漏洞类别:CGI 漏洞等级: 漏洞信息 A Denial of Service exists in PAN-OS Management Web Interface that allows an authenticated user to shut down all management sessions, resulting in all logged in users to be redirected to the login page. This vulnerability can be triggered …
CVE
CVE-2018-13392 Atlassian Fisheye and Crucible Cross-Site Scripting Vulnerability (FE-7081,CRUC-8304)
漏洞类别:CGI 漏洞等级: 漏洞信息 Atlassian FishEye is the on-premise source code repository browser for enterprise teams. It provides your developers with advanced browsing and search for SVN, Git, Mercurial, Perforce and CVS code repositories, from any web browser. Atlas…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that the MOTD update script incorrectly handled temporary files. 漏洞危害 A local attacker could use this issue to cause a denial of service, or possibly escalate privileges if kernel symlink restrictions were disabled. 解决…
漏洞类别:VMware 漏洞等级: 漏洞信息 VMware vCenter is the centralized management tool for the vSphere suite. VMware vCenter is affected by the following vulnerability: This issue may allow a malicious VM running on a given CPU core to effectively read the hypervisor or an…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for jetty9 to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to change partial c…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for mutt to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to change partial con…
漏洞类别:Debian 漏洞等级: 漏洞信息 Debian has released security update for php-horde-image to fix the vulnerabilities. 漏洞危害 This vulnerability could be exploited to gain partial access to sensitive information. Malicious users could also use this vulnerability to change …
漏洞类别:Local 漏洞等级: 漏洞信息 The JMX server is exposed to sniffing attacks because It's authentication credentials are transferred via clear text. QID Detection Logic (Authenticated): This QID executes "ps auxf | grep -i 'jmxremote.ssl'|grep -i -v -E "(jmxremote\.ho…
漏洞类别:Local 漏洞等级: 漏洞信息 JMX authentication not enabled on localhost interface detected on the system. QID Detection Logic (Authenticated): This QID executes "ps auxf | grep -E "(jmxremote.host=localhost|jmxremote.host=127.0.0.1)"" commands to list all the runni…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for firefox to fix the vulnerability. Affected OS: Fedora 26 Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnera…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for curl to fix the vulnerability. Affected OS: Fedora 26 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. For m…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for samba to fix the vulnerability. Affected OS: Fedora 26 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. For …
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. For…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for kernel to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 This vulnerability could be exploited to gain complete access to sensitive information. Malicious users could also use this vulnerabilit…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for net-snmp to fix the vulnerability. Affected OS: Fedora 27 Fedora 26 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulner…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for util-linux to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability.…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for util-linux to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability.…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for mariadb to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Malicious users could use this vulnerability to change partial contents or configuration on the system. 解决方案 Fedora has issued updated …
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for advancecomp to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability…
CVE
CVE-2016-10712 Ubuntu Security Notification for Php5, Php7.0, Php7.1 Vulnerabilities (USN-3600-1)
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that PHP incorrectly handled certain stream metadata. It was discovered that PHP incorrectly handled the PHAR 404 error page. It was discovered that PHP incorrectly handled parsing certain HTTP responses. 漏洞危害 A remote …
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 An out-of-bounds write was discovered when processing Vorbis audio data. 漏洞危害 If a user were tricked in to opening a specially crafted website, an attacker could exploit this to cause a denial of service, or execute arbitrary code. (CVE-…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for java-1_7_1-ibm to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Server 12…
漏洞类别:SUSE 漏洞等级: 漏洞信息 SUSE has released security update for libid3tag to fix the vulnerabilities. Affected Products: SUSE Linux Enterprise Software Development Kit 12-SP3 SUSE Linux Enterprise Software Development Kit 12-SP2 SUSE Linux Enterprise Desktop 12-SP3…
漏洞类别:Local 漏洞等级: 漏洞信息 Firefox is a free and open-source web browser developed for Windows, OS X, and Linux, with a mobile version for Android. Multiple vulnerabilities were reported in Mozilla Firefox: CVE-2018-5146: Out of bounds memory write in libvorbis CVE…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for libldb and samba to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 On successful exploitation Missing null pointer checks may crash the external print server process and AD DC any authenticated…