2021-27025
    A flaw was discovered in Puppet Agent where the agent may silently ignore Augeas settings or may be vulnerable to a Denial of Service condition prior to the first 'pluginsync'.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:27 | 回复:0
  • CVE-2021-27024
    CVE漏洞
    CVE-2021-27024
    A flaw was discovered in Continuous Delivery for Puppet Enterprise (CD4PE) that results in a user with lower privileges being able to access a Puppet Enterprise API token. This issue is resolved in CD ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:30 | 回复:0
  • CVE-2021-27023
    CVE漏洞
    CVE-2021-27023
    A flaw was discovered in Puppet Agent and Puppet Server that may result in a leak of HTTP credentials when following HTTP redirects to a different host. This is similar to CVE-2018-1000007……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:35 | 回复:0
  • CVE-2021-0672
    CVE漏洞
    CVE-2021-0672
    In Browser app, there is a possible information disclosure due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User inter ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:39 | 回复:0
  • CVE-2021-0671
    CVE漏洞
    CVE-2021-0671
    In apusys, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:35 | 回复:0
  • CVE-2021-0670
    CVE漏洞
    CVE-2021-0670
    In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for e ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:33 | 回复:0
  • CVE-2021-0669
    CVE漏洞
    CVE-2021-0669
    In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for e ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:32 | 回复:0
  • CVE-2021-0668
    CVE漏洞
    CVE-2021-0668
    In apusys, there is a possible memory corruption due to incorrect error handling. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:32 | 回复:0
  • CVE-2021-0667
    CVE漏洞
    CVE-2021-0667
    In apusys, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for e ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:19 | 回复:0
  • CVE-2021-0666
    CVE漏洞
    CVE-2021-0666
    In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not nee ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:34 | 回复:0
  • CVE-2021-0665
    CVE漏洞
    CVE-2021-0665
    In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not nee ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:38 | 回复:0
  • CVE-2021-0664
    CVE漏洞
    CVE-2021-0664
    In ccu, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for expl ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:69 | 回复:0
  • CVE-2021-0659
    CVE漏洞
    CVE-2021-0659
    In apusys, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not nee ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:29 | 回复:0
  • CVE-2021-0658
    CVE漏洞
    CVE-2021-0658
    In apusys, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:33 | 回复:0
  • CVE-2021-0657
    CVE漏洞
    CVE-2021-0657
    In apusys, there is a possible out of bounds write due to a stack-based buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is n ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:28 | 回复:0
  • CVE-2021-0656
    CVE漏洞
    CVE-2021-0656
    In edma driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:25 | 回复:0
  • CVE-2021-0655
    CVE漏洞
    CVE-2021-0655
    In mdlactl driver, there is a possible memory corruption due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:47 | 回复:0
  • CVE-2021-0629
    CVE漏洞
    CVE-2021-0629
    In mdlactl driver, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:49 | 回复:0
  • CVE-2021-0624
    CVE漏洞
    CVE-2021-0624
    In flv extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:41 | 回复:0
  • CVE-2021-0623
    CVE漏洞
    CVE-2021-0623
    In asf extractor, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:28 | 回复:0
  • CVE-2021-0622
    CVE漏洞
    CVE-2021-0622
    In asf extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:21 | 回复:0
  • CVE-2021-0621
    CVE漏洞
    CVE-2021-0621
    In asf extractor, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction is ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:43 | 回复:0
  • CVE-2021-0620
    CVE漏洞
    CVE-2021-0620
    In asf extractor, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:31 | 回复:0
  • CVE-2021-0619
    CVE漏洞
    CVE-2021-0619
    In ape extractor, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:35 | 回复:0
  • CVE-2021-43997
    CVE漏洞
    CVE-2021-43997
    Amazon FreeRTOS 10.2.0 through 10.4.5 on the ARMv7-M and ARMv8-M MPU platforms does not prevent non-kernel code from calling the xPortRaisePrivilege and vPortResetPrivilege internal functions. This is ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:28 | 回复:0
  • CVE-2021-43996
    CVE漏洞
    CVE-2021-43996
    The Ignition component before 1.16.15, and 2.0.x before 2.0.6, for Laravel has a fix variable names feature that can lead to incorrect access control.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:30 | 回复:0
  • CVE-2021-41277
    CVE漏洞
    CVE-2021-41277
    Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJSON map (`admin-settings-maps-custom maps-add a map`) support and pote ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:35 | 回复:0
  • CVE-2021-41275
    CVE漏洞
    CVE-2021-41275
    spree_auth_devise is an open source library which provides authentication and authorization services for use with the Spree storefront framework by using an underlying Devise authentication framework. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:24 | 回复:0
  • CVE-2021-41274
    CVE漏洞
    CVE-2021-41274
    solidus_auth_devise provides authentication services for the Solidus webstore framework, using the Devise gem. In affected versions solidus_auth_devise is subject to a CSRF vulnerability that allows u ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:30 | 回复:0
  • CVE-2021-41273
    CVE漏洞
    CVE-2021-41273
    Pterodactyl is an open-source game server management panel built with PHP 7, React, and Go. Due to improperly configured CSRF protections on two routes, a malicious user could execute a CSRF-based att ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:20 | 回复:0
  • CVE-2021-41190
    CVE漏洞
    CVE-2021-41190
    The OCI Distribution Spec project defines an API protocol to facilitate and standardize the distribution of content. In the OCI Distribution Specification version 1.0.0 and prior, the Content-Type hea ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:25 | 回复:0
  • CVE-2021-41165
    CVE漏洞
    CVE-2021-41165
    CKEditor4 is an open source WYSIWYG HTML editor. In affected version a vulnerability has been discovered in the core HTML processing module and may affect all plugins used by CKEditor 4. The vulnerabi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:40 | 回复:0
  • CVE-2021-33118
    CVE漏洞
    CVE-2021-33118
    Improper access control in the software installer for the Intel(R) Serial IO driver for Intel(R) NUC 11 Gen before version 30.100.2104.1 may allow an authenticated user to potentially enable escalatio ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:46 | 回复:0
  • CVE-2020-16156
    CVE漏洞
    CVE-2020-16156
    CPAN 2.28 allows Signature Verification Bypass.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:25 | 回复:0
  • CVE-2020-16155
    CVE漏洞
    CVE-2020-16155
    The CPAN::Checksums package 2.12 for Perl does not uniquely define signed data.……
    作者:菜鸟教程小白 | 时间:2022-2-5 12:36 | 阅读:7 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap