漏洞类别：Cisco 漏洞等级： 漏洞信息 A vulnerability in the Multipurpose Internet Mail Extensions (MIME) scanner of Cisco AsyncOS Software for Cisco Email Security Appliances (ESA) and Web Security Appliances (WSA) could allow an unauthenticated, remote attacker to bypass co…

漏洞类别：Local 漏洞等级： 漏洞信息 Moxa SoftCMS is a central management software that manages large scale surveillance systems. Moxa SoftCMS contains the following vulnerabilities: CVE-2016-8360: A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a…

漏洞类别：Local 漏洞等级： 漏洞信息 The BIG-IP platform is a smart evolution of Application Delivery Controller (ADC) technology. A remote attacker may be able to cause a denial-of-service (DoS) attack on the BIG-IP system's local instance of BIND by using a specially craft…

漏洞类别：Information gathering 漏洞等级： 漏洞信息 This is a list of outdated Python packages on the local system. It is suggested that all Python packages are updated so as to avoid related vulerabilities. NOTE: This QID needs python-pip to be installed on the local syste…

漏洞类别：RedHat 漏洞等级： 漏洞信息 he ipsilon packages provide the Ipsilon identity provider service for federated single sign-on (SSO). Ipsilon links authentication providers and applications or utilities to allow for SSO. It includes a server and utilities to configure …

漏洞类别：Local 漏洞等级： 漏洞信息 Moxa SoftCMS is a central management software that manages large scale surveillance systems. Moxa SoftCMS contains the following vulnerabilities: CVE-2015-6457: The vulnerability exists within the setStreamRecordData, setRecordPrefix, Aud…

漏洞类别：Local 漏洞等级： 漏洞信息 Moxa SoftCMS is a central management software that manages large scale surveillance systems. Moxa SoftCMS does not properly sanitize input fields, allowing an attacker to access the product by specially crafting the input. Affected Versio…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that tar incorrectly handled extracting files when path names are specified on the command line. 漏洞危害 If a user or automated system were tricked into processing a specially crafted archive, an attacker could possibly ov…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that ImageMagick incorrectly handled certain malformed image files. 漏洞危害 If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a den…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 It was discovered that OpenJDK did not restrict the set of algorithms used for Jar integrity verification. It was discovered that the JMX component of OpenJDK did not sufficiently perform classloader consistency checks. It was discovered…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for drupal7 to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerabilities can allow the attacker to redirect users to third party websites. The attacker can also cause a denial of ser…

漏洞类别：Ubuntu 漏洞等级： 漏洞信息 Multiple memory safety issues in Firefox. A same-origin policy bypass was discovered with local HTML files in some circumstances. A crash was discovered when parsing URLs in some circumstances. A heap buffer-overflow was discovered in Ca…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for Mozilla Firefox to fix the vulnerabilities. 漏洞危害 Successful Exploitation of these vulnerabilities can lead to multiple memory safety errors, buffer overflows and other implementation errors may lea…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for gst-plugins to fix the vulnerabilities. 漏洞危害 Sucessful Exploitation of the vulnerability can lead to execution of arbitary code. 解决方案 Refer to Debian security advisory DSA 3713-1 to address this is…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for vim to fix the vulnerabilities. 漏洞危害 Successful Exploitation of the vulnerabilities may result in the execution of arbitrary code. 解决方案 Refer to Debian security advisory DSA 3722-1 to address this …

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for tomcat8 to fix the vulnerabilities. 漏洞危害 An attack with the help of timing attacks can determine valid user names, bypass of the SecurityManager, disclosure of system properties, unrestricted acces…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for wireshark to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerabilities can cause various crashes, denial-of-service, or execution of arbitrary code. 解决方案 Refer to Debian security…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for moin to fix the vulnerabilities. 漏洞危害 Successful exploitation of the vulnerabilities can allow the attacker to cause XSS attacks via the GUI editor's attachment dialogue (CVE-2016-7146), the Attach…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for terminology to fix the vulnerabilities. 漏洞危害 Improper sensitization of character escape sequences in the Terminology terminal emulator may allow the attacker to execute arbitrary commands. 解决方案 Ref…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for mariadb-10.0 to fix the vulnerabilities. 漏洞危害 Successful exploitation could allow an attacker to affect the confidentiality, integrity and availability of data on the target system. 解决方案 Refer to D…

漏洞类别：Debian 漏洞等级： 漏洞信息 Debian has released security update for pillow to fix the vulnerabilities. 漏洞危害 Successful Exploitation of the vulnerabilities can lead to the execution of arbitrary code or information disclosure with the help of a maliciously crafted i…

漏洞类别：CGI 漏洞等级： 漏洞信息 DokuWiki is a simple to use and highly versatile Open Source wiki software that doesn't require a database. DokuWiki has the following vulnerabilities: CVE-2016-7964: The sendRequest method in HTTPClient Class, implemented in the /inc/HTTPC…

漏洞类别：CGI 漏洞等级： 漏洞信息 Moodle (Modular Object-Oriented Dynamic Learning Environment) is a free e-learning software platform, also known as a Learning Management System, or Virtual Learning Environment. Moodle 2.4.x has been detected on the host. Support for Moodl…

漏洞类别：RedHat 漏洞等级： 漏洞信息 OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library. Security Fix(es): * A memory leak flaw was found in the wa…

漏洞类别：Cisco 漏洞等级： 漏洞信息 A vulnerability in local FTP to the Cisco Email Security Appliance (ESA) could allow an unauthenticated, remote attacker to cause a partial denial of service (DoS) condition when the FTP application unexpectedly quits. The vulnerability i…