• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

漏洞

RSS

下级分类:

  • CVE-2021-41106
    CVE-2021-41106
    JWT is a library to work with JSON Web Token and JSON Web Signature. Prior to versions 3.4.6, 4.0.4, and 4.1.5, users of HMAC-based algorithms (HS256, HS384, and HS512) combined with `Lcobucci\JWT\Sig ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:42 | 回复:0
  • CVE-2021-36297
    CVE-2021-36297
    SupportAssist Client version 3.8 and 3.9 contains an Untrusted search path vulnerability that allows attackers to load an arbitrary .dll file via .dll planting/hijacking, only by a separate administra ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:39 | 回复:0
  • CVE-2021-36286
    CVE-2021-36286
    Dell SupportAssist Client Consumer versions 3.9.13.0 and any versions prior to 3.9.13.0 contain an arbitrary file deletion vulnerability that can be exploited by using the Windows feature of NTFS call ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:27 | 回复:0
  • CVE-2021-36285
    CVE-2021-36285
    Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. A local authenticated malicious administrator could exploit this vulnerability to bypass excessive NVMe p ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:33 | 回复:0
  • CVE-2021-36284
    CVE-2021-36284
    Dell BIOS contains an Improper Restriction of Excessive Authentication Attempts vulnerability. A local authenticated malicious administrator could exploit this vulnerability to bypass excessive admin ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:45 | 回复:0
  • CVE-2021-36283
    CVE-2021-36283
    Dell BIOS contains an improper input validation vulnerability. A local authenticated malicious user may potentially exploit this vulnerability by using an SMI to gain arbitrary code execution in SMRAM ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:47 | 回复:0
  • CVE-2021-21570
    CVE-2021-21570
    Dell NetWorker, versions 18.x and 19.x contain an Information disclosure vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and g ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:45 | 回复:0
  • CVE-2021-21569
    CVE-2021-21569
    Dell NetWorker, versions 18.x and 19.x contain a Path traversal vulnerability. A NetWorker server user with remote access to NetWorker clients may potentially exploit this vulnerability and gain acces ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:58 | 回复:0
  • CVE-2021-21522
    CVE-2021-21522
    Dell BIOS contains a Credentials Management issue. A local authenticated malicious user may potentially exploit this vulnerability to gain access to sensitive information on an NVMe storage by resetti ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:58 | 回复:0
  • CVE-2021-38303
    CVE-2021-38303
    A SQL injection vulnerability exists in Sureline SUREedge Migrator 7.0.7.29360.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:68 | 回复:0
  • CVE-2021-37271
    CVE-2021-37271
    Cross Site Scripting (XSS) vulnerability exists in UEditor v1.4.3.3, which can be exploited by an attacker to obtain user cookie information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:58 | 回复:0
  • CVE-2021-37267
    CVE-2021-37267
    Cross Site Scripting (XSS) vulnerability exists in all versions of KindEditor, which can be exploited by an attacker to obtain user cookie information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:48 | 回复:0
  • CVE-2021-30086
    CVE-2021-30086
    Cross Site Scripting (XSS) vulnerability exists in KindEditor (Chinese versions) 4.1.12, which can be exploited by an attacker to obtain user cookie information.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:35 | 回复:0
  • CVE-2021-41318
    CVE-2021-41318
    In Progress WhatsUp Gold prior to version 21.1.0, an application endpoint failed to adequately sanitize malicious input. which could allow an unauthenticated attacker to execute arbitrary code in a vi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:43 | 回复:0
  • CVE-2021-37273
    CVE-2021-37273
    A Denial of Service issue exists in China Telecom Corporation EPON Tianyi Gateway ZXHN F450(EPON ONU) 3.0. Tianyi Gateway is a hardware terminal of Optical Modem Smart Router. Attackers can use this v ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:41 | 回复:0
  • CVE-2021-36366
    CVE-2021-36366
    Nagios XI before 5.8.5 incorrectly allows manage_services.sh wildcards.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:46 | 回复:0
  • CVE-2021-36365
    CVE-2021-36365
    Nagios XI before 5.8.5 has Incorrect Permission Assignment for repairmysql.sh.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:52 | 回复:0
  • CVE-2021-36364
    CVE-2021-36364
    Nagios XI before 5.8.5 incorrectly allows backup_xi.sh wildcards.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:54 | 回复:0
  • CVE-2021-36363
    CVE-2021-36363
    Nagios XI before 5.8.5 has Incorrect Permission Assignment for migrate.php.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:44 | 回复:0
  • CVE-2021-41104
    CVE-2021-41104
    ESPHome is a system to control the ESP8266/ESP32. Anyone with web_server enabled and HTTP basic auth configured on version 2021.9.1 or older is vulnerable to an issue in which `web_server` allows over ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:48 | 阅读:50 | 回复:0
  • CVE-2021-29367
    CVE-2021-29367
    A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:34 | 回复:0
  • CVE-2021-29366
    CVE-2021-29366
    A buffer overflow vulnerability in FORMATS!GetPlugInInfo+0x2de9 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:35 | 回复:0
  • CVE-2021-29365
    CVE-2021-29365
    Irfanview 4.57 is affected by an infinite loop when processing a crafted BMP file in the EFFECTS!AutoCrop_W component. This can cause a denial of service (DOS).……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:56 | 回复:0
  • CVE-2021-29364
    CVE-2021-29364
    A buffer overflow vulnerability in Formats!ReadRAS_W+0x1001 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:45 | 回复:0
  • CVE-2021-29363
    CVE-2021-29363
    A buffer overflow vulnerability in FORMATS!ReadRAS_W+0xa74 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.0xa74……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:47 | 回复:0
  • CVE-2021-29362
    CVE-2021-29362
    A buffer overflow vulnerability in FORMATS!ReadRAS_W+0xa30 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:44 | 回复:0
  • CVE-2021-29361
    CVE-2021-29361
    A buffer overflow vulnerability in FORMATS!Read_Utah_RLE+0x340 of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:46 | 回复:0
  • CVE-2021-29360
    CVE-2021-29360
    A buffer overflow vulnerability in FORMATS!Read_Utah_RLE+0x37a of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted RLE file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:54 | 回复:0
  • CVE-2021-29358
    CVE-2021-29358
    A buffer overflow vulnerability in FORMATS!ReadPVR_W+0xfa of Irfanview 4.57 allows attackers to cause a denial of service (DOS) via a crafted PVR file.……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:37 | 回复:0
  • CVE-2021-37106
    CVE-2021-37106
    There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. The software constructs part of a command ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:39 | 回复:0
  • CVE-2021-37105
    CVE-2021-37105
    There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access p ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:45 | 回复:0
  • CVE-2021-37104
    CVE-2021-37104
    There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). This vulnerability is due to insufficient validation of parameters while dealing with some messages ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:37 | 回复:0
  • CVE-2021-38124
    CVE-2021-38124
    Remote Code Execution vulnerability in Micro Focus ArcSight Enterprise Security Manager (ESM) product, affecting versions 7.0.2 through 7.5. The vulnerability could be exploited resulting in remote co ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:42 | 回复:0
  • CVE-2021-34636
    CVE-2021-34636
    The Countdown and CountUp, WooCommerce Sales Timers WordPress plugin is vulnerable to Cross-Site Request Forgery via the save_theme function found in the ~/includes/admin/coundown_theme_page.php file ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:29 | 回复:0
  • CVE-2021-22535
    CVE-2021-22535
    Unauthorized information security disclosure vulnerability on Micro Focus Directory and Resource Administrator (DRA) product, affecting all DRA versions prior to 10.1 Patch 1. The vulnerability could ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:51 | 回复:0
  • CVE-2021-37146
    CVE-2021-37146
    An infinite loop in Open Robotics ros_comm XMLRPC server in ROS Melodic through 1.4.11 and ROS Noetic through1.15.11 allows remote attackers to cause a Denial of Service in ros_comm via a crafted XMLR ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:65 | 回复:0
  • CVE-2021-41540
    CVE-2021-41540
    A vulnerability has been identified in Solid Edge SE2021 (All versions SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:52 | 回复:0
  • CVE-2021-41539
    CVE-2021-41539
    A vulnerability has been identified in Solid Edge SE2021 (All versions SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:43 | 回复:0
  • CVE-2021-41538
    CVE-2021-41538
    A vulnerability has been identified in NX 1953 Series (All versions V1973.3700), NX 1980 Series (All versions V1988), Solid Edge SE2021 (All versions SE2021MP8). The affected application is vulnera ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:41 | 回复:0
  • CVE-2021-41537
    CVE-2021-41537
    A vulnerability has been identified in Solid Edge SE2021 (All versions SE2021MP8). The affected application contains a use-after-free vulnerability while parsing OBJ files. An attacker could leverage ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 11:47 | 阅读:36 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap