• 设为首页
  • 点击收藏
  • 手机版
    手机扫一扫访问
    迪恩网络手机版
  • 关注官方公众号
    微信扫一扫关注
    公众号
登陆 注册
OStack程序员社区-中国程序员成长平台 门户 漏洞

漏洞

RSS

下级分类:

  • CVE-2021-1066
    CVE漏洞
    CVE-2021-1066
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to unexpected consumption of resources, which in turn may lead to denial of servic ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:61 | 回复:0
  • CVE-2021-1065
    CVE漏洞
    CVE-2021-1065
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:66 | 回复:0
  • CVE-2021-1064
    CVE漏洞
    CVE-2021-1064
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which it obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer, which m ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:57 | 回复:0
  • CVE-2021-1063
    CVE漏洞
    CVE-2021-1063
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input offset is not validated, which may lead to a buffer overread, which in turn may cause tampering of data, information ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:56 | 回复:0
  • CVE-2021-1062
    CVE漏洞
    CVE-2021-1062
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input data length is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:61 | 回复:0
  • CVE-2021-1061
    CVE漏洞
    CVE-2021-1061
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which a race condition may cause the vGPU plugin to continue using a previously validated resource that has since changed, which may ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:65 | 回复:0
  • CVE-2021-1060
    CVE漏洞
    CVE-2021-1060
    NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input index is not validated, which may lead to tampering of data or denial of service. This ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:61 | 回复:0
  • CVE-2021-1059
    CVE漏洞
    CVE-2021-1059
    NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input index is not validated, which may lead to integer overflow, which in turn may cause tampering of data, information di ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:61 | 回复:0
  • CVE-2021-1058
    CVE漏洞
    CVE-2021-1058
    NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input data size is not validated, which may lead to tampering of data or denial of service. T ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:55 | 回复:0
  • CVE-2021-1057
    CVE漏洞
    CVE-2021-1057
    NVIDIA Virtual GPU Manager NVIDIA vGPU manager contains a vulnerability in the vGPU plugin in which it allows guests to allocate some resources for which the guest is not authorized, which may lead to ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:57 | 回复:0
  • CVE-2020-4667
    CVE漏洞
    CVE-2020-4667
    IBM Engineering Requirements Quality Assistant On-Premises could allow an authenticated user to obtain sensitive information due to improper input validation. IBM X-Force ID: 186282.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:74 | 回复:0
  • CVE-2020-4666
    CVE漏洞
    CVE-2020-4666
    IBM Engineering Requirements Quality Assistant On-Premises is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the int ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:54 | 回复:0
  • CVE-2020-4664
    CVE漏洞
    CVE-2020-4664
    IBM Engineering Requirements Quality Assistant On-Premises is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the int ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:50 | 回复:0
  • CVE-2020-4663
    CVE漏洞
    CVE-2020-4663
    IBM Engineering Requirements Quality Assistant On-Premises is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the int ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:68 | 回复:0
  • CVE-2020-4606
    CVE漏洞
    CVE-2020-4606
    IBM Security Verify Privilege Manager 10.8 is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A local attacker could exploit this vulnerability to expose sensitiv ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:67 | 回复:0
  • CVE-2020-7794
    CVE漏洞
    CVE-2020-7794
    This affects all versions of package buns. The injection point is located in line 678 in index file lib/index.js in the exported function install(requestedModule).……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:49 | 回复:0
  • CVE-2020-7784
    CVE漏洞
    CVE-2020-7784
    This affects all versions of package ts-process-promises. The injection point is located in line 45 in main entry of package in lib/process-promises.js. The vulnerability is demonstrated with the foll ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:71 | 回复:0
  • CVE-2020-28468
    CVE漏洞
    CVE-2020-28468
    This affects the package pwntools before 4.3.1. The shellcraft generator for affected versions of this module are vulnerable to Server-Side Template Injection (SSTI), which can lead to remote code exe ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:61 | 回复:0
  • CVE-2021-3025
    CVE漏洞
    CVE-2021-3025
    Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST API (the sortDir parameter in a sortBy=popular action to the GETindex() method in applications/downloa ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:60 | 回复:0
  • CVE-2020-25950
    CVE漏洞
    CVE-2020-25950
    Advanced Webhost Billing System 3.7.0 is affected by Cross Site Request Forgery (CSRF) attacks that can delete a contact from the My Additional Contact page.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:77 | 回复:0
  • CVE-2020-24577
    CVE漏洞
    CVE-2020-24577
    An issue was discovered on D-Link DSL-2888A devices with firmware prior to AU_2.31_V1.1.47ae55. The One Touch application discloses sensitive information, such as the hashed admin login password and t ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:68 | 回复:0
  • CVE-2021-1056
    CVE漏洞
    CVE-2021-1056
    NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer (nvidia.ko) in which it does not completely honor operating system file system permissions to provi ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:56 | 回复:0
  • CVE-2021-1055
    CVE漏洞
    CVE-2021-1055
    NVIDIA GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which improper access control may lead to denial of s ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:73 | 回复:0
  • CVE-2021-1054
    CVE漏洞
    CVE-2021-1054
    NVIDIA GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software does not perform or incorrectly pe ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:82 | 回复:0
  • CVE-2021-1053
    CVE漏洞
    CVE-2021-1053
    NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which improper validation of a use ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:63 | 回复:0
  • CVE-2021-1052
    CVE漏洞
    CVE-2021-1052
    NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which user-mode clients can access ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:73 | 回复:0
  • CVE-2021-1051
    CVE漏洞
    CVE-2021-1051
    NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which a local user can get elevated privileges to modify display con ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:53 | 回复:0
  • CVE-2020-36049
    CVE漏洞
    CVE-2020-36049
    socket.io-parser before 3.4.1 allows attackers to cause a denial of service (memory consumption) via a large packet because a concatenation approach is used.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:64 | 回复:0
  • CVE-2020-36048
    CVE漏洞
    CVE-2020-36048
    Engine.IO before 4.0.0 allows attackers to cause a denial of service (resource consumption) via a POST request to the long polling transport.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:57 | 回复:0
  • CVE-2020-13452
    CVE漏洞
    CVE-2020-13452
    In Gotenberg through 6.2.1, insecure permissions for tini (writable by user gotenberg) potentially allow an attacker to overwrite the file, which can lead to denial of service or code execution.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:59 | 回复:0
  • CVE-2020-13451
    CVE漏洞
    CVE-2020-13451
    An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1 allows an attacker to overwrite LibreOffice configuration files and execute arbitrary code via macros.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:60 | 回复:0
  • CVE-2020-13450
    CVE漏洞
    CVE-2020-13450
    A directory traversal vulnerability in file upload function of Gotenberg through 6.2.1 allows an attacker to upload and overwrite any writable files outside the intended folder. This can lead to DoS, ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:74 | 回复:0
  • CVE-2020-13449
    CVE漏洞
    CVE-2020-13449
    A directory traversal vulnerability in the Markdown engine of Gotenberg through 6.2.1 allows an attacker to read any container files.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:38 | 回复:0
  • CVE-2021-23242
    CVE漏洞
    CVE-2021-23242
    MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ to the UPnP server, as demonstrated by the /../../conf/template/uhttpd.json URI.……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:60 | 回复:0
  • CVE-2021-23241
    CVE漏洞
    CVE-2021-23241
    MERCUSYS Mercury X18G 1.0.5 devices allow Directory Traversal via ../ in conjunction with a loginLess or login.htm URI (for authentication bypass) to the web server, as demonstrated by the /loginLess/ ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:57 | 回复:0
  • CVE-2020-35745
    CVE漏洞
    CVE-2020-35745
    PHPGURUKUL Hospital Management System V 4.0 does not properly restrict access to admin/dashboard.php, which allows attackers to access all data of users, doctors, patients, change admin password, get ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:58 | 回复:0
  • CVE-2020-17500
    CVE漏洞
    CVE-2020-17500
    Barco TransForm NDN-210 Lite, NDN-210 Pro, NDN-211 Lite, and NDN-211 Pro before 3.8 allows Command Injection (issue 1 of 4). The NDN-210 has a web administration panel which is made available over htt ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:58 | 回复:0
  • CVE-2019-18643
    CVE漏洞
    CVE-2019-18643
    Rock RMS versions before 8.10 and versions 9.0 through 9.3 fails to properly validate files uploaded in the application. The only protection mechanism is a file-extension blacklist that can be bypasse ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:63 | 回复:0
  • CVE-2019-18642
    CVE漏洞
    CVE-2019-18642
    Rock RMS version before 8.6 is vulnerable to account takeover by tampering with the user ID parameter in the profile update feature. The lack of validation and use of sequential user IDs allows any us ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:79 | 回复:0
  • CVE-2020-6656
    CVE漏洞
    CVE-2020-6656
    Eaton's easySoft software v7.xx prior to v7.22 are susceptible to file parsing type confusion remote code execution vulnerability. A malicious entity can execute a malicious code or make the appli ...……
    作者:菜鸟教程小白 | 时间:2022-2-5 09:38 | 阅读:68 | 回复:0

关注我们

极客给你想要的成长

关注极客中国获取最新资讯

加入Q群 官方微博
热门推荐
More+
专题导读
More+
热门话题
More+
阅读排行榜

扫描微信二维码

查看手机版网站

随时了解更新最新资讯

139-2527-9053

在线客服(服务时间 9:00~18:00)

在线QQ客服
地址:深圳市南山区西丽大学城创智工业园
电邮:jeky_zhao#qq.com
移动电话:139-2527-9053

Powered by 互联科技 X3.4© 2001-2213 极客世界.|Sitemap