漏洞类别：Backdoors and trojan horses 漏洞等级： 漏洞信息 WannaCrypt/WannaCry/Wanna Decryptor is a ransomware worm that is reportedly spreading by exploiting a flaw in SMB. It is said to exploit the SMB vulnerability. The spreading mechanism is said to be designed on the ET…

漏洞类别：Amazon Linux 漏洞等级： 漏洞信息 Infinite recursion in ahash.c by triggering EBUSY on a full queue: A vulnerability was found in crypto/ahash.c in the Linux kernel which allows attackers to cause a denial of service (API operation calling its own callback, and inf…

漏洞类别：Amazon Linux 漏洞等级： 漏洞信息 Improper re-use of NTLM authenticated connections (Networking, 8163520): It was discovered that the HTTP client implementation in the Networking component of OpenJDK could cache and re-use an NTLM authenticated connection in a diff…

漏洞类别：Local 漏洞等级： 漏洞信息 HP audio driver on some HP-manufactured computers records users' keystrokes and stores them in a world-readable plaintext file. QID Detection Logic (Authenticated): Check if "C:\Windows\System32\MicTray64.exe" or "C:\Windows\System32\MicT…

漏洞类别：Security Policy 漏洞等级： 漏洞信息 Support for Windows 10 Version 1507 (Build 10240) ended on May 9th, 2017. Microsoft will no longer release security patches and quality updates. Refer to Windows 10 version 1507 will no longer receive security updates for more i…

漏洞类别：Local 漏洞等级： 漏洞信息 Adobe Flash Player is a Cross-platform plugin plays animations, videos and sound files in .SWF format. These vulnerabilities that could potentially allow an attacker to take control of the affected system. ( CVE-2017-3068, CVE-2017-3069, …

漏洞类别：Office Application 漏洞等级： 漏洞信息 Microsoft releases security updates on May 2017 to fix following vulnerabilities: - Microsoft Office Memory Corruption Vulnerability (CVE-2017-0254). - Microsoft SharePoint XSS Vulnerability (CVE-2017-02545). - Microsoft Offi…

漏洞类别：Internet Explorer 漏洞等级： 漏洞信息 Internet Explorer is a web-browser developed by Microsoft which is included in Microsoft Windows Operating Systems. Microsoft has released Cumulative Security Updates for Internet Explorer which addresses various vulnerabiliti…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for libosip2 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Desktop 12-SP2 …

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This …

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for audiofile to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain par…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for mozillafirefox, mozilla-nss, mozilla-nspr to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerabilit…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability can be used to cause a complet…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for ghostscript to fix the vulnerabilities. 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability. 解决方案 Refer to Debian sec…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for tiff to fix the vulnerabilities. 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability. 解决方案 Refer to Debian security a…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for tomcat7 to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. 解决方案 Refer to Debian security advisory DSA 3842-1 to address this iss…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for libxstream-java to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerability may allow attackers to cause Denial of Service attacks. 解决方案 Refer to Debian security advisory DSA 3841…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for mysql-connector-java to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to cha…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for freetype to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to change partial …

漏洞类别：RedHat 漏洞等级： 漏洞信息 The flash-plugin package contains a Mozilla Firefox compatible Adobe Flash Player web browser plug-in. This update fixes multiple vulnerabilities in Adobe Flash Player. These vulnerabilities, detailed in the Adobe Security Bulletin liste…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Mozilla Thunderbird is a standalone mail and newsgroup client. Multiple flaws were found in the processing of malformed web content. A web page containing malicious content could cause Thunderbird to crash or, potentially, execute arbitr…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. A denial of service flaw was found in the way BIND handled DNSSEC validation. A remote attacker could use this flaw to make named ex…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for thunderbird to fix the vulnerabilities. Affected Products: Oracle Linux 7 Oracle Linux 6 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Ma…

漏洞类别：OEL 漏洞等级： 漏洞信息 Oracle Enterprise Linux has released security update for bind to fix the vulnerabilities. Affected Products: Oracle Linux 6 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 To resolve this issue, upgrade to the la…

漏洞类别：RedHat 漏洞等级： 漏洞信息 The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possi…