漏洞名称 GitLab 安全漏洞 厂商 GitLab CNNVD编号 CNNVD-202211-1973 危害等级 —— CVE编号 CVE-2022-2904 漏洞类型 其他 收录时间 2022-11-02 更新时间 2022-11-03 漏洞描述 漏洞简介 GitLab是美国GitLab公司的一个开源的端到端软件开发平台,具有内置的版本控制、问题跟踪、代码审查、CI/CD(持续集成和持续交付)等功能。 GitLab CE/EE 15.3 版本到 15.3.4 版本,15.4 版本到 15.4.1 版本存在安全漏…
漏洞基本信息 漏洞名称 Splunk 安全漏洞 厂商 Splunk CNNVD编号 CNNVD-202211-1960 危害等级 —— CVE编号 CVE-2022-43572 漏洞类型 其他 收录时间 2022-11-02 更新时间 2022-11-03 漏洞描述 漏洞简介 Splunk是美国Splunk公司的一套数据收集分析软件。该软件主要用于收集、索引和分析及其所产生的数据,包括所有IT系统和基础结构(物理、虚拟机和云)生成的数据。 Splunk Enterprise存在安全漏洞,该漏洞源于应用程序没有正确控…
Wordpress插件Yooslider Yoo Slider跨站请求伪造漏洞 CVE-2022-27846 CNVD-2022-73697-AVACAUCIA 发布: 2022-11-04 修订: 2022-11-04 WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。 Wordpress插件Yooslider Yoo Slider 2.0.0及之前版本中存在跨站请求伪造漏洞,攻击者可利用该漏洞创建或修改滑块。 漏洞利用/PoC 暂无可用Exp或PoC…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for polkit to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnerability. Fo…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for qutebrowser to fix the vulnerability. Affected OS: Fedora 27 Fedora 28 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vu…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for suricata to fix the vulnerability. Affected OS: Fedora 28 Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulne…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for python34 to fix the vulnerability. Affected OS: Fedora 28 Fedora 27 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availabil…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for libxml2 to fix the vulnerability. Affected OS: Fedora 27 Fedora 28 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availabili…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for zziplib to fix the vulnerability. Affected OS: Fedora 28 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability. 解决方案 F…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for bibutils to fix the vulnerability. Affected OS: Fedora 27 Fedora 28 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availabil…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for libtomcrypt to fix the vulnerability. Affected OS: Fedora 28 漏洞危害 This vulnerability can also be used to cause a limited denial of service in the form of interruptions in resource availability. 解决…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for soundtouch to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation of the vulnerability will lead to denial of service attacks. 解决方案 Fedora has issued updated packages to fix…
漏洞类别:Fedora 漏洞等级: 漏洞信息 Fedora has released security update for perl-archive-zip to fix the vulnerability. Affected OS: Fedora 27 漏洞危害 Successful exploitation allows attacker to compromise the system. 解决方案 Fedora has issued updated packages to fix this vulnera…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Mutt is a low resource, highly configurable, text-based MIME e-mail client. Mutt supports most e-mail storing formats, such as mbox and Maildir, as well as most protocols, including POP3 and IMAP. Security Fixes: mutt: Remote code injec…
漏洞类别:RedHat 漏洞等级: 漏洞信息 memcached is a high-performance, distributed memory object caching system, generic in nature, but intended for use in speeding up dynamic web applications by alleviating database load.Security fix(es): memcached: UDP server support allo…
漏洞类别:RedHat 漏洞等级: 漏洞信息 OpenStack Compute (nova) launches and schedules large networks of virtualmachines, creating a redundant and scalable cloud computing platform. Compute provides the software, control panels, and APIs required toorchestrate a cloud, inclu…
漏洞类别:RedHat 漏洞等级: 漏洞信息 The OpenStack Identity service (keystone) authenticates and authorizes OpenStack users by keeping track of users and their permitted activities. The Identity service supports multiple forms of authentication, including user name and pas…
漏洞类别:RedHat 漏洞等级: 漏洞信息 Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixes: dpdk: Information exposure in unchecked guest physical to host virtual address trans…
CVE
CVE-2017-12624 Red Hat Update for JBoss Enterprise Application Platform 7.1.4 on RHEL 6 (RHSA-2018:2423)
漏洞类别:RedHat 漏洞等级: 漏洞信息 Red Hat JBoss Enterprise Application Platform is a platform for Javaapplications based on the JBoss Application Server. This release of Red Hat JBoss Enterprise Application Platform 7.1.4 serves as a replacement for Red Hat JBoss Enterp…
漏洞类别:Ubuntu 漏洞等级: 漏洞信息 It was discovered that OpenJDK did not properly validate types in some situations. It was discovered that the PatternSyntaxException class in OpenJDK did not properly validate arguments passed to it. It was discovered a vulnerability in…