• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号
登陆 注册
描述文字
OGeek|极客世界-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2021-0572
    CVE漏洞
    CVE-2021-0572
    In doNotification of AccountManagerService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges ne ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:17 | 回复:0
  • CVE-2021-0571
    CVE漏洞
    CVE-2021-0571
    In ActivityTaskManagerService.startActivity() and AppTaskImpl.startActivity() of ActivityTaskManagerService.java and AppTaskImpl.java, there is possible access to restricted activities due to a permis ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:20 | 回复:0
  • CVE-2021-0570
    CVE漏洞
    CVE-2021-0570
    In sendBugreportNotification of BugreportProgressService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local escalation of privilege with User executio ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:21 | 回复:0
  • CVE-2021-0569
    CVE漏洞
    CVE-2021-0569
    In onStart of ContactsDumpActivity.java, there is possible access to contacts due to a tapjacking/overlay attack. This could lead to local information disclosure with User execution privileges needed. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:25 | 回复:0
  • CVE-2021-0568
    CVE漏洞
    CVE-2021-0568
    In onReceive of DevicePolicyManagerService.java, there is a possible enabling of disabled profiles due to a missing permission check. This could lead to local escalation of privilege with no additiona ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:22 | 回复:0
  • CVE-2021-0567
    CVE漏洞
    CVE-2021-0567
    In isRestricted of RemoteViews.java, there is a possible way to inject font files due to a permissions bypass. This could lead to local escalation of privilege with no additional execution privileges ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:22 | 回复:0
  • CVE-2021-0566
    CVE漏洞
    CVE-2021-0566
    In accessAudioHalPidscpp of TimeCheck.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:18 | 回复:0
  • CVE-2021-0565
    CVE漏洞
    CVE-2021-0565
    In wrapUserThread of AudioStream.cpp, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:15 | 回复:0
  • CVE-2021-0564
    CVE漏洞
    CVE-2021-0564
    In decrypt of CryptoPlugin.cpp, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction i ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:17 | 回复:0
  • CVE-2021-0563
    CVE漏洞
    CVE-2021-0563
    In ih264e_fmt_conv_422i_to_420sp of ih264e_fmt_conv.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional executio ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:19 | 回复:0
  • CVE-2021-0562
    CVE漏洞
    CVE-2021-0562
    In RasterIntraUpdate of motion_est.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:17 | 回复:0
  • CVE-2021-0561
    CVE漏洞
    CVE-2021-0561
    In append_to_verify_fifo_interleaved_ of stream_encoder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local information disclosure with no additional exe ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:9 | 回复:0
  • CVE-2021-0559
    CVE漏洞
    CVE-2021-0559
    In Lag_max of p_ol_wgh.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:51 | 阅读:16 | 回复:0
  • CVE-2021-0558
    CVE漏洞
    CVE-2021-0558
    In fillMainDataBuf of pvmp3_framedecoder.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privil ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:8 | 回复:0
  • CVE-2021-0557
    CVE漏洞
    CVE-2021-0557
    In setRange of ABuffer.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interactio ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:10 | 回复:0
  • CVE-2021-0556
    CVE漏洞
    CVE-2021-0556
    In getBlockSum of fastcodemb.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local information disclosure with no additional execution privileges needed. ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:19 | 回复:0
  • CVE-2021-0555
    CVE漏洞
    CVE-2021-0555
    In RenderStruct of protostream_objectsource.cc, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:19 | 回复:0
  • CVE-2021-0554
    CVE漏洞
    CVE-2021-0554
    In isBackupServiceActive of BackupManagerService.java, there is a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interac ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:19 | 回复:0
  • CVE-2021-0535
    CVE漏洞
    CVE-2021-0535
    In wpas_ctrl_msg_queue_timeout of ctrl_iface_unix.c, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges ne ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:17 | 回复:0
  • CVE-2021-0534
    CVE漏洞
    CVE-2021-0534
    In permission declarations of DeviceAdminReceiver.java, there is a possible lack of broadcast protection due to an insecure default value. This could lead to local escalation of privilege with no addi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:20 | 回复:0
  • CVE-2010-2486
    CVE漏洞
    CVE-2010-2486
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:26 | 回复:0
  • CVE-2010-2485
    CVE漏洞
    CVE-2010-2485
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:29 | 回复:0
  • CVE-2010-2475
    CVE漏洞
    CVE-2010-2475
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:26 | 回复:0
  • CVE-2021-20744
    CVE漏洞
    CVE-2021-20744
    Cross-site scripting vulnerability in EC-CUBE Category contents plugin (for EC-CUBE 3.0 series) versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script by leading an adm ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:17 | 回复:0
  • CVE-2021-20743
    CVE漏洞
    CVE-2021-20743
    Cross-site scripting vulnerability in EC-CUBE Email newsletters management plugin (for EC-CUBE 3.0 series) versions prior to version 1.0.4 allows a remote attacker to inject an arbitrary script by lea ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:17 | 回复:0
  • CVE-2021-20742
    CVE漏洞
    CVE-2021-20742
    Cross-site scripting vulnerability in EC-CUBE Business form output plugin (for EC-CUBE 3.0 series) versions prior to version 1.0.1 allows a remote attacker to inject an arbitrary script via unspecifie ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:22 | 回复:0
  • CVE-2021-20741
    CVE漏洞
    CVE-2021-20741
    Cross-site scripting vulnerability in Hitachi Application Server Help (Hitachi Application Server V10 Manual (Windows) version 10-11-01 and earlier and Hitachi Application Server V10 Manual (UNIX) ver ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:22 | 回复:0
  • CVE-2021-20737
    CVE漏洞
    CVE-2021-20737
    Improper authentication vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to view the unauthorized pages without access privileges via unspecified vectors.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:17 | 回复:0
  • CVE-2021-20736
    CVE漏洞
    CVE-2021-20736
    NoSQL injection vulnerability in GROWI versions prior to v4.2.20 allows a remote attacker to obtain and/or alter the information stored in the database via unspecified vectors.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:16 | 回复:0
  • CVE-2021-20735
    CVE漏洞
    CVE-2021-20735
    Cross-site scripting vulnerability in ETUNA EC-CUBE plugins (Delivery slip number plugin (3.0 series) 1.0.10 and earlier, Delivery slip number csv bulk registration plugin (3.0 series) 1.0.8 and earli ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:10 | 回复:0
  • CVE-2021-20734
    CVE漏洞
    CVE-2021-20734
    Cross-site scripting vulnerability in Welcart e-Commerce versions prior to 2.2.4 allows remote attackers to inject arbitrary script or HTML via unspecified vectors.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:19 | 回复:0
  • CVE-2021-20733
    CVE漏洞
    CVE-2021-20733
    Improper authorization in handler for custom URL scheme vulnerability in ????????? (asken diet) for Android versions from v.3.0.0 to v.4.2.x allows a remote attacker to lead a user to access an arbitr ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:20 | 回复:0
  • CVE-2021-35196
    CVE漏洞
    CVE-2021-35196
    ** DISPUTED ** Manuskript through 0.12.0 allows remote attackers to execute arbitrary code via a crafted settings.pickle file in a project file, because there is insecure deserialization via the pickl ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:18 | 回复:0
  • CVE-2010-1435
    CVE漏洞
    CVE-2010-1435
    Joomla! Core is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently retrieve password reset tokens from the dat ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:13 | 回复:0
  • CVE-2010-1434
    CVE漏洞
    CVE-2010-1434
    Joomla! Core is prone to a session fixation vulnerability. An attacker may leverage this issue to hijack an arbitrary session and gain access to sensitive information, which may help in launching furt ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:20 | 回复:0
  • CVE-2010-1433
    CVE漏洞
    CVE-2010-1433
    Joomla! Core is prone to a vulnerability that lets attackers upload arbitrary files because the application fails to properly verify user-supplied input. An attacker can exploit this vulnerability to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:17 | 回复:0
  • CVE-2010-1432
    CVE漏洞
    CVE-2010-1432
    Joomla! Core is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. Joomla! Core versions 1.5 ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:14 | 回复:0
  • CVE-2010-0413
    CVE漏洞
    CVE-2010-0413
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:19 | 回复:0
  • CVE-2021-34389
    CVE漏洞
    CVE-2021-34389
    Trusty contains a vulnerability in NVIDIA OTE protocol message parsing code, which is present in all the TAs. An incorrect bounds check can allow a local user through a malicious client to access memo ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:19 | 回复:0
  • CVE-2021-34388
    CVE漏洞
    CVE-2021-34388
    Bootloader contains a vulnerability in NVIDIA TegraBoot where a potential heap overflow might allow an attacker to control all the RAM after the heap block, leading to denial of service or code execut ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 10:50 | 阅读:11 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap