CVE漏洞中文网

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that Git incorrectly sanitized branch names in the PS1 variable when configured to display the repository status in the shell prompt. 漏洞危害 If a user were tricked into exploring a malicious repository, a remote attacker …

2017年4月12日 0条评论 927点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that Samba incorrectly handled symlinks. 漏洞危害 An authenticated remote attacker could use this issue to access files on the server outside of the exported directories. 解决方案 Refer to Ubuntu advisory USN-3242-1 for affecte…

2017年4月12日 0条评论 848点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 It was discovered that audiofile incorrectly handled certain malformed audio files. 漏洞危害 If a user or automated system were tricked into processing a specially crafted audio file, a remote attacker could cause applications linked against…

2017年4月12日 0条评论 850点热度 0人点赞小助手阅读全文

漏洞类别：Ubuntu 漏洞等级：漏洞信息 Multiple security issues were discovered in Thunderbird. 漏洞危害 If a user were tricked in to opening a specially crafted website in a browsing context, an attacker could potentially exploit these to bypass same origin restrictions, obtain …

2017年4月12日 0条评论 897点热度 0人点赞小助手阅读全文

漏洞类别：Web server 漏洞等级：漏洞信息 Microsoft Internet Information Services (IIS) 6.0 is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. The ScStoragePat…

2017年4月12日 0条评论 853点热度 0人点赞小助手阅读全文

漏洞类别：Cisco 洞等级：漏洞信息 A vulnerability in the DHCP client implementation of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service condition. The vulnerability occurs during the parsing of a crafted DHCP …

2017年4月12日 0条评论 1017点热度 0人点赞小助手阅读全文

漏洞类别：Cisco 漏洞等级：漏洞信息 A vulnerability in the Layer 2 Tunneling Protocol (L2TP) parsing function of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficie…

2017年4月12日 0条评论 952点热度 0人点赞小助手阅读全文

漏洞类别：Cisco 漏洞等级：漏洞信息 A vulnerability in the web user interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to insufficient resource handling by the affected software …

2017年4月12日 0条评论 968点热度 0人点赞小助手阅读全文

漏洞类别：Cisco 漏洞等级：漏洞信息 A vulnerability in the web framework of Cisco IOS XE Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation of …

2017年4月12日 0条评论 951点热度 0人点赞小助手阅读全文

漏洞类别：CGI 漏洞等级：漏洞信息 WordPress is an open source blogging tool and content management system based on PHP and MySQL. It has many features including a plug-in architecture and a template system. Page Layout Builder is a layout builder for WordPress. The vulnerab…

2017年4月12日 0条评论 834点热度 0人点赞小助手阅读全文

漏洞类别：General remote services 漏洞等级：漏洞信息 A vulnerability in Cisco TelePresence Server Software could allow an unauthenticated, remote attacker to emulate Cisco TelePresence Server endpoints. The vulnerability is due to how session identification information is …

2017年4月12日 0条评论 959点热度 0人点赞小助手阅读全文

漏洞类别：Cisco 漏洞等级：漏洞信息 Multiple Cisco products incorporate a version of the OpenSSL package affected by one or more vulnerabilities. Cisco ASA is exposed to following vulnerabilities: - Cisco ASA incorporate a version of the OpenSSL package that incorrectly han…

2017年4月12日 0条评论 981点热度 0人点赞小助手阅读全文

漏洞类别：Hardware 漏洞等级：漏洞信息 Lexmark International, Inc.manufactures laser printers and imaging products. This QID provides information on the configurations of the target Lexmark printer. 漏洞危害解决方案 0day

2017年4月12日 0条评论 897点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 AVG is an antivirus and security tool. A code injection vulnerability, called DoubleAgent, affects AVG Antivirus which allows a local attacker to bypass a self-protection mechanism, inject arbitrary code, and take full control of any AVG …

2017年4月12日 0条评论 1003点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 Trend Micro provides an antivirus and internet content security software for PC and Mobile. Code injection vulnerability exists in multiple Trend Micro products, which may allow a local attacker to bypass a self-protection mechanism, inje…

2017年4月12日 0条评论 1069点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for the linux kernel to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This …

2017年4月12日 0条评论 966点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 洞等级：漏洞信息 SUSE has released security update for libpng12 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP2 SU…

2017年4月12日 0条评论 953点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for samba to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP2 SUSE…

2017年4月12日 0条评论 983点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for samba to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12-SP2 SUSE Linux Enterprise Desktop 12-SP2 漏洞危害 This vulnerabili…

2017年4月12日 0条评论 995点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for libpng16 to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12-SP2 S…

2017年4月12日 0条评论 992点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for java-1_8_0-ibm to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Software Development Kit 12-SP1 SUSE Linux Enterprise Server 12…

2017年4月12日 0条评论 951点热度 0人点赞小助手阅读全文

漏洞类别：SUSE 漏洞等级：漏洞信息 SUSE has released security update for samba to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 11-SP4 SUSE Linux Enterprise Server 11-SP4 漏洞危害 This vulnerability could be exploited to gain partial…

2017年4月12日 0条评论 961点热度 0人点赞小助手阅读全文

漏洞类别：Local 漏洞等级：漏洞信息 The BIOS implementation on Dell Latitude, OptiPlex, Precision Mobile Workstation, and Precision Workstation Client Solutions (CS) devices with model-dependent firmware before A21 does not enforce a BIOS_CNTL locking protection mechanism u…

2017年4月12日 0条评论 2200点热度 0人点赞小助手阅读全文

漏洞类别：General remote services 漏洞等级：漏洞信息 Legacy block ciphers having block size of 64 bits are vulnerable to a practical collision attack when used in CBC mode. All versions of SSL/TLS protocol support cipher suites which use DES or 3DES as the symmetric encryp…

2017年4月12日 0条评论 2793点热度 0人点赞小助手阅读全文

漏洞类别：Amazon Linux 漏洞等级：漏洞信息 Integer overflow in gd_io.c in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to have unspecified impact via vectors involving the number of horizontal and vertical chunks in an image. (CVE-2016-10168 ) In…

2017年4月12日 0条评论 1054点热度 0人点赞小助手阅读全文

1…1377 137813791380 1381…1532

CVE-2014-9938 Ubuntu Security Notification for Git Vulnerability (USN-3243-1)

CVE-2017-2619 Ubuntu Security Notification for Samba Vulnerability (USN-3242-1)

CVE-2017-6827 Ubuntu Security Notification for Audiofile Vulnerabilities (USN-3241-1)

CVE-2017-5398 Ubuntu Security Notification for Thunderbird Vulnerabilities (USN-3233-1)

CVE-2017-7269 Microsoft Internet Information Services 6.0 ScStoragePathFromUrl Buffer Overflow Vulnerability - Zero Day

CVE-2017-3864 Cisco IOS and IOS XE Software DHCP Client Denial of Service Vulnerability (cisco-sa-20170322-dhcpc)

CVE-2017-3857 Cisco IOS and IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability (cisco-sa-20170322-l2tp)

CVE-2017-3856 Cisco IOS XE Software Web User Interface Denial of Service Vulnerability (cisco-sa-20170322-webui)

CVE-2017-3858 Cisco IOS XE Software HTTP Command Injection Vulnerability (cisco-sa-20170322-xeci)

CVE-2016-1000141 WordPress Page Layout Builder Plugin Cross-Site Scripting Vulnerability

CVE-2017-3815 Cisco TelePresence Server API Privilege Vulnerability (cisco-sa-20170315-tps)

CVE-2014-8176 Cisco ASA OpenSSL Multiple Vulnerabilities (cisco-sa-20150612-openssl)

Lexmark Printer Configuration.

CVE-2017-5566 AVG Anti-Virus DoubleAgent Code injection vulnerability

CVE-2017-5565 Trend Micro Multiple Products DoubleAgent Code Execution Vulnerability

CVE-2017-2636 SUSE Enterprise Linux Security Update for the Linux Kernel (SUSE-SU-2017:0864-1)

CVE-2015-8540 SUSE Enterprise Linux Security Update for libpng12 (SUSE-SU-2017:0860-1)

CVE-2017-2619 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2017:0859-1)

CVE-2017-2619 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2017:0858-1)

CVE-2016-10087 SUSE Enterprise Linux Security Update for libpng16 (SUSE-SU-2017:0853-1)

CVE-2016-2183 SUSE Enterprise Linux Security Update for java-1_8_0-ibm (SUSE-SU-2017:0839-1)

CVE-2017-2619 SUSE Enterprise Linux Security Update for samba (SUSE-SU-2017:0841-1)

CVE-2015-2890 Dell Products BIOS UEFI Write Protection Bypass Vulnerability

CVE-2016-2183 Birthday attacks against TLS ciphers with 64bit block size vulnerability (Sweet32)

CVE-2016-10168 Amazon Linux Security Advisory for php70: ALAS-2017-812