漏洞 - 第935页-OStack程序员社区-中国程序员成长平台

OStack程序员社区-中国程序员成长平台 › 门户 ›漏洞

漏洞

RSS

下级分类:

CVE漏洞

CVE-2021-0215

On Juniper Networks Junos EX series, QFX Series, MX Series and SRX branch series devices, a memory leak occurs every time the 802.1X authenticator port interface flaps which can lead to other processe ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：29 | 回复：0
CVE漏洞

CVE-2021-0212

An Information Exposure vulnerability in Juniper Networks Contrail Networking allows a locally authenticated attacker able to read files to retrieve administrator credentials stored in plaintext there ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：40 | 回复：0
CVE漏洞

CVE-2021-0211

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon (RPD) service allows an attacker to send a valid BGP FlowSpec message ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：48 | 回复：0
CVE漏洞

CVE-2021-0210

An Information Exposure vulnerability in J-Web of Juniper Networks Junos OS allows an unauthenticated attacker to elevate their privileges over the target system through opportunistic use of an authen ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：51 | 回复：0
CVE漏洞

CVE-2021-0209

In Juniper Networks Junos OS Evolved an attacker sending certain valid BGP update packets may cause Junos OS Evolved to access an uninitialized pointer causing RPD to core leading to a Denial of Servi ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：46 | 回复：0
CVE漏洞

CVE-2021-0208

An improper input validation vulnerability in the Routing Protocol Daemon (RPD) service of Juniper Networks Junos OS allows an attacker to send a malformed RSVP packet when bidirectional LSPs are in u ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：29 | 回复：0
CVE漏洞

CVE-2021-26867

Windows Hyper-V Remote Code Execution Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：54 | 回复：0
CVE漏洞

CVE-2021-26866

Windows Update Service Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：50 | 回复：0
CVE漏洞

CVE-2021-26865

Windows Container Execution Agent Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26891.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：46 | 回复：0
CVE漏洞

CVE-2021-26864

Windows Virtual Registry Provider Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：60 | 回复：0
CVE漏洞

CVE-2021-26863

Windows Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26875, CVE-2021-26900, CVE-2021-27077.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：42 | 回复：0
CVE漏洞

CVE-2021-26862

Windows Installer Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：58 | 回复：0
CVE漏洞

CVE-2021-26861

Windows Graphics Component Remote Code Execution Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：48 | 回复：0
CVE漏洞

CVE-2021-26860

Windows App-V Overlay Filter Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：63 | 回复：0
CVE漏洞

CVE-2021-26859

Microsoft Power BI Information Disclosure Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：53 | 回复：0
CVE漏洞

CVE-2021-26411

Internet Explorer Memory Corruption Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：60 | 回复：0
CVE漏洞

CVE-2021-24110

HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24089, CVE-2021-26902, CVE-2021-27047, CVE-2021-27048, CVE-2021-27049, CVE-2021-27050, CVE-2021-27051, CVE ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：79 | 回复：0
CVE漏洞

CVE-2021-24108

Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-27057, CVE-2021-27059.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：76 | 回复：0
CVE漏洞

CVE-2021-24107

Windows Event Tracing Information Disclosure Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：63 | 回复：0
CVE漏洞

CVE-2021-24104

Microsoft SharePoint Spoofing Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：76 | 回复：0
CVE漏洞

CVE-2021-24095

DirectX Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：56 | 回复：0
CVE漏洞

CVE-2021-24090

Windows Error Reporting Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：57 | 回复：0
CVE漏洞

CVE-2021-24089

HEVC Video Extensions Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24110, CVE-2021-26902, CVE-2021-27047, CVE-2021-27048, CVE-2021-27049, CVE-2021-27050, CVE-2021-27051, CVE ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：56 | 回复：0
CVE漏洞

CVE-2021-20336

IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functiona ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：60 | 回复：0
CVE漏洞

CVE-2021-1729

Windows Update Stack Setup Elevation of Privilege Vulnerability……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：59 | 回复：0
CVE漏洞

CVE-2021-1640

Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-26878.……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：51 | 回复：0
CVE漏洞

CVE-2020-5025

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：57 | 回复：0
CVE漏洞

CVE-2020-5024

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow an unauthenticated attacker to cause a denial of service due a hang in the SSL handshake r ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：51 | 回复：0
CVE漏洞

CVE-2020-4976

IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a local user to read and write specific files due to weak file permissions. IBM X-Force ID ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：61 | 回复：0
CVE漏洞

CVE-2021-28132

LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file. ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：81 | 回复：0
CVE漏洞

CVE-2021-21378

Envoy is a cloud-native high-performance edge/middle/service proxy. In Envoy version 1.17.0 an attacker can bypass authentication by presenting a JWT token with an issuer that is not in the provider l ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：67 | 回复：0
CVE漏洞

CVE-2021-21364

swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defin ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：57 | 回复：0
CVE漏洞

CVE-2021-21363

swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defin ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：63 | 回复：0
CVE漏洞

CVE-2020-1900

When unserializing an object with dynamic properties HHVM needs to pre-reserve the full size of the dynamic property array before inserting anything into it. Otherwise the array might resize, invalida ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：45 | 回复：0
CVE漏洞

CVE-2020-1899

The unserialize() function supported a type code, S, which was meant to be supported only for APC serialization. This type code allowed arbitrary memory addresses to be accessed as if they were static ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：66 | 回复：0
CVE漏洞

CVE-2020-1898

The fb_unserialize function did not impose a depth limit for nested deserialization. That meant a maliciously constructed string could cause deserialization to recurse, leading to stack exhaustion. Th ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：66 | 回复：0
CVE漏洞

CVE-2021-28134

Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal API ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：61 | 回复：0
CVE漏洞

CVE-2021-27919

archive/zip in Go 1.16.x before 1.16.1 allows attackers to cause a denial of service (panic) upon attempted use of the Reader.Open API for a ZIP archive in which ../ occurs at the beginning of any fil ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：72 | 回复：0
CVE漏洞

CVE-2021-27918

encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a custom TokenReader (for xml.NewTokenDecoder) returns EOF in the middle of an element. This can occur in the Decode, ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：63 | 回复：0
CVE漏洞

CVE-2021-21375

PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earli ...……

作者：菜鸟教程小白 | 时间：2022-2-5 09:45 | 阅读：81 | 回复：0