请选择 进入手机版 | 继续访问电脑版
  • 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    迪恩网络公众号

CVE漏洞

RSS
  • CVE-2015-5598
    CVE-2015-5598
    ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2015. Notes: none.……
    作者:菜鸟教程小白 | 时间:2022-7-29 18:15 | 阅读:187 | 回复:0
  • CVE-2022-36915
    CVE-2022-36915
    Jenkins Android Signing Plugin 2.2.5 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Item/Read permission but without Item/Workspace o ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:39 | 回复:0
  • CVE-2022-36916
    CVE-2022-36916
    A cross-site request forgery (CSRF) vulnerability in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers to request a manual backup.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:37 | 回复:0
  • CVE-2022-36917
    CVE-2022-36917
    A missing permission check in Jenkins Google Cloud Backup Plugin 0.6 and earlier allows attackers with Overall/Read permission to request a manual backup.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:40 | 回复:0
  • CVE-2022-36918
    CVE-2022-36918
    Jenkins Buckminster Plugin 1.1.1 and earlier does not perform a permission check in a method implementing form validation, allowing attackers with Overall/Read permission to check for the existence of ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:35 | 回复:0
  • CVE-2022-36919
    CVE-2022-36919
    A missing permission check in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers with Overall/Read permission to enumerate credentials IDs of credentials stored in Jenkins.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:39 | 回复:0
  • CVE-2022-36920
    CVE-2022-36920
    A cross-site request forgery (CSRF) vulnerability in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credentials IDs obtain ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:41 | 回复:0
  • CVE-2022-36921
    CVE-2022-36921
    A missing permission check in Jenkins Coverity Plugin 1.11.4 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:38 | 回复:0
  • CVE-2022-36922
    CVE-2022-36922
    Jenkins Lucene-Search Plugin 370.v62a5f618cd3a and earlier does not escape the search query parameter displayed on the 'search' result page, resulting in a reflected cross-site scripting (XSS) ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:36 | 回复:0
  • CVE-2022-33943
    CVE-2022-33943
    Authenticated (contributor or higher user role) Cross-Site Scripting (XSS) vulnerability in Nico Amarilla's BxSlider WP plugin = 2.0.0 at WordPress.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:35 | 回复:0
  • CVE-2022-35669
    CVE-2022-35669
    Acrobat Reader versions 22.001.20142 (and earlier), 20.005.30334 (and earlier) and 20.005.30334 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensi ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:36 | 回复:0
  • CVE-2022-35672
    CVE-2022-35672
    Adobe Acrobat Reader version 22.001.20085 (and earlier), 20.005.30314 (and earlier) and 17.012.30205 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, whic ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:37 | 回复:0
  • CVE-2022-34120
    CVE-2022-34120
    Barangay Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the module editing function at /pages/activity/activity.php.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:36 | 回复:0
  • CVE-2022-34121
    CVE-2022-34121
    Cuppa CMS v1.0 was discovered to contain a local file inclusion (LFI) vulnerability via the component /templates/default/html/windows/right.php.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:36 | 回复:0
  • CVE-2022-36946
    CVE-2022-36946
    nfqnl_mangle in net/netfilter/nfnetlink_queue.c in the Linux kernel through 5.18.14 allows remote attackers to cause a denial of service (panic) because, in the case of an nf_queue verdict with a one- ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:44 | 回复:0
  • CVE-2020-6998
    CVE-2020-6998
    The connection establishment algorithm found in Rockwell Automation CompactLogix 5370 and ControlLogix 5570 versions 33 and prior does not sufficiently manage its control flow during execution, creati ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:35 | 回复:0
  • CVE-2021-38410
    CVE-2021-38410
    AVEVA Software Platform Common Services (PCS) Portal versions 4.5.2, 4.5.1, 4.5.0, and 4.4.6 are vulnerable to DLL hijacking through an uncontrolled search path element, which may allow an attacker co ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:36 | 回复:0
  • CVE-2021-38417
    CVE-2021-38417
    VISAM VBASE version 11.6.0.6 is vulnerable to improper access control via the web-remote endpoint, which may allow an unauthenticated user viewing access to folders and files in the directory listing.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:34 | 回复:0
  • CVE-2021-42535
    CVE-2021-42535
    VISAM VBASE version 11.6.0.6 does not neutralize or incorrectly neutralizes user-controllable input before the data is placed in output used as a public-facing webpage.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:35 | 回复:0
  • CVE-2021-42537
    CVE-2021-42537
    VISAM VBASE version 11.6.0.6 processes an XML document that can contain XML entities with URIs that resolve to documents outside of the intended sphere of control, causing the product to embed incorre ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:37 | 回复:0
  • CVE-2022-35911
    CVE-2022-35911
    On Patlite NH-FB series devices through 1.46, remote attackers can cause a denial of service by omitting the query string.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:36 | 回复:0
  • CVE-2022-36948
    CVE-2022-36948
    In Veritas NetBackup OpsCenter, a DOM XSS attack can occur. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1, and 10.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:32 | 回复:0
  • CVE-2022-36949
    CVE-2022-36949
    In Veritas NetBackup OpsCenter, an attacker with local access to a NetBackup OpsCenter server could potentially escalate their privileges. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:29 | 回复:0
  • CVE-2022-36950
    CVE-2022-36950
    In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may be able to perform remote command execution through a Java classloader manipulation. This affects 8.x through 8.3.0.2, 9.x throug ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:34 | 回复:0
  • CVE-2022-36951
    CVE-2022-36951
    In Veritas NetBackup OpsCenter, an unauthenticated remote attacker may compromise the host by exploiting an incorrectly patched vulnerability. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9. ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:28 | 回复:0
  • CVE-2022-36952
    CVE-2022-36952
    In Veritas NetBackup OpsCenter, a hard-coded credential exists that could be used to exploit the underlying VxSS subsystem. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1.0.1 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:33 | 回复:0
  • CVE-2022-36953
    CVE-2022-36953
    In Veritas NetBackup OpsCenter, certain endpoints could allow an unauthenticated remote attacker to gain sensitive information. This affects 8.x through 8.3.0.2, 9.x through 9.0.0.1, 9.1.x through 9.1 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:31 | 回复:0
  • CVE-2022-36954
    CVE-2022-36954
    In Veritas NetBackup OpsCenter, under specific conditions, an authenticated remote attacker may be able to create or modify OpsCenter user accounts. This affects 8.x through 8.3.0.2, 9.x through 9.0.0 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:31 | 回复:0
  • CVE-2022-36955
    CVE-2022-36955
    In Veritas NetBackup, an attacker with unprivileged local access to a NetBackup Client may send specific commands to escalate their privileges. This affects 8.0 through 8.1.2, 8.2, 8.3 through 8.3.0.2 ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:30 | 回复:0
  • CVE-2022-36956
    CVE-2022-36956
    In Veritas NetBackup, the NetBackup Client allows arbitrary command execution from any remote host that has access to a valid host-id NetBackup certificate/private key from the same domain. The affect ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:30 | 回复:0
  • CVE-2022-1853
    CVE-2022-1853
    Use after free in Indexed DB in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:19 | 回复:0
  • CVE-2022-1854
    CVE-2022-1854
    Use after free in ANGLE in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:15 | 回复:0
  • CVE-2022-1855
    CVE-2022-1855
    Use after free in Messaging in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:14 | 回复:0
  • CVE-2022-1856
    CVE-2022-1856
    Use after free in User Education in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:15 | 回复:0
  • CVE-2022-1857
    CVE-2022-1857
    Insufficient policy enforcement in File System API in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to bypass file system restrictions via a crafted HTML page.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:32 | 回复:0
  • CVE-2022-1858
    CVE-2022-1858
    Out of bounds read in DevTools in Google Chrome prior to 102.0.5005.61 allowed a remote attacker to perform an out of bounds memory read via specific user interaction.……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:16 | 回复:0
  • CVE-2022-1859
    CVE-2022-1859
    Use after free in Performance Manager in Google Chrome prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap corrupti ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:14 | 回复:0
  • CVE-2022-1860
    CVE-2022-1860
    Use after free in UI Foundations in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to engage in specific user interaction to potentially exploit heap ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:14 | 回复:0
  • CVE-2022-1861
    CVE-2022-1861
    Use after free in Sharing in Google Chrome on Chrome OS prior to 102.0.5005.61 allowed a remote attacker who convinced a user to enage in specific user interactions to potentially exploit heap corrupt ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:14 | 回复:0
  • CVE-2022-1862
    CVE-2022-1862
    Inappropriate implementation in Extensions in Google Chrome prior to 102.0.5005.61 allowed an attacker who convinced a user to install a malicious extension to bypass profile restrictions via a crafte ...……
    作者:菜鸟教程小白 | 时间:2022-7-29 17:20 | 阅读:16 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

热门推荐
专题导读
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap