漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for mozillafirefox, mozilla-nss to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exp…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This …

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for xen to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerability…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for wireshark to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP3 …

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for botan to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 漏洞危害 This vulnerability could be exploit…

漏洞类别：SUSE 漏洞等级： 漏洞信息 SUSE has released security update for tcpdump to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Server 12-SP3 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP3 SUSE Linux Enterprise Desktop 12-SP2 …

漏洞类别：Local 漏洞等级： 漏洞信息 RubyGems is a package management framework for Ruby. RubyGems is prone to remote code-execution vulnerability since YAML deserialization of gem specifications can bypass class white lists. An attacker can exploit this issue to execute arb…

漏洞类别：Security Policy 漏洞等级： 漏洞信息 Adobe Reader/Acrobat XI is installed on the host .Adobe ended support for Adobe Acrobat XI on October 15, 2017 and provides no further updates. QID Detection Logic (authenticated): Operating System: MacOS This authenticated QID …

漏洞类别：Cisco 漏洞等级： 漏洞信息 Multiple Cisco products are affected by a vulnerability involving the Open Shortest Path First (OSPF) Routing Protocol Link State Advertisement (LSA) database. This vulnerability could allow an unauthenticated, remote attacker to take ful…

漏洞类别：Local 漏洞等级： 漏洞信息 The Cisco WebEx Network Recording Player is an application that is used to play back WebEx meeting recordings that have been recorded on the computer of an online meeting attendee. Affected Versions: Cisco WebEx Business Suite (WBS29) cli…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Chromium is an open-source web browser, powered by WebKit (Blink). A flaw was found in the processing of malformed web content. A web page containing malicious content could cause Chromium to crash, execute arbitrary code, or disclose se…

漏洞类别：Local 漏洞等级： 漏洞信息 HPE Operations Orchestration is a leading IT process automation solution designed to increase automation adoption in a traditional data center. A potential security vulnerability has been identified in HPE Operations Orchestration product…

漏洞类别：Local 漏洞等级： 漏洞信息 On VIPRION platforms only, the script which synchronizes SafeNet External Network HSM configuration elements between blades in a clustered deployment will log the HSM partition password in cleartext to the "/var/log/ltm" log file. Affecte…

漏洞类别：CGI 漏洞等级： 漏洞信息 Jira is a proprietary issue tracking product, developed by Atlassian. It provides bug tracking, issue tracking, and project management functions. Atlassian JIRA Server is prone to a cross-site request-forgery vulnerability in auditing/setti…

漏洞类别：Security Policy 漏洞等级： 漏洞信息 Jenkins is an open source automation server written in Java. Support for Jenkins 1.x ended on 2016-07-07. No further bug fixes, enhancements, security updates or technical support is available for this version. QID Detection Log…

漏洞类别：Local 漏洞等级： 漏洞信息 Safari is a Web-browser developed by Apple which is based on the WebKit engine. Visiting a malicious website may lead to address bar spoofing [CVE-2017-13790, CVE-2017-13789]. Processing maliciously crafted web content may lead to arbitra…

漏洞类别：Database 漏洞等级： 漏洞信息 MongoDB is an open source database project, which is available for a number of operating systems, including Microsoft Windows and Linux. We have obtained a list of MongoDB users along with their passwords and/or password hashes. This i…

漏洞类别：Security Policy 漏洞等级： 漏洞信息 MongoDB authentication was enabled but it was not performed for this particular host because the host's IP address is not included in any MongoDB authentication records. 漏洞危害 Vulnerabilities that require MongoDB authentication m…

漏洞类别：Security Policy 漏洞等级： 漏洞信息 MongoDB authentication was enabled during the scan but login attempts failed for this type of the MongoDB authentication record. The authentication credentials include: 1) User name 2) Password or reference to a Vault authentica…

漏洞类别：Database 漏洞等级： 漏洞信息 The result section displays the MongoDB Database Server version. 漏洞危害 解决方案 0daybank

漏洞类别：Database 漏洞等级： 漏洞信息 MongoDB authentication was performed. The Result section in your detailed results shows the credentials used for authentication. Authentication credentials include a user name, password, and database name on the host. 漏洞危害 解决方案 0dayban…

漏洞类别：CGI 漏洞等级： 漏洞信息 Oracle Identity Manager (OIM) enables enterprises to manage the entire user life-cycle across all enterprise resources both within and beyond a firewall. Vulnerability exists in the Oracle Identity Manager component of Oracle Fusion Middlew…

漏洞类别：Information gathering 漏洞等级： 漏洞信息 Java Development Kit/Java Runtime Environment 1.8 installed on the target machine. 漏洞危害 解决方案 0daybank

漏洞类别：Local 漏洞等级： 漏洞信息 iCloud is a cloud storage and cloud computing service from Apple Inc. WebKit in Apple iCloud for Windows is prone to multiple memory corruption vulnerabilities which may lead to arbitrary code execution. Affected Versions: Apple iCloud pr…

漏洞类别：RedHat 漏洞等级： 漏洞信息 Django is a high-level Python Web framework that encourages rapid development and a clean, pragmatic design. A redirect flaw, where the is_safe_url() function did not correctly sanitize numeric-URL user input, was found in python-django.…