docker.io/bde2020/hadoop-namenode:latest linux/amd64

docker.io/bde2020/hadoop-namenode:latest - Trivy安全扫描结果扫描时间: 2024-11-15 14:03

全部漏洞信息

低危漏洞:181

中危漏洞:395

高危漏洞:536

严重漏洞:179

系统OS: debian 9.11 扫描引擎: Trivy 扫描时间: 2024-11-15 14:03

docker.io/bde2020/hadoop-namenode:latest (debian 9.11) (debian)

低危漏洞:162

中危漏洞:290

高危漏洞:197

严重漏洞:36

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
curl	CVE-2019-5481	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: double free due to subsequent call of realloc() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
curl	CVE-2019-5482	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: heap buffer overflow in function tftp_receive_packet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
dpkg	CVE-2022-1664	严重	1.18.25	1.18.26	Dpkg::Source::Archive in dpkg, the Debian package management system, b ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1664 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-05-26 14:15 修改: 2022-12-03 02:19
libbsd0	CVE-2019-20367	严重	0.8.3-1	0.8.3-1+deb9u1	nlist.c in libbsd before 0.10.0 has an out-of-bounds read during a com ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20367 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-08 17:15 修改: 2023-11-07 03:09
libbz2-1.0	CVE-2019-12900	严重	1.0.6-8.1		bzip2: out-of-bounds write in function BZ2_decompress 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
libcurl3	CVE-2019-5481	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: double free due to subsequent call of realloc() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libcurl3	CVE-2019-5482	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: heap buffer overflow in function tftp_receive_packet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libdb5.3	CVE-2019-8457	严重	5.3.28-12+deb9u1		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libelf1	CVE-2018-16402	严重	0.168-1	0.168-1+deb9u1	elfutils: Double-free due to double decompression of sections in crafted ELF causes crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16402 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-09-03 19:29 修改: 2023-11-07 02:53
libexpat1	CVE-2022-22822	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in addBinding in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22822 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-10-06 15:29
libexpat1	CVE-2022-22823	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in build_model in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22823 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
libexpat1	CVE-2022-22824	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in defineAttribute in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22824 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
libexpat1	CVE-2022-23852	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u5	expat: Integer overflow in function XML_GetBuffer 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23852 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-24 02:15 修改: 2022-10-29 02:44
libexpat1	CVE-2022-25235	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u5	expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25235 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44
libexpat1	CVE-2022-25236	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u5	expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25236 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44
libexpat1	CVE-2022-25315	严重	2.2.0-2+deb9u3	2.2.0-2+deb9u5	expat: Integer overflow in storeRawNames() 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25315 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
libfreetype6	CVE-2022-27404	严重	2.6.3-3.2		FreeType: Buffer overflow in sfnt_init_face 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27404 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libidn11	CVE-2017-14062	严重	1.33-1	1.33-1+deb9u1	libidn2: Integer overflow in puny_decode.c/decode_digit 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14062 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-08-31 16:29 修改: 2020-12-07 20:17
libldap-2.4-2	CVE-2022-29155	严重	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u9	openldap: OpenLDAP SQL injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56
libldap-common	CVE-2022-29155	严重	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u9	openldap: OpenLDAP SQL injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56
liblz4-1	CVE-2021-3520	严重	0.0~r131-2+b1	0.0~r131-2+deb9u1	lz4: memory corruption due to an integer overflow bug caused by memmove argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3520 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-06-02 13:15 修改: 2024-06-06 20:25
libnss3	CVE-2019-17006	严重	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Check length of inputs for cryptographic primitives 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39
libnss3	CVE-2020-12403	严重	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15
libnss3	CVE-2021-43527	严重	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u3	nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43527 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-12-08 22:15 修改: 2023-02-23 01:40
libpng16-16	CVE-2017-12652	严重	1.6.28-1+deb9u1		libpng: does not check length of chunks against user limit 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12652 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-07-10 15:15 修改: 2023-11-07 02:38
libproxy1v5	CVE-2020-26154	严重	0.4.14-2	0.4.14-2+deb9u2	libproxy: sending more than 102400 bytes in PAC without a Content-Length present could result in buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26154 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-30 18:15 修改: 2023-11-07 03:20
libsndfile1	CVE-2017-12562	严重	1.0.27-3	1.0.27-3+deb9u3	libsndfile: Heap-based Buffer Overflow in psf_binheader_writef function in common.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12562 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-08-05 17:29 修改: 2022-12-02 22:58
libsqlite3-0	CVE-2019-8457	严重	3.16.2-5+deb9u1		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libssl1.1	CVE-2022-1292	严重	1.1.0l-1~deb9u1	1.1.0l-1~deb9u6	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
libx11-6	CVE-2021-31535	严重	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u4	libX11: missing request length checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
libx11-data	CVE-2021-31535	严重	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u4	libX11: missing request length checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
libx11-xcb1	CVE-2021-31535	严重	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u4	libX11: missing request length checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
libxml2	CVE-2017-8872	严重	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: Out-of-bounds read in htmlParseTryOrFinish 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8872 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-05-10 05:29 修改: 2020-09-10 01:15
login	CVE-2017-12424	严重	1:4.4-4.1	1:4.4-4.1+deb9u1	shadow-utils: Buffer overflow via newusers tool 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12424 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-08-04 09:29 修改: 2021-03-23 20:02
openssl	CVE-2022-1292	严重	1.1.0l-1~deb9u1	1.1.0l-1~deb9u6	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
passwd	CVE-2017-12424	严重	1:4.4-4.1	1:4.4-4.1+deb9u1	shadow-utils: Buffer overflow via newusers tool 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12424 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-08-04 09:29 修改: 2021-03-23 20:02
libdbus-1-3	CVE-2020-35512	高危	1.10.28-0+deb9u1	1.10.32-0+deb9u1	dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
curl	CVE-2021-22946	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
bsdutils	CVE-2016-2779	高危	1:2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
e2fslibs	CVE-2022-1304	高危	1.43.4-2+deb9u1		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
e2fsprogs	CVE-2022-1304	高危	1.43.4-2+deb9u1		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
gcc-6-base	CVE-2018-12886	高危	6.3.0-18+deb9u1		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
gnupg	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
gnupg-agent	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
gpgv	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
libexpat1	CVE-2021-45960	高危	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Large number of prefixed XML attributes on a single tag can crash libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45960 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-01 19:15 修改: 2022-10-06 19:08
libexpat1	CVE-2021-46143	高危	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in doProlog in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46143 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-06 04:15 修改: 2022-10-06 19:11
libexpat1	CVE-2022-22825	高危	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in lookup in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22825 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
libexpat1	CVE-2022-22826	高危	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in nextScaffoldPart in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22826 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:44
libexpat1	CVE-2022-22827	高危	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: Integer overflow in storeAtts in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22827 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:52
libexpat1	CVE-2022-23990	高危	2.2.0-2+deb9u3	2.2.0-2+deb9u4	expat: integer overflow in the doProlog function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23990 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-26 19:15 修改: 2023-11-07 03:44
libfdisk1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
gzip	CVE-2022-1271	高危	1.6-5+b1	1.6-5+deb9u1	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libfreetype6	CVE-2022-27405	高危	2.6.3-3.2		FreeType: Segmentation violation via FNT_Size_Request 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libfreetype6	CVE-2022-27406	高危	2.6.3-3.2		Freetype: Segmentation violation via FT_Request_Size 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libgcc1	CVE-2018-12886	高危	1:6.3.0-18+deb9u1		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libgcrypt20	CVE-2021-33560	高危	1.7.6-2+deb9u3		libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libglib2.0-0	CVE-2021-27218	高危	2.50.3-2+deb9u1	2.50.3-2+deb9u3	glib: integer overflow in g_byte_array_new_take function when called with a buffer of 4GB or more on a 64-bit platform 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27218 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31
libglib2.0-0	CVE-2021-27219	高危	2.50.3-2+deb9u1	2.50.3-2+deb9u3	glib: integer overflow in g_bytes_new function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27219 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31
libgmp10	CVE-2021-43618	高危	2:6.1.2+dfsg-1	2:6.1.2+dfsg-1+deb9u1	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
libgnutls30	CVE-2019-3829	高危	3.5.8-5+deb9u4	3.5.8-5+deb9u5	gnutls: use-after-free/double-free in certificate verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3829 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-03-27 18:29 修改: 2023-11-07 03:10
libgraphite2-3	CVE-2018-7999	高危	1.3.10-1		graphite2: NULL pointer dereference in Segment.cpp in libgraphite2 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7999 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-09 19:29 修改: 2023-11-07 03:01
libgssapi-krb5-2	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libhogweed4	CVE-2021-20305	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Out of bounds memory access in signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libhogweed4	CVE-2021-3580	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
libicu57	CVE-2020-10531	高危	57.1-6+deb9u3	57.1-6+deb9u4	ICU: Integer overflow in UnicodeString::doAppend() 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10531 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-03-12 19:15 修改: 2023-11-07 03:14
libavahi-client3	CVE-2021-26720	高危	0.6.32-2	0.6.32-2+deb9u1	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-26720 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-17 22:15 修改: 2022-12-06 21:52
libjpeg62-turbo	CVE-2019-2201	高危	1:1.5.1-2	1:1.5.1-2+deb9u2	libjpeg-turbo: several integer overflows and subsequent segfaults when attempting to compress/decompress gigapixel images 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2201 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-11-13 18:15 修改: 2023-11-07 03:09
libjpeg62-turbo	CVE-2020-13790	高危	1:1.5.1-2	1:1.5.1-2+deb9u1	libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13790 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-06-03 19:15 修改: 2023-11-07 03:16
libjpeg62-turbo	CVE-2020-14152	高危	1:1.5.1-2	1:1.5.1-2+deb9u1	libjpeg: improper handling of max_memory_to_use setting can lead to excessive memory consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14152 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-06-15 17:15 修改: 2023-02-27 18:17
libk5crypto3	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libkrb5-3	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libkrb5support0	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libavahi-common-data	CVE-2021-26720	高危	0.6.32-2	0.6.32-2+deb9u1	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-26720 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-17 22:15 修改: 2022-12-06 21:52
libldap-2.4-2	CVE-2020-12243	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u4	openldap: denial of service via nested boolean expressions in LDAP search filters 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24
libldap-2.4-2	CVE-2020-25692	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u5	openldap: NULL pointer dereference for unauthenticated packet in slapd 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27
libldap-2.4-2	CVE-2020-25709	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in Certificate List syntax validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20
libldap-2.4-2	CVE-2020-25710	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in CSN normalization with invalid input 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20
libldap-2.4-2	CVE-2020-36221	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36222	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in slapd in the saslAuthzTo validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36223	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Out-of-bounds read in Values Return Filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36224	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Invalid pointer free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36225	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Double free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36226	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Denial of service via length miscalculation in slap_parse_user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36227	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Infinite loop in slapd with the cancel_extop Cancel operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36228	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36229	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Type confusion in ad_keystring in ad.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36230	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in ber_next_element in decode.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2021-27212	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u8	openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31
libavahi-common3	CVE-2021-26720	高危	0.6.32-2	0.6.32-2+deb9u1	avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-26720 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-17 22:15 修改: 2022-12-06 21:52
libldap-common	CVE-2020-12243	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u4	openldap: denial of service via nested boolean expressions in LDAP search filters 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24
libldap-common	CVE-2020-25692	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u5	openldap: NULL pointer dereference for unauthenticated packet in slapd 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27
libldap-common	CVE-2020-25709	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in Certificate List syntax validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20
libldap-common	CVE-2020-25710	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in CSN normalization with invalid input 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20
libldap-common	CVE-2020-36221	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36222	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in slapd in the saslAuthzTo validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36223	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Out-of-bounds read in Values Return Filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36224	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Invalid pointer free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36225	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Double free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36226	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Denial of service via length miscalculation in slap_parse_user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36227	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Infinite loop in slapd with the cancel_extop Cancel operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36228	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36229	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Type confusion in ad_keystring in ad.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36230	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in ber_next_element in decode.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2021-27212	高危	2.4.44+dfsg-5+deb9u3	2.4.44+dfsg-5+deb9u8	openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31
libblkid1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
liblzma5	CVE-2022-1271	高危	5.2.2-1.2+b1	5.2.2-1.2+deb9u1	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libmount1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libncursesw5	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libnettle6	CVE-2021-20305	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Out of bounds memory access in signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libnettle6	CVE-2021-3580	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
libnghttp2-14	CVE-2018-1000168	高危	1.18.1-1+deb9u1	1.18.1-1+deb9u2	nghttp2: Null pointer dereference when too large ALTSVC frame is received 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000168 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-05-08 15:29 修改: 2022-08-16 13:01
libnghttp2-14	CVE-2020-11080	高危	1.18.1-1+deb9u1	1.18.1-1+deb9u2	nghttp2: overly large SETTINGS frames can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11080 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-06-03 23:15 修改: 2023-11-07 03:14
curl	CVE-2019-5436	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: TFTP receive heap buffer overflow in tftp_receive_packet() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11
curl	CVE-2020-8177	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u11	curl: Incorrect argument check can allow remote servers to overwrite local files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcairo-gobject2	CVE-2020-35492	高危	1.14.8-1	1.14.8-1+deb9u1	cairo: libreoffice slideshow aborts with stack smashing in cairo's composite_boxes 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35492 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-03-18 19:15 修改: 2023-05-03 12:15
libnss3	CVE-2019-11719	高危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Out-of-bounds read when importing curve25519 private key 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15
libnss3	CVE-2019-11729	高危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Empty or malformed p256-ECDH public keys may trigger a segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11729 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15
libnss3	CVE-2019-11745	高危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Out-of-bounds write when passing an output buffer smaller than the block size to NSC_EncryptUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11745 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-08 20:15 修改: 2021-02-19 17:22
libnss3	CVE-2019-17007	高危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Handling of Netscape Certificate Sequences in CERT_DecodeCertPackage() may crash with a NULL deref leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17007 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-22 21:15 修改: 2021-02-19 16:58
libnss3	CVE-2020-25648	高危	2:3.26.2-1.1+deb9u1		nss: TLS 1.3 CCS flood remote DoS Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25648 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-20 22:15 修改: 2023-11-07 03:20
libp11-kit0	CVE-2020-29361	高危	0.23.3-2	0.23.3-2+deb9u1	p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29361 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-16 14:15 修改: 2023-11-07 03:21
libcairo2	CVE-2020-35492	高危	1.14.8-1	1.14.8-1+deb9u1	cairo: libreoffice slideshow aborts with stack smashing in cairo's composite_boxes 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35492 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-03-18 19:15 修改: 2023-05-03 12:15
libcomerr2	CVE-2022-1304	高危	1.43.4-2+deb9u1		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libproxy1v5	CVE-2020-25219	高危	0.4.14-2	0.4.14-2+deb9u1	libproxy: uncontrolled recursion via an infinite stream response leading to stack exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25219 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-09 21:15 修改: 2023-11-07 03:20
librsvg2-2	CVE-2017-11464	高危	2.40.16-1+b1	2.40.21-0+deb9u1	librsvg: SIGFPE is raised in box_blur_line function of rsvg-filter.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11464 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-07-19 21:29 修改: 2020-07-28 22:15
librsvg2-common	CVE-2017-11464	高危	2.40.16-1+b1	2.40.21-0+deb9u1	librsvg: SIGFPE is raised in box_blur_line function of rsvg-filter.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11464 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-07-19 21:29 修改: 2020-07-28 22:15
libsasl2-2	CVE-2022-24407	高危	2.1.27~101-g0780600+dfsg-3+deb9u1	2.1.27~101-g0780600+dfsg-3+deb9u2	cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
libsasl2-modules-db	CVE-2022-24407	高危	2.1.27~101-g0780600+dfsg-3+deb9u1	2.1.27~101-g0780600+dfsg-3+deb9u2	cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
libsmartcols1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libcups2	CVE-2020-3898	高危	2.2.1-8+deb9u4	2.2.1-8+deb9u6	cups: heap based buffer overflow in libcups's ppdFindOption() in ppd-mark.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3898 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-22 18:15 修改: 2021-07-21 11:39
libsndfile1	CVE-2017-14245	高危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: Out-of-bounds read in the function d2alaw_array() 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14245 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-21 13:29 修改: 2020-10-29 19:15
libsndfile1	CVE-2017-14246	高危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: Out-of-bounds read in the function d2ulaw_array() 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14246 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-21 13:29 修改: 2020-10-29 19:15
libsndfile1	CVE-2017-6892	高危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: Information disclosure via aiff_read_chanmap() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6892 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-06-12 16:29 修改: 2020-10-29 19:15
libsndfile1	CVE-2018-19662	高危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: buffer over-read in the function i2alaw_array in alaw.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19662 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-11-29 08:29 修改: 2020-10-29 19:15
libsndfile1	CVE-2021-3246	高危	1.0.27-3	1.0.27-3+deb9u2	libsndfile: Heap buffer overflow via crafted WAV file allows arbitrary code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3246 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-20 15:15 修改: 2023-11-07 03:37
libsndfile1	CVE-2021-4156	高危	1.0.27-3	1.0.27-3+deb9u3	libsndfile: heap out-of-bounds read in src/flac.c in flac_buffer_copy 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4156 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-03-23 20:15 修改: 2023-09-29 13:15
curl	CVE-2020-8231	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u12	curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libsqlite3-0	CVE-2018-20346	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20346 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-21 21:29 修改: 2023-11-07 02:56
libsqlite3-0	CVE-2018-20506	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20506 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-04-03 18:29 修改: 2021-07-31 08:15
libsqlite3-0	CVE-2018-8740	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: NULL pointer dereference with databases with schema corrupted with CREATE TABLE AS allows for denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-8740 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-17 00:29 修改: 2023-11-07 03:01
libsqlite3-0	CVE-2019-20218	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u3	sqlite: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20218 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-02 14:16 修改: 2022-10-07 17:56
libsqlite3-0	CVE-2019-5827	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: out-of-bounds access due to the use of 32-bit memory allocator interfaces 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5827 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-06-27 17:15 修改: 2023-11-07 03:12
libsqlite3-0	CVE-2019-9936	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9936 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
libsqlite3-0	CVE-2019-9937	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: null-pointer dereference in function fts5ChunkIterate in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9937 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
libsqlite3-0	CVE-2020-11655	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: malformed window-function query leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11655 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-09 03:15 修改: 2022-04-08 10:34
libsqlite3-0	CVE-2020-13630	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Use-after-free in fts3EvalNextRow in ext/fts3/fts3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13630 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libsqlite3-0	CVE-2020-13871	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: use-after-free in resetAccumulator in select.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13871 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-06-06 16:15 修改: 2023-11-07 03:16
libss2	CVE-2022-1304	高危	1.43.4-2+deb9u1		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libssh2-1	CVE-2019-13115	高危	1.7.0-1+deb9u1	1.7.0-1+deb9u2	libssh2: integer overflow in kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13115 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-07-16 18:15 修改: 2023-11-07 03:03
libssh2-1	CVE-2019-17498	高危	1.7.0-1+deb9u1	1.7.0-1+deb9u2	libssh2: integer overflow in SSH_MSG_DISCONNECT logic in packet.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17498 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-10-21 22:15 修改: 2023-11-07 03:06
libssl1.0.2	CVE-2021-23840	高危	1.0.2u-1~deb9u1	1.0.2u-1~deb9u4	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2021-3712	高危	1.0.2u-1~deb9u1	1.0.2u-1~deb9u6	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2022-0778	高危	1.0.2u-1~deb9u1	1.0.2u-1~deb9u7	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
curl	CVE-2020-8285	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libssl1.1	CVE-2021-23840	高危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u3	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-3712	高危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u4	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-0778	高危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u5	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
libstdc++6	CVE-2018-12886	高危	6.3.0-18+deb9u1		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libsystemd0	CVE-2019-3843	高危	232-25+deb9u12		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2019-3844	高危	232-25+deb9u12		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2020-1712	高危	232-25+deb9u12	232-25+deb9u14	systemd: use-after-free when asynchronous polkit queries are performed 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1712 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-03-31 17:15 修改: 2023-11-07 03:19
libtiff5	CVE-2018-12900	高危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: Heap-based buffer overflow in the cpSeparateBufToContigBuf function resulting in a denial of service or possibly code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12900 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-06-26 22:29 修改: 2021-03-05 19:15
libtiff5	CVE-2018-17100	高危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: Integer overflow in multiply_ms in tools/ppm2tiff.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17100 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-09-16 21:29 修改: 2019-03-21 16:00
libtiff5	CVE-2019-17546	高危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: integer overflow leading to heap-based buffer overflow in tif_getimage.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17546 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
libtiff5	CVE-2020-19131	高危	4.0.8-2+deb9u4	4.0.8-2+deb9u7	libtiff: a buffer overflow via the "invertImage()" may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19131 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-07 15:15 修改: 2021-12-01 14:18
libtiff5	CVE-2020-35523	高危	4.0.8-2+deb9u4	4.0.8-2+deb9u6	libtiff: Integer overflow in tif_getimage.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35523 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtiff5	CVE-2020-35524	高危	4.0.8-2+deb9u4	4.0.8-2+deb9u6	libtiff: Heap-based buffer overflow in TIFF2PDF tool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35524 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtinfo5	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libudev1	CVE-2019-3843	高危	232-25+deb9u12		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2019-3844	高危	232-25+deb9u12		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2020-1712	高危	232-25+deb9u12	232-25+deb9u14	systemd: use-after-free when asynchronous polkit queries are performed 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1712 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-03-31 17:15 修改: 2023-11-07 03:19
libuuid1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libvorbis0a	CVE-2017-14160	高危	1.3.5-4+deb9u2	1.3.5-4+deb9u3	libvorbis: Out-of-bounds read in the bark_noise_hybridmp function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14160 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-21 14:29 修改: 2021-11-30 22:13
libvorbis0a	CVE-2018-10392	高危	1.3.5-4+deb9u2	1.3.5-4+deb9u3	libvorbis: heap buffer overflow in mapping0_forward function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10392 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-26 05:29 修改: 2021-11-30 22:13
libvorbis0a	CVE-2018-10393	高危	1.3.5-4+deb9u2	1.3.5-4+deb9u3	libvorbis: stack buffer overflow in bark_noise_hybridmp function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10393 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-26 05:29 修改: 2021-11-30 21:59
libvorbisenc2	CVE-2017-14160	高危	1.3.5-4+deb9u2	1.3.5-4+deb9u3	libvorbis: Out-of-bounds read in the bark_noise_hybridmp function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14160 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-21 14:29 修改: 2021-11-30 22:13
libvorbisenc2	CVE-2018-10392	高危	1.3.5-4+deb9u2	1.3.5-4+deb9u3	libvorbis: heap buffer overflow in mapping0_forward function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10392 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-26 05:29 修改: 2021-11-30 22:13
libvorbisenc2	CVE-2018-10393	高危	1.3.5-4+deb9u2	1.3.5-4+deb9u3	libvorbis: stack buffer overflow in bark_noise_hybridmp function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10393 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-26 05:29 修改: 2021-11-30 21:59
libcurl3	CVE-2019-5436	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: TFTP receive heap buffer overflow in tftp_receive_packet() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11
libx11-6	CVE-2020-14363	高危	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u3	libX11: integer overflow leads to double free in locale handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17
libcurl3	CVE-2020-8177	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u11	curl: Incorrect argument check can allow remote servers to overwrite local files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libx11-data	CVE-2020-14363	高危	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u3	libX11: integer overflow leads to double free in locale handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17
libcurl3	CVE-2020-8231	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u12	curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libx11-xcb1	CVE-2020-14363	高危	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u3	libX11: integer overflow leads to double free in locale handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17
libcurl3	CVE-2020-8285	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libxml2	CVE-2017-16932	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u6	libxml2: Infinite recursion in parameter entities 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16932 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-11-23 21:29 修改: 2023-11-07 02:40
libxml2	CVE-2017-5130	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u6	chromium-browser: heap overflow in libxml2 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5130 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-02-07 23:29 修改: 2022-04-08 23:15
libxml2	CVE-2018-14404	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: NULL pointer dereference in xmlXPathCompOpEval() function in xpath.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14404 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-07-19 13:29 修改: 2020-09-10 01:15
libxml2	CVE-2019-19956	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19956 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07
libxml2	CVE-2019-20388	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20388 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-21 23:15 修改: 2023-11-09 14:44
libxml2	CVE-2020-7595	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7595 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-21 23:15 修改: 2023-11-07 03:26
libxml2	CVE-2021-3516	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u4	libxml2: Use-after-free in xmlEncodeEntitiesInternal() in entities.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3516 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-01 14:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3517	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u4	libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3518	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u4	libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38
libxml2	CVE-2022-23308	高危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u6	libxml2: Use-after-free of ID and IDREF attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23308 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-26 05:15 修改: 2023-11-07 03:44
libcurl3	CVE-2020-8286	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Inferior OCSP verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
login	CVE-2017-20002	高危	1:4.4-4.1	1:4.4-4.1+deb9u1	The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20002 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-03-17 06:15 修改: 2021-06-07 14:58
mount	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
ncurses-base	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-bin	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
openjdk-8-jdk	CVE-2020-14583	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14593	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-2604	高危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jdk	CVE-2020-2803	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2805	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-14583	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14593	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-2604	高危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jdk-headless	CVE-2020-2803	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2805	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-14583	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14593	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-2604	高危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jre	CVE-2020-2803	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2805	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-14583	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14593	高危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-2604	高危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jre-headless	CVE-2020-2803	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2805	高危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
libcurl3	CVE-2021-22946	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
openssl	CVE-2021-23840	高危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u3	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl	CVE-2021-3712	高危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u4	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
openssl	CVE-2022-0778	高危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u5	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
curl	CVE-2020-8286	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Inferior OCSP verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
passwd	CVE-2017-20002	高危	1:4.4-4.1	1:4.4-4.1+deb9u1	The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20002 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-03-17 06:15 修改: 2021-06-07 14:58
perl-base	CVE-2020-10543	高危	5.24.1-3+deb9u5	5.24.1-3+deb9u7	perl: heap-based buffer overflow in regular expression compiler leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10543 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base	CVE-2020-10878	高危	5.24.1-3+deb9u5	5.24.1-3+deb9u7	perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10878 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base	CVE-2020-12723	高危	5.24.1-3+deb9u5	5.24.1-3+deb9u7	perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12723 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-06-05 15:15 修改: 2023-11-07 03:15
perl-base	CVE-2020-16156	高危	5.24.1-3+deb9u5		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
util-linux	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
zlib1g	CVE-2018-25032	高危	1:1.2.8.dfsg-5	1:1.2.8.dfsg-5+deb9u1	zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
apt	CVE-2020-27350	中危	1.4.9	1.4.11	APT had several integer overflows and underflows while parsing .deb pa ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libglib2.0-0	CVE-2021-28153	中危	2.50.3-2+deb9u1	2.50.3-2+deb9u3	glib: g_file_replace() with G_FILE_CREATE_REPLACE_DESTINATION creates empty target for dangling symlink 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28153 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-03-11 22:15 修改: 2023-11-07 03:32
libelf1	CVE-2018-16062	中危	0.168-1	0.168-1+deb9u1	elfutils: Heap-based buffer over-read in libdw/dwarf_getaranges.c:dwarf_getaranges() via crafted file 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16062 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-08-29 03:29 修改: 2023-11-07 02:53
libelf1	CVE-2018-18310	中危	0.168-1	0.168-1+deb9u1	elfutils: invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18310 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-10-15 02:29 修改: 2021-11-30 21:59
libssl1.0.2	CVE-2020-1971	中危	1.0.2u-1~deb9u1	1.0.2u-1~deb9u3	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2021-23841	中危	1.0.2u-1~deb9u1	1.0.2u-1~deb9u4	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libgnutls30	CVE-2018-16868	中危	3.5.8-5+deb9u4		gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16868 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-03 14:29 修改: 2022-11-30 21:20
libgnutls30	CVE-2021-4209	中危	3.5.8-5+deb9u4		GnuTLS: Null pointer dereference in MD_UPDATE 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
libelf1	CVE-2018-18520	中危	0.168-1	0.168-1+deb9u1	elfutils: eu-size cannot handle recursive ar files 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18520 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-10-19 17:29 修改: 2021-11-30 21:59
libelf1	CVE-2018-18521	中危	0.168-1	0.168-1+deb9u1	elfutils: Divide-by-zero in arlib_add_symbols function in arlib.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18521 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-10-19 17:29 修改: 2021-11-30 21:59
libssl1.1	CVE-2019-1551	中危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u5	openssl: Integer overflow in RSAZ modular exponentiation on x86_64 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
libssl1.1	CVE-2020-1971	中危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u2	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-23841	中危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u3	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-4160	中危	1.1.0l-1~deb9u1		openssl: Carry propagation bug in the MIPS32 and MIPS64 squaring procedure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4160 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-28 22:15 修改: 2024-06-21 19:15
libgssapi-krb5-2	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libgssapi-krb5-2	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libgssapi-krb5-2	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libgssapi-krb5-2	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
libsystemd0	CVE-2021-33910	中危	232-25+deb9u12	232-25+deb9u13	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libsystemd0	CVE-2021-3997	中危	232-25+deb9u12		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libharfbuzz0b	CVE-2022-33068	中危	1.4.2-1		harfbuzz: integer overflow in the component hb-ot-shape-fallback.cc 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33068 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:48
libelf1	CVE-2019-7150	中危	0.168-1	0.168-1+deb9u1	elfutils: segmentation fault in elf64_xlatetom in libelf/elf32_xlatetom.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7150 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-01-29 00:29 修改: 2021-11-30 19:52
libelf1	CVE-2019-7665	中危	0.168-1	0.168-1+deb9u1	elfutils: heap-based buffer over-read in function elf32_xlatetom in elf32_xlatetom.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7665 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-02-09 16:29 修改: 2021-11-30 19:53
libhogweed4	CVE-2018-16869	中危	3.3-1+b2		nettle: Leaky data conversion exposing a manager oracle 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
e2fslibs	CVE-2019-5188	中危	1.43.4-2+deb9u1	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libicu57	CVE-2020-21913	中危	57.1-6+deb9u3	57.1-6+deb9u5	icu: Use after free in pkg_createWithAssemblyCode function in tools/pkgdata/pkgdata.cpp 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21913 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-20 14:15 修改: 2021-11-29 17:20
libtiff5	CVE-2018-17000	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: NULL pointer dereference in function _TIFFmemcmp at tif_unix.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17000 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-09-13 16:29 修改: 2019-04-05 21:29
libtiff5	CVE-2018-19210	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: NULL pointer dereference in TIFFWriteDirectorySec function in tif_dirwrite.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19210 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-11-12 19:29 修改: 2023-11-07 02:55
libtiff5	CVE-2019-14973	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: integer overflow in _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14973 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-08-14 06:15 修改: 2023-11-07 03:05
libtiff5	CVE-2019-7663	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u5	libtiff: integer overflow in libtiff/tif_dirwrite.c resulting in an invalid pointer dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7663 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-02-09 16:29 修改: 2020-08-24 17:37
libtiff5	CVE-2020-18768	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u7	libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-18768 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2023-08-22 19:15 修改: 2023-08-25 20:45
libtiff5	CVE-2020-19144	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u7	libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19144 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-09 15:15 修改: 2021-12-02 20:46
libtiff5	CVE-2022-0561	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u8	libtiff: Denial of Service via crafted TIFF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0561 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-11 18:15 修改: 2023-11-07 03:41
libtiff5	CVE-2022-0562	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u8	libtiff: Null source pointer lead to Denial of Service via crafted TIFF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0562 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-11 18:15 修改: 2023-11-07 03:41
libtiff5	CVE-2022-22844	中危	4.0.8-2+deb9u4	4.0.8-2+deb9u8	libtiff: out-of-bounds read in _TIFFmemcpy() in tif_unix.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22844 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-10 14:12 修改: 2022-11-16 19:07
curl	CVE-2021-22876	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u14	curl: Leak of authentication credentials in URL via automatic Referer 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libnettle6	CVE-2018-16869	中危	3.3-1+b2		nettle: Leaky data conversion exposing a manager oracle 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
libcomerr2	CVE-2019-5188	中危	1.43.4-2+deb9u1	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libapt-pkg5.0	CVE-2020-27350	中危	1.4.9	1.4.11	APT had several integer overflows and underflows while parsing .deb pa ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libudev1	CVE-2021-33910	中危	232-25+deb9u12	232-25+deb9u13	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libudev1	CVE-2021-3997	中危	232-25+deb9u12		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libcups2	CVE-2019-2228	中危	2.2.1-8+deb9u4	2.2.1-8+deb9u5	In array_find of array.c, there is a possible out-of-bounds read due t ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2228 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-12-06 23:15 修改: 2019-12-23 01:15
libjpeg62-turbo	CVE-2018-1152	中危	1:1.5.1-2	1:1.5.1-2+deb9u1	libjpeg-turbo: Divide by zero allows for denial of service via crafted BMP image 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1152 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-06-18 14:29 修改: 2020-07-31 21:15
libjpeg62-turbo	CVE-2018-14498	中危	1:1.5.1-2	1:1.5.1-2+deb9u1	libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14498 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-03-07 23:29 修改: 2023-11-07 02:52
libcups2	CVE-2020-10001	中危	2.2.1-8+deb9u4	2.2.1-8+deb9u7	cups: access to uninitialized buffer in ipp.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10001 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-02 18:15 修改: 2021-11-30 21:49
libk5crypto3	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libk5crypto3	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libk5crypto3	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libk5crypto3	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
libnss3	CVE-2018-12404	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Cache side-channel variant of the Bleichenbacher attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12404 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-05-02 17:29 修改: 2021-02-12 07:15
libx11-6	CVE-2020-14344	中危	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u2	libX11: Heap overflow in the X input method client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17
libnss3	CVE-2018-18508	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: NULL pointer dereference in several CMS functions resulting in a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18508 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-22 21:15 修改: 2021-02-18 15:20
libnss3	CVE-2019-11727	中危	2:3.26.2-1.1+deb9u1		nss: PKCS#1 v1.5 signatures can be used for TLS 1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15
libx11-data	CVE-2020-14344	中危	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u2	libX11: Heap overflow in the X input method client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17
libnss3	CVE-2020-12399	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Timing attack on DSA signature generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12399 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-09 15:15 修改: 2022-01-04 16:38
libnss3	CVE-2020-12400	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15
libx11-xcb1	CVE-2020-14344	中危	2:1.6.4-3+deb9u1	2:1.6.4-3+deb9u2	libX11: Heap overflow in the X input method client 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17
libnss3	CVE-2020-12401	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: ECDSA timing attack mitigation bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15
libnss3	CVE-2020-12402	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Side channel vulnerabilities during RSA key generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15
libnss3	CVE-2020-12413	中危	2:3.26.2-1.1+deb9u1		nss: Information exposure when DH secret are reused across multiple TLS connections 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
libnss3	CVE-2020-6829	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u2	nss: Side channel attack on ECDSA signature generation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15
libnss3	CVE-2022-22747	中危	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u5	Mozilla: Crash when handling empty pkcs7 sequence 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22747 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-12-22 20:15 修改: 2022-12-29 23:17
libcups2	CVE-2022-26691	中危	2.2.1-8+deb9u4	2.2.1-8+deb9u8	cups: authorization bypass when using "local" authorization 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26691 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-05-26 18:15 修改: 2023-11-07 03:45
libp11-kit0	CVE-2020-29362	中危	0.23.3-2	0.23.3-2+deb9u1	p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29362 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-16 14:15 修改: 2021-01-11 16:50
libpcre3	CVE-2020-14155	中危	2:8.39-3		pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
libkrb5-3	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libkrb5-3	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5-3	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libxml2	CVE-2016-9318	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u6	libxml2: XML External Entity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9318 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2016-11-16 00:59 修改: 2022-04-08 23:15
libxml2	CVE-2017-18258	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: Unrestricted memory usage in xz_head() function in xzlib.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18258 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-08 17:29 修改: 2020-09-10 01:15
libxml2	CVE-2017-5969	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u6	libxml2: Null pointer dereference in xmlSaveDoc implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5969 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-04-11 16:59 修改: 2024-08-05 16:15
libxml2	CVE-2018-14567	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: Infinite loop caused by incorrect error detection during LZMA decompression 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14567 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-16 20:29 修改: 2020-09-10 01:15
libxml2	CVE-2020-24977	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u3	libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24977 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-04 00:15 修改: 2023-11-07 03:20
libxml2	CVE-2021-3537	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u4	libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38
libxml2	CVE-2021-3541	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u5	libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3541 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-09 17:15 修改: 2022-03-01 18:25
libxml2	CVE-2022-29824	中危	2.9.4+dfsg1-2.2+deb9u2	2.9.4+dfsg1-2.2+deb9u7	libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
libkrb5-3	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
librsvg2-2	CVE-2019-20446	中危	2.40.16-1+b1	2.40.21-0+deb9u1	librsvg: Resource exhaustion via crafted SVG file with nested patterns 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20446 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-02-02 14:15 修改: 2023-11-07 03:09
libapt-pkg5.0	CVE-2020-3810	中危	1.4.9	1.4.10	Missing input validation in the ar/tar implementations of APT before v ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3810 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-05-15 14:15 修改: 2023-11-07 03:23
librsvg2-common	CVE-2019-20446	中危	2.40.16-1+b1	2.40.21-0+deb9u1	librsvg: Resource exhaustion via crafted SVG file with nested patterns 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20446 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-02-02 14:15 修改: 2023-11-07 03:09
libkrb5support0	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libkrb5support0	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5support0	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libkrb5support0	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
e2fsprogs	CVE-2019-5188	中危	1.43.4-2+deb9u1	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libavahi-client3	CVE-2021-3468	中危	0.6.32-2	0.6.32-2+deb9u1	avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
openjdk-8-jdk	CVE-2020-14556	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14621	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14779	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14781	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk	CVE-2020-14782	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk	CVE-2020-14792	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk	CVE-2020-14797	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk	CVE-2020-14803	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jdk	CVE-2020-2593	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jdk	CVE-2020-2601	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jdk	CVE-2020-2781	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2800	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2830	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2021-2341	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jdk	CVE-2021-2369	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jdk	CVE-2021-2388	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jdk	CVE-2021-35550	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2021-35556	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2021-35559	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jdk	CVE-2021-35561	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk	CVE-2021-35564	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2021-35565	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2021-35567	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk	CVE-2021-35578	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2021-35586	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2022-21248	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jdk	CVE-2022-21282	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jdk	CVE-2022-21283	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jdk	CVE-2022-21293	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jdk	CVE-2022-21294	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jdk	CVE-2022-21296	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jdk	CVE-2022-21299	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2022-21305	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk	CVE-2022-21340	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk	CVE-2022-21341	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk	CVE-2022-21349	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jdk	CVE-2022-21360	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jdk	CVE-2022-21365	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jdk	CVE-2022-21426	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jdk	CVE-2022-21434	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2022-21443	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2022-21476	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jdk	CVE-2022-21496	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: URI parsing inconsistencies (JNDI, 8278972) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
curl	CVE-2021-22947	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
libavahi-common-data	CVE-2021-3468	中危	0.6.32-2	0.6.32-2+deb9u1	avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
glib-networking	CVE-2020-13645	中危	2.50.0-1+b1	2.50.0-1+deb9u1	glib-networking: GTlsClientConnection silently ignores unset server identity 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13645 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-28 12:15 修改: 2023-11-07 03:16
libexpat1	CVE-2022-25313	中危	2.2.0-2+deb9u3	2.2.0-2+deb9u5	expat: Stack exhaustion in doctype parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25313 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
libsndfile1	CVE-2017-14634	中危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: Divide-by-zero in the double64_init() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14634 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-21 07:29 修改: 2020-10-29 19:15
openjdk-8-jdk-headless	CVE-2020-14556	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14621	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14779	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14781	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless	CVE-2020-14782	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless	CVE-2020-14792	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless	CVE-2020-14797	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless	CVE-2020-14803	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jdk-headless	CVE-2020-2593	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jdk-headless	CVE-2020-2601	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jdk-headless	CVE-2020-2781	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2800	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2830	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2021-2341	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jdk-headless	CVE-2021-2369	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jdk-headless	CVE-2021-2388	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jdk-headless	CVE-2021-35550	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2021-35556	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2021-35559	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jdk-headless	CVE-2021-35561	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk-headless	CVE-2021-35564	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2021-35565	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2021-35567	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk-headless	CVE-2021-35578	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2021-35586	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2022-21248	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jdk-headless	CVE-2022-21282	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jdk-headless	CVE-2022-21283	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jdk-headless	CVE-2022-21293	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jdk-headless	CVE-2022-21294	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jdk-headless	CVE-2022-21296	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jdk-headless	CVE-2022-21299	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2022-21305	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk-headless	CVE-2022-21340	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk-headless	CVE-2022-21341	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk-headless	CVE-2022-21349	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jdk-headless	CVE-2022-21360	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jdk-headless	CVE-2022-21365	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jdk-headless	CVE-2022-21426	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jdk-headless	CVE-2022-21434	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2022-21443	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2022-21476	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jdk-headless	CVE-2022-21496	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: URI parsing inconsistencies (JNDI, 8278972) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
libsndfile1	CVE-2018-19661	中危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: buffer over-read in the function i2ulaw_array in ulaw.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19661 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-11-29 08:29 修改: 2020-10-29 19:15
libsndfile1	CVE-2018-19758	中危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: heap-based buffer over-read at wav.c in wav_write_header 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19758 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-11-30 03:29 修改: 2020-10-29 19:15
libsndfile1	CVE-2019-3832	中危	1.0.27-3	1.0.27-3+deb9u1	libsndfile: incomplete fix for CVE-2018-19758 still allow to read beyond buffer limits 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3832 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-03-21 16:01 修改: 2023-03-01 18:02
libavahi-common3	CVE-2021-3468	中危	0.6.32-2	0.6.32-2+deb9u1	avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
libflac8	CVE-2017-6888	中危	1.3.2-1	1.3.2-2+deb9u1	flac: Memory leak in src/libFLAC/stream_decoder.c:read_metadata_vorbiscomment_() 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6888 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-25 21:29 修改: 2023-11-07 02:49
openjdk-8-jre	CVE-2020-14556	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14621	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14779	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14781	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre	CVE-2020-14782	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre	CVE-2020-14792	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre	CVE-2020-14797	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre	CVE-2020-14803	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jre	CVE-2020-2593	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jre	CVE-2020-2601	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jre	CVE-2020-2781	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2800	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2830	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2021-2341	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jre	CVE-2021-2369	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jre	CVE-2021-2388	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jre	CVE-2021-35550	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2021-35556	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2021-35559	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jre	CVE-2021-35561	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre	CVE-2021-35564	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2021-35565	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2021-35567	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre	CVE-2021-35578	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2021-35586	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2022-21248	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jre	CVE-2022-21282	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jre	CVE-2022-21283	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jre	CVE-2022-21293	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jre	CVE-2022-21294	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jre	CVE-2022-21296	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jre	CVE-2022-21299	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2022-21305	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre	CVE-2022-21340	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre	CVE-2022-21341	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre	CVE-2022-21349	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jre	CVE-2022-21360	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jre	CVE-2022-21365	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jre	CVE-2022-21426	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jre	CVE-2022-21434	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2022-21443	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2022-21476	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jre	CVE-2022-21496	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: URI parsing inconsistencies (JNDI, 8278972) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
libflac8	CVE-2020-0499	中危	1.3.2-1	1.3.2-2+deb9u1	flac: out-of-bounds read can lead to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-0499 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-15 16:15 修改: 2023-11-07 03:13
libflac8	CVE-2021-0561	中危	1.3.2-1	1.3.2-2+deb9u2	flac: out of bound write in append_to_verify_fifo_interleaved_ of stream_encoder.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-0561 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-22 11:15 修改: 2023-11-07 03:27
glib-networking-common	CVE-2020-13645	中危	2.50.0-1	2.50.0-1+deb9u1	glib-networking: GTlsClientConnection silently ignores unset server identity 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13645 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-28 12:15 修改: 2023-11-07 03:16
libcurl3	CVE-2021-22876	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u14	curl: Leak of authentication credentials in URL via automatic Referer 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libcurl3	CVE-2021-22947	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
openjdk-8-jre-headless	CVE-2020-14556	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14621	中危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14779	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14781	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless	CVE-2020-14782	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless	CVE-2020-14792	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless	CVE-2020-14797	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless	CVE-2020-14803	中危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jre-headless	CVE-2020-2593	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jre-headless	CVE-2020-2601	中危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jre-headless	CVE-2020-2781	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2800	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2830	中危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2021-2341	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jre-headless	CVE-2021-2369	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jre-headless	CVE-2021-2388	中危	8u232-b09-1~deb9u1	8u302-b08-1~deb9u1	OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jre-headless	CVE-2021-35550	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2021-35556	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2021-35559	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jre-headless	CVE-2021-35561	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre-headless	CVE-2021-35564	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2021-35565	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2021-35567	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre-headless	CVE-2021-35578	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2021-35586	中危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2022-21248	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jre-headless	CVE-2022-21282	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jre-headless	CVE-2022-21283	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jre-headless	CVE-2022-21293	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jre-headless	CVE-2022-21294	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jre-headless	CVE-2022-21296	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jre-headless	CVE-2022-21299	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2022-21305	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre-headless	CVE-2022-21340	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre-headless	CVE-2022-21341	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre-headless	CVE-2022-21349	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jre-headless	CVE-2022-21360	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jre-headless	CVE-2022-21365	中危	8u232-b09-1~deb9u1	8u322-b06-1~deb9u1	OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jre-headless	CVE-2022-21426	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jre-headless	CVE-2022-21434	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2022-21443	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2022-21476	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jre-headless	CVE-2022-21496	中危	8u232-b09-1~deb9u1	8u332-ga-1~deb9u1	OpenJDK: URI parsing inconsistencies (JNDI, 8278972) 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
libfreetype6	CVE-2020-15999	中危	2.6.3-3.2	2.6.3-3.2+deb9u2	freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15999 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-11-03 03:15 修改: 2024-07-25 17:25
glib-networking-services	CVE-2020-13645	中危	2.50.0-1+b1	2.50.0-1+deb9u1	glib-networking: GTlsClientConnection silently ignores unset server identity 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13645 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-28 12:15 修改: 2023-11-07 03:16
apt	CVE-2020-3810	中危	1.4.9	1.4.10	Missing input validation in the ar/tar implementations of APT before v ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3810 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-05-15 14:15 修改: 2023-11-07 03:23
libgcrypt20	CVE-2019-13627	中危	1.7.6-2+deb9u3		libgcrypt: ECDSA timing attack allowing private key leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13627 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-09-25 15:15 修改: 2021-07-21 11:39
openssl	CVE-2019-1551	中危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u5	openssl: Integer overflow in RSAZ modular exponentiation on x86_64 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
openssl	CVE-2020-1971	中危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u2	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
openssl	CVE-2021-23841	中危	1.1.0l-1~deb9u1	1.1.0l-1~deb9u3	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl	CVE-2021-4160	中危	1.1.0l-1~deb9u1		openssl: Carry propagation bug in the MIPS32 and MIPS64 squaring procedure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4160 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2022-01-28 22:15 修改: 2024-06-21 19:15
libsqlite3-0	CVE-2019-16168	中危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16168 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-09-09 17:15 修改: 2023-11-07 03:05
libsqlite3-0	CVE-2019-19645	中危	3.16.2-5+deb9u1		sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14
libsqlite3-0	CVE-2020-13434	中危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: integer overflow in sqlite3_str_vappendf function in printf.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13434 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-24 22:15 修改: 2023-11-07 03:16
libsqlite3-0	CVE-2020-13631	中危	3.16.2-5+deb9u1		sqlite: Virtual table can be renamed into the name of one of its shadow tables 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libsqlite3-0	CVE-2020-13632	中危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: NULL pointer dereference in ext/fts3/fts3_snippet.c via a crafted matchinfo() query 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13632 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libgcrypt20	CVE-2021-40528	中危	1.7.6-2+deb9u3	1.7.6-2+deb9u4	libgcrypt: ElGamal implementation allows plaintext recovery 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
tar	CVE-2018-20482	中危	1.29b-1.1	1.29b-1.1+deb9u1	tar: Infinite read loop in sparse_dump_region function in sparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20482 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-12-26 18:29 修改: 2021-11-30 19:52
libss2	CVE-2019-5188	中危	1.43.4-2+deb9u1	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libdbus-1-3	CVE-2020-12049	中危	1.10.28-0+deb9u1	1.10.32-0+deb9u1	dbus: denial of service via file descriptor leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12049 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-06-08 17:15 修改: 2023-06-12 07:15
openjdk-8-jdk-headless	CVE-2020-2590	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jdk-headless	CVE-2020-2654	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jdk-headless	CVE-2020-2659	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jdk-headless	CVE-2020-2754	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2755	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2756	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2757	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2020-2773	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless	CVE-2021-2163	低危	8u232-b09-1~deb9u1	8u292-b10-0+deb9u1	OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jdk-headless	CVE-2021-35588	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless	CVE-2021-35603	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
libfdisk1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libsmartcols1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcairo-gobject2	CVE-2019-6462	低危	1.14.8-1		cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libcurl3	CVE-2020-8284	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: FTP PASV command response can cause curl to connect to arbitrary host 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
libcurl3	CVE-2021-22898	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
libcurl3	CVE-2021-22924	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
curl	CVE-2021-22924	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcairo2	CVE-2017-7475	低危	1.14.8-1		cairo: NULL pointer dereference with a crafted font file 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
libcairo2	CVE-2017-9814	低危	1.14.8-1		cairo: Out-of-bounds read due to mishandling of unexpected malloc(0) call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9814 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-07-17 13:18 修改: 2023-11-07 02:50
libtinfo5	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
libtinfo5	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libtinfo5	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libgbm1	CVE-2019-5068	低危	13.0.6-1+b2		mesa: security bypass in 3D library graphics 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libk5crypto3	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
liblz4-1	CVE-2019-17543	低危	0.0~r131-2+b1		lz4: heap-based buffer overflow in LZ4_write32 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
libk5crypto3	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libegl1-mesa	CVE-2019-5068	低危	13.0.6-1+b2		mesa: security bypass in 3D library graphics 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libudev1	CVE-2018-16888	低危	232-25+deb9u12		systemd: kills privileged process if unprivileged PIDFile was tampered 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16888 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-01-14 22:29 修改: 2023-11-07 02:53
libudev1	CVE-2018-6954	低危	232-25+deb9u12		systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00
libmount1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libuuid1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcairo2	CVE-2018-18064	低危	1.14.8-1		cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
libncursesw5	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
libncursesw5	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libncursesw5	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libcairo2	CVE-2019-6461	低危	1.14.8-1		cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libcairo2	CVE-2019-6462	低危	1.14.8-1		cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libwayland-egl1-mesa	CVE-2019-5068	低危	13.0.6-1+b2		mesa: security bypass in 3D library graphics 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libgdk-pixbuf2.0-0	CVE-2017-2870	低危	2.36.5-2+deb9u2		gdk-pixbuf2: Integer overflow in tiff_image_parse function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2870 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-05 18:29 修改: 2022-06-07 17:39
libkrb5-3	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libkrb5-3	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libgdk-pixbuf2.0-0	CVE-2017-6311	低危	2.36.5-2+deb9u2		gdk-pixbuf: NULL pointer dereference in gdk-pixbuf-thumbnailer 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6311 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-03-10 02:59 修改: 2023-11-07 02:49
libgdk-pixbuf2.0-common	CVE-2017-2870	低危	2.36.5-2+deb9u2		gdk-pixbuf2: Integer overflow in tiff_image_parse function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2870 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-05 18:29 修改: 2022-06-07 17:39
libgdk-pixbuf2.0-common	CVE-2017-6311	低危	2.36.5-2+deb9u2		gdk-pixbuf: NULL pointer dereference in gdk-pixbuf-thumbnailer 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6311 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-03-10 02:59 修改: 2023-11-07 02:49
libgl1-mesa-glx	CVE-2019-5068	低危	13.0.6-1+b2		mesa: security bypass in 3D library graphics 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libglapi-mesa	CVE-2019-5068	低危	13.0.6-1+b2		mesa: security bypass in 3D library graphics 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libkrb5support0	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libxkbcommon0	CVE-2018-15853	低危	0.7.1-2~deb9u1		libxkbcommon: Endless recursion in xkbcomp/expr.c resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15853 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15854	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15854 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15855	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference when handling xkb_geometry 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15855 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
openjdk-8-jdk	CVE-2020-14577	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14578	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14579	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14581	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Information disclosure in color management (2D, 8238002) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk	CVE-2020-14796	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk	CVE-2020-14798	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk	CVE-2020-2583	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jdk	CVE-2020-2590	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jre	CVE-2020-14577	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14578	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14579	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14581	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Information disclosure in color management (2D, 8238002) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre	CVE-2020-14796	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre	CVE-2020-14798	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre	CVE-2020-2583	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jre	CVE-2020-2590	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jre	CVE-2020-2654	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jre	CVE-2020-2659	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jre	CVE-2020-2754	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2755	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2756	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2757	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2020-2773	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre	CVE-2021-2163	低危	8u232-b09-1~deb9u1	8u292-b10-0+deb9u1	OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jre	CVE-2021-35588	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre	CVE-2021-35603	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2020-2654	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jdk	CVE-2020-2659	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jdk	CVE-2020-2754	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2755	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2756	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2757	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2020-2773	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk	CVE-2021-2163	低危	8u232-b09-1~deb9u1	8u292-b10-0+deb9u1	OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jdk	CVE-2021-35588	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk	CVE-2021-35603	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
libxkbcommon0	CVE-2018-15856	低危	0.7.1-2~deb9u1		libxkbcommon: Infinite loop when reaching EOL unexpectedly resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15856 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-10-03 00:03
libxkbcommon0	CVE-2018-15857	低危	0.7.1-2~deb9u1		libxkbcommon: Invalid free in ExprAppendMultiKeysymList resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15857 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15858	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference when handling invalid aliases in CopyKeyAliasesToKeymap resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15858 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-03-19 17:34
libxkbcommon0	CVE-2018-15859	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference when parsing invalid atoms in ExprResolveLhs resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15859 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15861	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference in ExprResolveLhs resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15861 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15862	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference in LookupModMask resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15862 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15863	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference in ResolveStateAndPredicate resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15863 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0	CVE-2018-15864	低危	0.7.1-2~deb9u1		libxkbcommon: NULL pointer dereference in resolve_keysym resulting in a crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15864 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libkrb5support0	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
gnupg	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
gnupg	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libcroco3	CVE-2017-8834	低危	0.6.11-3		libcroco: Memory allocation failure in the cr_tknzr_parse_comment function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8834 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-06-12 06:29 修改: 2020-08-19 19:17
libcroco3	CVE-2017-8871	低危	0.6.11-3		libcroco: Infinite loop in the cr_parser_parse_selector_core function 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8871 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-06-12 06:29 修改: 2020-08-19 19:12
libelf1	CVE-2018-16403	低危	0.168-1		elfutils: Heap-based buffer over-read in libdw/dwarf_getabbrev.c and libwd/dwarf_hasattr.c causes crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16403 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-09-03 19:29 修改: 2023-11-07 02:53
libelf1	CVE-2019-7149	低危	0.168-1		elfutils: heap-based buffer over-read in read_srclines in dwarf_getsrclines.c in libdw 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7149 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-01-29 00:29 修改: 2019-06-10 17:29
libcroco3	CVE-2020-12825	低危	0.6.11-3		libcroco: Stack overflow in function cr_parser_parse_any_core in cr-parser.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12825 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-05-12 18:15 修改: 2022-10-27 01:04
libssl1.0.2	CVE-2020-1968	低危	1.0.2u-1~deb9u1	1.0.2u-1~deb9u2	openssl: Information exposure when DH secret are reused across multiple TLS connections 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1968 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-09-09 14:15 修改: 2022-11-21 19:48
bsdutils	CVE-2021-37600	低危	1:2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
gnupg-agent	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
gnupg-agent	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
coreutils	CVE-2016-2781	低危	8.26-3		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libnss3	CVE-2018-12384	低危	2:3.26.2-1.1+deb9u1		nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12384 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-04-29 15:29 修改: 2020-08-24 17:37
libcups2	CVE-2019-8842	低危	2.2.1-8+deb9u4	2.2.1-8+deb9u6	A buffer overflow was addressed with improved bounds checking. This is ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8842 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-27 20:15 修改: 2023-11-07 03:13
gpgv	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
libgssapi-krb5-2	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libgssapi-krb5-2	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libblkid1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
gpgv	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
curl	CVE-2020-8284	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: FTP PASV command response can cause curl to connect to arbitrary host 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
login	CVE-2018-7169	低危	1:4.4-4.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
curl	CVE-2021-22898	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
mount	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcairo-gobject2	CVE-2017-7475	低危	1.14.8-1		cairo: NULL pointer dereference with a crafted font file 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
ncurses-base	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-base	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-base	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libsystemd0	CVE-2018-16888	低危	232-25+deb9u12		systemd: kills privileged process if unprivileged PIDFile was tampered 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16888 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-01-14 22:29 修改: 2023-11-07 02:53
ncurses-bin	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
openjdk-8-jre-headless	CVE-2020-14577	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14578	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14579	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14581	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Information disclosure in color management (2D, 8238002) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless	CVE-2020-14796	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless	CVE-2020-14798	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless	CVE-2020-2583	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jre-headless	CVE-2020-2590	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jre-headless	CVE-2020-2654	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jre-headless	CVE-2020-2659	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jre-headless	CVE-2020-2754	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2755	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2756	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2757	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2020-2773	低危	8u232-b09-1~deb9u1	8u252-b09-1~deb9u1	OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless	CVE-2021-2163	低危	8u232-b09-1~deb9u1	8u292-b10-0+deb9u1	OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jre-headless	CVE-2021-35588	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless	CVE-2021-35603	低危	8u232-b09-1~deb9u1	8u312-b07-1~deb9u1	OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618) 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
ncurses-bin	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-bin	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libsystemd0	CVE-2018-6954	低危	232-25+deb9u12		systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00
libcairo-gobject2	CVE-2017-9814	低危	1.14.8-1		cairo: Out-of-bounds read due to mishandling of unexpected malloc(0) call 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9814 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2017-07-17 13:18 修改: 2023-11-07 02:50
libcairo-gobject2	CVE-2018-18064	低危	1.14.8-1		cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
libcairo-gobject2	CVE-2019-6461	低危	1.14.8-1		cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libsepol1	CVE-2021-36084	低危	2.6-2		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36085	低危	2.6-2		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36086	低危	2.6-2		libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36087	低危	2.6-2		libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
passwd	CVE-2018-7169	低危	1:4.4-4.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
openjdk-8-jdk-headless	CVE-2020-14577	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14578	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14579	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14581	低危	8u232-b09-1~deb9u1	8u265-b01-0+deb9u1	OpenJDK: Information disclosure in color management (2D, 8238002) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless	CVE-2020-14796	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless	CVE-2020-14798	低危	8u232-b09-1~deb9u1	8u272-b10-0+deb9u1	OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
util-linux	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
openjdk-8-jdk-headless	CVE-2020-2583	低危	8u232-b09-1~deb9u1	8u242-b08-1~deb9u1	OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jdk-headless	DLA-2412-2	未知	8u232-b09-1~deb9u1	8u275-b01-1~deb9u1	openjdk-8 - regression update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssl1.0.2	DLA-2761-1	未知	1.0.2u-1~deb9u1	1.0.2u-1~deb9u5	openssl1.0 - security update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libnss3	DLA-2836-2	未知	2:3.26.2-1.1+deb9u1	2:3.26.2-1.1+deb9u4	nss - regression update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
debian-archive-keyring	DLA-2948-1	未知	2017.5+deb9u1	2017.5+deb9u2	debian-archive-keyring - security update 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openjdk-8-jre	DLA-2412-2	未知	8u232-b09-1~deb9u1	8u275-b01-1~deb9u1	openjdk-8 - regression update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30	DLA-2759-1	未知	3.5.8-5+deb9u4	3.5.8-5+deb9u6	gnutls28 - security update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2424-1	未知	2019c-0+deb9u1	2020d-0+deb9u1	tzdata - new upstream version 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2509-1	未知	2019c-0+deb9u1	2020e-0+deb9u1	tzdata - new upstream version 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2542-1	未知	2019c-0+deb9u1	2021a-0+deb9u1	tzdata - new upstream version 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2797-1	未知	2019c-0+deb9u1	2021a-0+deb9u2	tzdata - new upstream version 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2963-1	未知	2019c-0+deb9u1	2021a-0+deb9u3	tzdata - new timezone database 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3051-1	未知	2019c-0+deb9u1	2021a-0+deb9u4	tzdata - new timezone database 漏洞详情: 镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ca-certificates	DLA-2593-1	未知	20161130+nmu1+deb9u1	20200601~deb9u2	ca-certificates - whitelist Symantec CA 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openjdk-8-jre-headless	DLA-2412-2	未知	8u232-b09-1~deb9u1	8u275-b01-1~deb9u1	openjdk-8 - regression update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openjdk-8-jdk	DLA-2412-2	未知	8u232-b09-1~deb9u1	8u275-b01-1~deb9u1	openjdk-8 - regression update 漏洞详情: 镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

Java (jar)

低危漏洞:19

中危漏洞:105

高危漏洞:339

严重漏洞:143

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
com.fasterxml.jackson.core:jackson-databind	CVE-2017-15095	严重	2.4.0	2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind	CVE-2017-15095	严重	2.4.0	2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind	CVE-2017-15095	严重	2.4.0	2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind	CVE-2017-17485	严重	2.4.0	2.9.4, 2.8.11, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind	CVE-2017-17485	严重	2.4.0	2.9.4, 2.8.11, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind	CVE-2017-17485	严重	2.4.0	2.9.4, 2.8.11, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind	CVE-2017-7525	严重	2.4.0	2.6.7.1, 2.7.9.1, 2.8.9	jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7525 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:50
com.fasterxml.jackson.core:jackson-databind	CVE-2017-7525	严重	2.4.0	2.6.7.1, 2.7.9.1, 2.8.9	jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7525 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:50
com.fasterxml.jackson.core:jackson-databind	CVE-2017-7525	严重	2.4.0	2.6.7.1, 2.7.9.1, 2.8.9	jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7525 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:50
com.fasterxml.jackson.core:jackson-databind	CVE-2018-11307	严重	2.4.0	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind	CVE-2018-11307	严重	2.4.0	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind	CVE-2018-11307	严重	2.4.0	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14718	严重	2.4.0	2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: arbitrary code execution in slf4j-ext class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14718	严重	2.4.0	2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: arbitrary code execution in slf4j-ext class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14718	严重	2.4.0	2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: arbitrary code execution in slf4j-ext class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14719	严重	2.4.0	2.9.7, 2.8.11.3, 2.7.9.5	jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14719	严重	2.4.0	2.9.7, 2.8.11.3, 2.7.9.5	jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14719	严重	2.4.0	2.9.7, 2.8.11.3, 2.7.9.5	jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-19362	严重	2.4.0	2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: improper polymorphic deserialization in jboss-common-core class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind	CVE-2018-19362	严重	2.4.0	2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: improper polymorphic deserialization in jboss-common-core class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind	CVE-2018-19362	严重	2.4.0	2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: improper polymorphic deserialization in jboss-common-core class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind	CVE-2018-7489	严重	2.4.0	2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5	jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind	CVE-2018-7489	严重	2.4.0	2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5	jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind	CVE-2018-7489	严重	2.4.0	2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5	jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.4.0	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.4.0	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.4.0	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.4.0	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.4.0	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.4.0	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.4.0	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.4.0	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.4.0	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.4.0	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.4.0	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.4.0	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.4.0	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.4.0	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.4.0	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.4.0	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.4.0	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.4.0	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.4.0	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.4.0	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.4.0	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.4.0	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.4.0	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.4.0	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.4.0	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2017-15095	严重	2.6.7.1	2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind	CVE-2017-17485	严重	2.6.7.1	2.9.4, 2.8.11, 2.7.9.2	jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095) 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind	CVE-2018-11307	严重	2.6.7.1	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14718	严重	2.6.7.1	2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: arbitrary code execution in slf4j-ext class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-14719	严重	2.6.7.1	2.9.7, 2.8.11.3, 2.7.9.5	jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind	CVE-2018-19362	严重	2.6.7.1	2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3	jackson-databind: improper polymorphic deserialization in jboss-common-core class 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind	CVE-2018-7489	严重	2.6.7.1	2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5	jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.6.7.1	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.6.7.1	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.6.7.1	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.6.7.1	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.6.7.1	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.6.7.1	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.6.7.1	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.6.7.1	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.6.7.1	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.6.7.1	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.6.7.1	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.9.8	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.9.8	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14379	严重	2.9.8	2.9.9.2, 2.8.11.4, 2.7.9.6	jackson-databind: default typing mishandling leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.9.8	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.9.8	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14540	严重	2.9.8	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.9.8	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.9.8	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16335	严重	2.9.8	2.9.10, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16942	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-16943	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.9.8	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.9.8	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17267	严重	2.9.8	2.9.10, 2.8.11.5	jackson-databind: Serialization gadgets in classes of the ehcache package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-17531	严重	2.9.8	2.9.10.1, 2.8.11.5, 2.6.7.3	jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.* 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.9.8	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.9.8	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2019-20330	严重	2.9.8	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2	jackson-databind: lacks certain net.sf.ehcache blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.9.8	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.9.8	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-8840	严重	2.9.8	2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3	jackson-databind: Lacks certain xbean-reflect/JNDI blocking 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9546	严重	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in shaded-hikari-config 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9546	严重	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in shaded-hikari-config 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9546	严重	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in shaded-hikari-config 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.9.8	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.9.8	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9547	严重	2.9.8	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in ibatis-sqlmap 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.9.8	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.9.8	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind	CVE-2020-9548	严重	2.9.8	2.9.10.4, 2.8.11.6, 2.7.9.7	jackson-databind: Serialization gadgets in anteros-core 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.nimbusds:nimbus-jose-jwt	CVE-2019-17195	严重	4.41.1	7.9	nimbus-jose-jwt: Uncaught exceptions while parsing a JWT 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17195 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-15 14:15 修改: 2023-11-07 03:06
com.nimbusds:nimbus-jose-jwt	CVE-2019-17195	严重	4.41.1	7.9	nimbus-jose-jwt: Uncaught exceptions while parsing a JWT 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17195 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-15 14:15 修改: 2023-11-07 03:06
com.nimbusds:nimbus-jose-jwt	CVE-2019-17195	严重	4.41.1	7.9	nimbus-jose-jwt: Uncaught exceptions while parsing a JWT 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17195 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-15 14:15 修改: 2023-11-07 03:06
io.netty:netty	CVE-2019-20444	严重	3.10.5.Final	4.0.0	netty: HTTP request smuggling 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20444 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty	CVE-2019-20444	严重	3.10.5.Final	4.0.0	netty: HTTP request smuggling 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20444 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty-codec-http	CVE-2019-20444	严重	4.1.17.Final	4.1.44	netty: HTTP request smuggling 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20444 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
log4j:log4j	CVE-2019-17571	严重	1.2.17		log4j: deserialization of untrusted data in SocketServer 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17571 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-12-20 17:15 修改: 2023-11-07 03:06
log4j:log4j	CVE-2019-17571	严重	1.2.17		log4j: deserialization of untrusted data in SocketServer 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17571 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-12-20 17:15 修改: 2023-11-07 03:06
log4j:log4j	CVE-2022-23305	严重	1.2.17		log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23305 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
log4j:log4j	CVE-2022-23305	严重	1.2.17		log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23305 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
log4j:log4j	CVE-2022-23307	严重	1.2.17		log4j: Unsafe deserialization flaw in Chainsaw log viewer 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23307 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:29
log4j:log4j	CVE-2022-23307	严重	1.2.17		log4j: Unsafe deserialization flaw in Chainsaw log viewer 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23307 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:29
org.apache.avro:avro	CVE-2024-47561	严重	1.7.7	1.11.4	apache-avro: Schema parsing may trigger Remote Code Execution (RCE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
org.apache.avro:avro	CVE-2024-47561	严重	1.7.7	1.11.4	apache-avro: Schema parsing may trigger Remote Code Execution (RCE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
org.apache.avro:avro	CVE-2024-47561	严重	1.7.7	1.11.4	apache-avro: Schema parsing may trigger Remote Code Execution (RCE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
org.apache.hadoop:hadoop-common	CVE-2021-37404	严重	3.2.1	3.3.2, 3.2.3, 2.10.2	hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common	CVE-2021-37404	严重	3.2.1	3.3.2, 3.2.3, 2.10.2	hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common	CVE-2021-37404	严重	3.2.1	3.3.2, 3.2.3, 2.10.2	hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common	CVE-2021-37404	严重	3.2.1	3.3.2, 3.2.3, 2.10.2	hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common	CVE-2022-25168	严重	3.2.1	2.10.2, 3.2.4, 3.3.3	hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common	CVE-2022-25168	严重	3.2.1	2.10.2, 3.2.4, 3.3.3	hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common	CVE-2022-25168	严重	3.2.1	2.10.2, 3.2.4, 3.3.3	hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common	CVE-2022-25168	严重	3.2.1	2.10.2, 3.2.4, 3.3.3	hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common	CVE-2022-26612	严重	3.2.1	3.2.3	hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.hadoop:hadoop-common	CVE-2022-26612	严重	3.2.1	3.2.3	hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.hadoop:hadoop-common	CVE-2022-26612	严重	3.2.1	3.2.3	hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.hadoop:hadoop-common	CVE-2022-26612	严重	3.2.1	3.2.3	hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.zookeeper:zookeeper	CVE-2023-44981	严重	3.4.13	3.7.2, 3.8.3, 3.9.1	zookeeper: Authorization Bypass in Apache ZooKeeper 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44981 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-10-11 12:15 修改: 2024-06-21 19:15
org.apache.zookeeper:zookeeper	CVE-2023-44981	严重	3.4.13	3.7.2, 3.8.3, 3.9.1	zookeeper: Authorization Bypass in Apache ZooKeeper 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44981 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-10-11 12:15 修改: 2024-06-21 19:15
org.codehaus.jackson:jackson-mapper-asl	CVE-2019-10202	严重	1.9.13		codehaus: incomplete fix for unsafe deserialization in jackson-databind vulnerabilities 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10202 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 15:15 修改: 2023-02-12 23:33
org.codehaus.jackson:jackson-mapper-asl	CVE-2019-10202	严重	1.9.13		codehaus: incomplete fix for unsafe deserialization in jackson-databind vulnerabilities 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10202 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-10-01 15:15 修改: 2023-02-12 23:33
org.hsqldb:hsqldb	CVE-2022-41853	严重	2.3.4	2.7.1	hsqldb: Untrusted input may lead to RCE attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41853 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-06 18:17 修改: 2023-02-03 23:43
com.cedarsoftware:json-io	CVE-2023-34610	高危	2.5.1	4.14.1	json-io: cyclic dependencies in a crafted object could result in Dos 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34610 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-14 14:15 修改: 2023-06-26 17:11
com.fasterxml.jackson.core:jackson-databind	CVE-2018-12022	高危	2.4.0	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: improper polymorphic deserialization of types from Jodd-db library 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind	CVE-2018-12022	高危	2.4.0	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: improper polymorphic deserialization of types from Jodd-db library 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind	CVE-2018-12022	高危	2.4.0	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: improper polymorphic deserialization of types from Jodd-db library 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind	CVE-2018-5968	高危	2.4.0	2.8.11.1, 2.9.4, 2.7.9.5	jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind	CVE-2018-5968	高危	2.4.0	2.8.11.1, 2.9.4, 2.7.9.5	jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind	CVE-2018-5968	高危	2.4.0	2.8.11.1, 2.9.4, 2.7.9.5	jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.4.0	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.4.0	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.4.0	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.4.0	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.4.0	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.4.0	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.4.0	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.4.0	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.4.0	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2018-12022	高危	2.6.7.1	2.7.9.4, 2.8.11.2, 2.9.6	jackson-databind: improper polymorphic deserialization of types from Jodd-db library 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind	CVE-2018-5968	高危	2.6.7.1	2.8.11.1, 2.9.4, 2.7.9.5	jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.6.7.1	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.6.7.1	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.6.7.1	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.6.7.1	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.6.7.1	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.6.7.1	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.6.7.1	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-25649	高危	2.6.7.1	2.6.7.4, 2.9.10.7, 2.10.5.1	jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.6.7.1	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.6.7.1	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.6.7.1	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.6.7.1	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.6.7.1	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.6.7.1	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.4.0	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.4.0	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.4.0	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.4.0	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.4.0	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.4.0	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.4.0	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.4.0	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.4.0	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.4.0	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.4.0	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.4.0	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.9.8	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.9.8	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12086	高危	2.9.8	2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.9.8	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.9.8	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14439	高危	2.9.8	2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: Polymorphic typing issue related to logback/JNDI 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.9.8	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.9.8	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14892	高危	2.9.8	2.6.7.3, 2.8.11.5, 2.9.10	jackson-databind: Serialization gadgets in classes of the commons-configuration package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14893	高危	2.9.8	2.9.10	jackson-databind: Serialization gadgets in classes of the xalan package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14893 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 21:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14893	高危	2.9.8	2.9.10	jackson-databind: Serialization gadgets in classes of the xalan package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14893 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 21:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2019-14893	高危	2.9.8	2.9.10	jackson-databind: Serialization gadgets in classes of the xalan package 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14893 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-02 21:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.9.8	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.9.8	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10650	高危	2.9.8	2.9.10.4	A deserialization flaw was discovered in jackson-databind through 2.9. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10672	高危	2.9.8	2.9.10.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10672	高危	2.9.8	2.9.10.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10672	高危	2.9.8	2.9.10.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.9.8	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.9.8	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10673	高危	2.9.8	2.9.10.4, 2.6.7.4	jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10968	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10968	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10968	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10969	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in javax.swing.JEditorPane 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10969	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in javax.swing.JEditorPane 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-10969	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in javax.swing.JEditorPane 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11111	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11111	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11111	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11112	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11112	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11112	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11113	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11113	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11113	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11619	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.springframework:spring-aop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11619	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.springframework:spring-aop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11619	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in org.springframework:spring-aop 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11620	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in commons-jelly:commons-jelly 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11620	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in commons-jelly:commons-jelly 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-11620	高危	2.9.8	2.9.10.4	jackson-databind: Serialization gadgets in commons-jelly:commons-jelly 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14060	高危	2.9.8	2.9.10.5	jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14060	高危	2.9.8	2.9.10.5	jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14060	高危	2.9.8	2.9.10.5	jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14061	高危	2.9.8	2.9.10.5	jackson-databind: serialization in weblogic/oracle-aqjms 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14061	高危	2.9.8	2.9.10.5	jackson-databind: serialization in weblogic/oracle-aqjms 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14061	高危	2.9.8	2.9.10.5	jackson-databind: serialization in weblogic/oracle-aqjms 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14062	高危	2.9.8	2.9.10.5	jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14062	高危	2.9.8	2.9.10.5	jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14062	高危	2.9.8	2.9.10.5	jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14195	高危	2.9.8	2.9.10.5	jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14195	高危	2.9.8	2.9.10.5	jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-14195	高危	2.9.8	2.9.10.5	jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.9.8	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.9.8	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24616	高危	2.9.8	2.9.10.6	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.9.8	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.9.8	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-24750	高危	2.9.8	2.6.7.5, 2.9.10.6	jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-25649	高危	2.9.8	2.6.7.4, 2.9.10.7, 2.10.5.1	jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-25649	高危	2.9.8	2.6.7.4, 2.9.10.7, 2.10.5.1	jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-25649	高危	2.9.8	2.6.7.4, 2.9.10.7, 2.10.5.1	jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE) 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35490	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35491	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-35728	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36179	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36180	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36181	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36182	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36183	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.9.8	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.9.8	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.9.8	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.9.8	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.9.8	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.9.8	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.9.8	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.9.8	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.9.8	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.9.8	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.9.8	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.9.8	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.9.8	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.9.8	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.google.code.gson:gson	CVE-2022-25647	高危	2.2.4	2.8.9	com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25647 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-05-01 16:15 修改: 2022-11-28 17:33
com.google.code.gson:gson	CVE-2022-25647	高危	2.2.4	2.8.9	com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25647 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-05-01 16:15 修改: 2022-11-28 17:33
com.google.protobuf:protobuf-java	CVE-2021-22569	高危	2.5.0	3.16.1, 3.18.2, 3.19.2	protobuf-java: potential DoS in the parsing procedure for binary data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
com.google.protobuf:protobuf-java	CVE-2021-22569	高危	2.5.0	3.16.1, 3.18.2, 3.19.2	protobuf-java: potential DoS in the parsing procedure for binary data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
com.google.protobuf:protobuf-java	CVE-2021-22569	高危	2.5.0	3.16.1, 3.18.2, 3.19.2	protobuf-java: potential DoS in the parsing procedure for binary data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
com.google.protobuf:protobuf-java	CVE-2021-22570	高危	2.5.0	3.15.0	protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java	CVE-2021-22570	高危	2.5.0	3.15.0	protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java	CVE-2021-22570	高危	2.5.0	3.15.0	protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java	CVE-2022-3509	高危	2.5.0	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: Textformat parsing issue leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java	CVE-2022-3509	高危	2.5.0	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: Textformat parsing issue leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java	CVE-2022-3509	高危	2.5.0	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: Textformat parsing issue leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java	CVE-2022-3510	高危	2.5.0	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: Message-Type Extensions parsing issue leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java	CVE-2022-3510	高危	2.5.0	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: Message-Type Extensions parsing issue leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java	CVE-2022-3510	高危	2.5.0	3.16.3, 3.19.6, 3.20.3, 3.21.7	protobuf-java: Message-Type Extensions parsing issue leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java	CVE-2024-7254	高危	2.5.0	3.25.5, 4.27.5, 4.28.2	protobuf: StackOverflow vulnerability in Protocol Buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
com.google.protobuf:protobuf-java	CVE-2024-7254	高危	2.5.0	3.25.5, 4.27.5, 4.28.2	protobuf: StackOverflow vulnerability in Protocol Buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
com.google.protobuf:protobuf-java	CVE-2024-7254	高危	2.5.0	3.25.5, 4.27.5, 4.28.2	protobuf: StackOverflow vulnerability in Protocol Buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36184	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.nimbusds:nimbus-jose-jwt	CVE-2023-52428	高危	4.41.1	9.37.2	nimbus-jose-jwt: large JWE p2c header value causes Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
com.nimbusds:nimbus-jose-jwt	CVE-2023-52428	高危	4.41.1	9.37.2	nimbus-jose-jwt: large JWE p2c header value causes Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
com.nimbusds:nimbus-jose-jwt	CVE-2023-52428	高危	4.41.1	9.37.2	nimbus-jose-jwt: large JWE p2c header value causes Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
commons-beanutils:commons-beanutils	CVE-2014-0114	高危	1.9.3	1.9.4	1: Class Loader manipulation via request parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2014-0114 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2014-04-30 10:49 修改: 2023-02-13 00:32
commons-beanutils:commons-beanutils	CVE-2014-0114	高危	1.9.3	1.9.4	1: Class Loader manipulation via request parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2014-0114 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2014-04-30 10:49 修改: 2023-02-13 00:32
commons-beanutils:commons-beanutils	CVE-2014-0114	高危	1.9.3	1.9.4	1: Class Loader manipulation via request parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2014-0114 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2014-04-30 10:49 修改: 2023-02-13 00:32
commons-beanutils:commons-beanutils	CVE-2019-10086	高危	1.9.3	1.9.4	apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-08-20 21:15 修改: 2023-11-07 03:02
commons-beanutils:commons-beanutils	CVE-2019-10086	高危	1.9.3	1.9.4	apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-08-20 21:15 修改: 2023-11-07 03:02
commons-beanutils:commons-beanutils	CVE-2019-10086	高危	1.9.3	1.9.4	apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10086 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-08-20 21:15 修改: 2023-11-07 03:02
commons-io:commons-io	CVE-2024-47554	高危	2.5	2.14.0	apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
commons-io:commons-io	CVE-2024-47554	高危	2.5	2.14.0	apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
commons-io:commons-io	CVE-2024-47554	高危	2.5	2.14.0	apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-03 12:15 修改: 2024-10-04 13:50
dnsjava:dnsjava	CVE-2024-25638	高危	2.1.7	3.6.0	dnsjava: Improper response validation allowing DNSSEC bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
dnsjava:dnsjava	CVE-2024-25638	高危	2.1.7	3.6.0	dnsjava: Improper response validation allowing DNSSEC bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
dnsjava:dnsjava	CVE-2024-25638	高危	2.1.7	3.6.0	dnsjava: Improper response validation allowing DNSSEC bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
io.netty:netty	CVE-2021-37136	高危	3.10.5.Final	4.0.0	netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37136 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty	CVE-2021-37136	高危	3.10.5.Final	4.0.0	netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37136 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty	CVE-2021-37137	高危	3.10.5.Final	4.0.0	netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37137 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty	CVE-2021-37137	高危	3.10.5.Final	4.0.0	netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37137 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty-all	CVE-2019-16869	高危	4.0.52.Final	4.1.42.Final	netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06
io.netty:netty-all	CVE-2019-16869	高危	4.0.52.Final	4.1.42.Final	netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06
io.netty:netty-codec	CVE-2021-37136	高危	4.1.17.Final	4.1.68.Final	netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37136 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty-codec	CVE-2021-37137	高危	4.1.17.Final	4.1.68.Final	netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37137 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36185	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
io.netty:netty-common	CVE-2024-47535	高危	4.1.17.Final	4.1.115	netty: Denial of Service attack on windows app using Netty 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47535 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-11-12 16:15 修改: 2024-11-12 16:15
io.netty:netty-handler	CVE-2020-11612	高危	4.1.17.Final	4.1.46	netty: compression/decompression codecs don't enforce limits on buffer allocation sizes 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11612 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-04-07 18:15 修改: 2023-11-07 03:14
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36186	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36187	高危	2.4.0	2.9.10.8	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
log4j:log4j	CVE-2021-4104	高危	1.2.17		log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4104 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-12-14 12:15 修改: 2023-12-22 09:15
log4j:log4j	CVE-2021-4104	高危	1.2.17		log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4104 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-12-14 12:15 修改: 2023-12-22 09:15
log4j:log4j	CVE-2022-23302	高危	1.2.17		log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23302 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
log4j:log4j	CVE-2022-23302	高危	1.2.17		log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23302 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
net.minidev:json-smart	CVE-2023-1370	高危	2.3	2.4.9	json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
net.minidev:json-smart	CVE-2023-1370	高危	2.3	2.4.9	json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
net.minidev:json-smart	CVE-2023-1370	高危	2.3	2.4.9	json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36188	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
org.apache.avro:avro	CVE-2023-39410	高危	1.7.7	1.11.3	apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.avro:avro	CVE-2023-39410	高危	1.7.7	1.11.3	apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.avro:avro	CVE-2023-39410	高危	1.7.7	1.11.3	apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.commons:commons-compress	CVE-2019-12402	高危	1.18	1.19	apache-commons-compress: Infinite loop in name encoding algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12402 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-08-30 09:15 修改: 2023-11-07 03:03
org.apache.commons:commons-compress	CVE-2019-12402	高危	1.18	1.19	apache-commons-compress: Infinite loop in name encoding algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12402 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-08-30 09:15 修改: 2023-11-07 03:03
org.apache.commons:commons-compress	CVE-2019-12402	高危	1.18	1.19	apache-commons-compress: Infinite loop in name encoding algorithm 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12402 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-08-30 09:15 修改: 2023-11-07 03:03
org.apache.commons:commons-compress	CVE-2021-35515	高危	1.18	1.21	apache-commons-compress: infinite loop when reading a specially crafted 7Z archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35515 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35515	高危	1.18	1.21	apache-commons-compress: infinite loop when reading a specially crafted 7Z archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35515 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35515	高危	1.18	1.21	apache-commons-compress: infinite loop when reading a specially crafted 7Z archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35515 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35516	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35516 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35516	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35516 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35516	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35516 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35517	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35517 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35517	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35517 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-35517	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35517 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-36090	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36090 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-36090	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36090 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2021-36090	高危	1.18	1.21	apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36090 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress	CVE-2024-25710	高危	1.18	1.26.0	commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
org.apache.commons:commons-compress	CVE-2024-25710	高危	1.18	1.26.0	commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
org.apache.commons:commons-compress	CVE-2024-25710	高危	1.18	1.26.0	commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36189	高危	2.4.0	2.9.10.8, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.4.0	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.4.0	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2020-36518	高危	2.4.0	2.13.2.1, 2.12.6.1	jackson-databind: denial of service via a large depth of nested objects 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.4.0	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.4.0	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2021-20190	高危	2.4.0	2.9.10.7, 2.6.7.5	jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.4.0	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.4.0	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42003	高危	2.4.0	2.12.7.1, 2.13.4.2	jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
org.apache.hadoop:hadoop-common	CVE-2020-9492	高危	3.2.1	3.2.2, 3.1.4, 2.10.1	hadoop: WebHDFS client might send SPNEGO authorization header 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-common	CVE-2020-9492	高危	3.2.1	3.2.2, 3.1.4, 2.10.1	hadoop: WebHDFS client might send SPNEGO authorization header 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-common	CVE-2020-9492	高危	3.2.1	3.2.2, 3.1.4, 2.10.1	hadoop: WebHDFS client might send SPNEGO authorization header 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-common	CVE-2020-9492	高危	3.2.1	3.2.2, 3.1.4, 2.10.1	hadoop: WebHDFS client might send SPNEGO authorization header 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-yarn-server-common	CVE-2021-33036	高危	3.2.1	2.10.2, 3.2.3, 3.3.2	hadoop: privilege escalation via yarn user 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33036 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-06-15 15:15 修改: 2022-10-27 16:30
org.apache.hadoop:hadoop-yarn-server-common	CVE-2021-33036	高危	3.2.1	2.10.2, 3.2.3, 3.3.2	hadoop: privilege escalation via yarn user 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33036 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-06-15 15:15 修改: 2022-10-27 16:30
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.4.0	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.4.0	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind	CVE-2022-42004	高危	2.4.0	2.12.7.1, 2.13.4	jackson-databind: use of deeply nested arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.amazonaws:aws-java-sdk-s3	CVE-2022-31159	高危	1.11.375	1.12.261	Partial Path Traversal in com.amazonaws:aws-java-sdk-s3 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31159 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-07-15 18:15 修改: 2022-07-22 16:27
org.codehaus.jackson:jackson-mapper-asl	CVE-2019-10172	高危	1.9.13		jackson-mapper-asl: XML external entity similar to CVE-2016-3720 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10172 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-11-18 17:15 修改: 2023-02-12 23:33
org.codehaus.jackson:jackson-mapper-asl	CVE-2019-10172	高危	1.9.13		jackson-mapper-asl: XML external entity similar to CVE-2016-3720 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10172 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-11-18 17:15 修改: 2023-02-12 23:33
org.codehaus.jettison:jettison	CVE-2022-40150	高危	1.1	1.5.2	jettison: memory exhaustion via user-supplied XML or JSON data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40150 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-07-13 17:24
org.codehaus.jettison:jettison	CVE-2022-40150	高危	1.1	1.5.2	jettison: memory exhaustion via user-supplied XML or JSON data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40150 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-07-13 17:24
org.codehaus.jettison:jettison	CVE-2022-40150	高危	1.1	1.5.2	jettison: memory exhaustion via user-supplied XML or JSON data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40150 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-07-13 17:24
org.codehaus.jettison:jettison	CVE-2022-45685	高危	1.1	1.5.2	jettison: stack overflow in JSONObject() allows attackers to cause a Denial of Service (DoS) via crafted JSON data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45685 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-13 15:15 修改: 2023-01-30 17:57
org.codehaus.jettison:jettison	CVE-2022-45685	高危	1.1	1.5.2	jettison: stack overflow in JSONObject() allows attackers to cause a Denial of Service (DoS) via crafted JSON data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45685 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-13 15:15 修改: 2023-01-30 17:57
org.codehaus.jettison:jettison	CVE-2022-45685	高危	1.1	1.5.2	jettison: stack overflow in JSONObject() allows attackers to cause a Denial of Service (DoS) via crafted JSON data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45685 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-13 15:15 修改: 2023-01-30 17:57
org.codehaus.jettison:jettison	CVE-2022-45693	高危	1.1	1.5.2	jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45693 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-13 15:15 修改: 2023-01-26 17:35
org.codehaus.jettison:jettison	CVE-2022-45693	高危	1.1	1.5.2	jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45693 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-13 15:15 修改: 2023-01-26 17:35
org.codehaus.jettison:jettison	CVE-2022-45693	高危	1.1	1.5.2	jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45693 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-13 15:15 修改: 2023-01-26 17:35
org.codehaus.jettison:jettison	CVE-2023-1436	高危	1.1	1.5.4	jettison: Uncontrolled Recursion in JSONArray 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1436 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-03-22 06:15 修改: 2023-11-07 04:03
org.codehaus.jettison:jettison	CVE-2023-1436	高危	1.1	1.5.4	jettison: Uncontrolled Recursion in JSONArray 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1436 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-03-22 06:15 修改: 2023-11-07 04:03
org.codehaus.jettison:jettison	CVE-2023-1436	高危	1.1	1.5.4	jettison: Uncontrolled Recursion in JSONArray 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1436 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-03-22 06:15 修改: 2023-11-07 04:03
org.eclipse.jetty:jetty-server	CVE-2018-12545	高危	9.3.24.v20180605	9.4.12.v20180830, 9.3.25.v20180904	jetty: large settings frames causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12545 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-27 20:29 修改: 2023-11-07 02:52
org.eclipse.jetty:jetty-server	CVE-2018-12545	高危	9.3.24.v20180605	9.4.12.v20180830, 9.3.25.v20180904	jetty: large settings frames causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12545 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-27 20:29 修改: 2023-11-07 02:52
org.eclipse.jetty:jetty-server	CVE-2018-12545	高危	9.3.24.v20180605	9.4.12.v20180830, 9.3.25.v20180904	jetty: large settings frames causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12545 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-03-27 20:29 修改: 2023-11-07 02:52
org.eclipse.jetty:jetty-server	CVE-2021-28165	高危	9.3.24.v20180605	9.4.39, 10.0.2, 11.0.2	jetty: Resource exhaustion when receiving an invalid large TLS frame 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28165 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-04-01 15:15 修改: 2023-11-07 03:32
org.eclipse.jetty:jetty-server	CVE-2021-28165	高危	9.3.24.v20180605	9.4.39, 10.0.2, 11.0.2	jetty: Resource exhaustion when receiving an invalid large TLS frame 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28165 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-04-01 15:15 修改: 2023-11-07 03:32
org.eclipse.jetty:jetty-server	CVE-2021-28165	高危	9.3.24.v20180605	9.4.39, 10.0.2, 11.0.2	jetty: Resource exhaustion when receiving an invalid large TLS frame 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28165 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-04-01 15:15 修改: 2023-11-07 03:32
org.eclipse.jetty:jetty-webapp	CVE-2020-27216	高危	9.3.24.v20180605	9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3	jetty: local temporary directory hijacking vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27216 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-10-23 13:15 修改: 2023-11-07 03:20
org.eclipse.jetty:jetty-webapp	CVE-2020-27216	高危	9.3.24.v20180605	9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3	jetty: local temporary directory hijacking vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27216 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-10-23 13:15 修改: 2023-11-07 03:20
org.eclipse.jetty:jetty-webapp	CVE-2020-27216	高危	9.3.24.v20180605	9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3	jetty: local temporary directory hijacking vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27216 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-10-23 13:15 修改: 2023-11-07 03:20
com.cedarsoftware:json-io	CVE-2023-34610	高危	2.5.1	4.14.1	json-io: cyclic dependencies in a crafted object could result in Dos 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34610 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-14 14:15 修改: 2023-06-26 17:11
org.jdom:jdom	CVE-2021-33813	高危	1.1		jdom: XXE allows attackers to cause a DoS via a crafted HTTP request 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33813 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-06-16 12:15 修改: 2023-11-07 03:35
org.xerial.snappy:snappy-java	CVE-2023-34455	高危	1.0.5	1.1.10.1	snappy-java: Unchecked chunk length leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17
org.xerial.snappy:snappy-java	CVE-2023-34455	高危	1.0.5	1.1.10.1	snappy-java: Unchecked chunk length leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17
org.xerial.snappy:snappy-java	CVE-2023-34455	高危	1.0.5	1.1.10.1	snappy-java: Unchecked chunk length leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17
org.xerial.snappy:snappy-java	CVE-2023-43642	高危	1.0.5	1.1.10.4	snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46
org.xerial.snappy:snappy-java	CVE-2023-43642	高危	1.0.5	1.1.10.4	snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46
org.xerial.snappy:snappy-java	CVE-2023-43642	高危	1.0.5	1.1.10.4	snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46
org.yaml:snakeyaml	CVE-2017-18640	高危	1.16	1.26	snakeyaml: Billion laughs attack via alias feature 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18640 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-12-12 03:15 修改: 2023-11-07 02:41
org.yaml:snakeyaml	CVE-2022-1471	高危	1.16	2.0	SnakeYaml: Constructor Deserialization Remote Code Execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1471 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-01 11:15 修改: 2024-06-21 19:15
org.yaml:snakeyaml	CVE-2022-25857	高危	1.16	1.31	snakeyaml: Denial of Service due to missing nested depth limitation for collections 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25857 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-08-30 05:15 修改: 2024-03-15 11:15
software.amazon.ion:ion-java	CVE-2024-21634	高危	1.0.2	1.10.5	ion-java: ion-java: Ion Java StackOverflow vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21634 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-01-03 23:15 修改: 2024-01-10 16:38
com.google.guava:guava	CVE-2023-2976	中危	27.0-jre	32.0.0-android	guava: insecure temporary directory creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.4.0	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
io.netty:netty-codec-http	CVE-2021-21290	中危	4.1.17.Final	4.1.59.Final	netty: Information disclosure via the local system temporary directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21290 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-02-08 20:15 修改: 2023-11-07 03:29
io.netty:netty-codec-http	CVE-2021-43797	中危	4.1.17.Final	4.1.71.Final	netty: control chars in header names may lead to HTTP request smuggling 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43797 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-12-09 19:15 修改: 2023-02-24 15:47
io.netty:netty-codec-http	CVE-2022-24823	中危	4.1.17.Final	4.1.77.Final	netty: world readable temporary file containing sensitive data 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24823 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-05-06 12:15 修改: 2022-12-03 14:25
io.netty:netty-codec-http	CVE-2024-29025	中危	4.1.17.Final	4.1.108.Final	netty-codec-http: Allocation of Resources Without Limits or Throttling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29025 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-25 20:15 修改: 2024-06-21 22:15
com.squareup.okio:okio	CVE-2023-3635	中危	1.6.0	3.4.0, 1.17.6	okio: GzipSource class improper exception handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
com.squareup.okio:okio	CVE-2023-3635	中危	1.6.0	3.4.0, 1.17.6	okio: GzipSource class improper exception handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
io.netty:netty-handler	CVE-2019-20445	中危	4.1.17.Final	4.1.45	netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20445 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty-handler	CVE-2023-34462	中危	4.1.17.Final	4.1.94.Final	netty: SniHandler 16MB allocation leads to OOM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34462 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-22 23:15 修改: 2024-06-21 19:15
junit:junit	CVE-2020-15250	中危	4.11	4.13.1	junit4: TemporaryFolder is shared between all users across system which could result in information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15250 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-10-12 18:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.4.0	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.4.0	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.6.7.1	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.6.7.1	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.4.0	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.9.8	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.9.8	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
org.apache.httpcomponents:httpclient	CVE-2020-13956	中危	4.5.5	4.5.13, 5.0.3	apache-httpclient: incorrect handling of malformed authority component in request URIs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
org.apache.httpcomponents:httpclient	CVE-2020-13956	中危	4.5.6	4.5.13, 5.0.3	apache-httpclient: incorrect handling of malformed authority component in request URIs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
org.apache.httpcomponents:httpclient	CVE-2020-13956	中危	4.5.6	4.5.13, 5.0.3	apache-httpclient: incorrect handling of malformed authority component in request URIs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
org.apache.httpcomponents:httpclient	CVE-2020-13956	中危	4.5.6	4.5.13, 5.0.3	apache-httpclient: incorrect handling of malformed authority component in request URIs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.9.8	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.9.8	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
org.apache.zookeeper:zookeeper	CVE-2019-0201	中危	3.4.13	3.4.14, 3.5.5	zookeeper: Information disclosure in Apache ZooKeeper 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-0201 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-23 14:29 修改: 2023-11-07 03:01
org.apache.zookeeper:zookeeper	CVE-2019-0201	中危	3.4.13	3.4.14, 3.5.5	zookeeper: Information disclosure in Apache ZooKeeper 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-0201 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-05-23 14:29 修改: 2023-11-07 03:01
org.bouncycastle:bcprov-jdk15on	CVE-2020-15522	中危	1.60	1.66	bouncycastle: Timing issue within the EC math library 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15522 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-05-20 12:15 修改: 2021-06-22 09:15
org.bouncycastle:bcprov-jdk15on	CVE-2020-26939	中危	1.60	1.61	In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1. ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26939 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-11-02 22:15 修改: 2023-11-07 03:20
org.bouncycastle:bcprov-jdk15on	CVE-2023-33201	中危	1.60		bouncycastle: potential blind LDAP injection attack using a self-signed certificate 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33201 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-07-05 03:15 修改: 2023-08-24 19:15
org.bouncycastle:bcprov-jdk15on	CVE-2023-33202	中危	1.60	1.70	bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33202 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-11-23 16:15 修改: 2024-09-09 13:53
org.bouncycastle:bcprov-jdk15on	CVE-2024-29857	中危	1.60	1.78	org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29857 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-05-14 15:17 修改: 2024-08-15 19:35
org.bouncycastle:bcprov-jdk15on	CVE-2024-30171	中危	1.60	1.78	bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30171 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-05-14 15:21 修改: 2024-08-19 18:35
org.bouncycastle:bcprov-jdk15on	CVE-2024-30172	中危	1.60	1.78	org.bouncycastle:bcprov-jdk18on: Infinite loop in ED25519 verification in the ScalarUtil class 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30172 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-05-14 15:21 修改: 2024-11-05 18:35
commons-io:commons-io	CVE-2021-29425	中危	2.5	2.7	apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32
commons-io:commons-io	CVE-2021-29425	中危	2.5	2.7	apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32
commons-io:commons-io	CVE-2021-29425	中危	2.5	2.7	apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32
commons-net:commons-net	CVE-2021-37533	中危	3.6	3.9.0	apache-commons-net: FTP client trusts the host from PASV response by default 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37533 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-03 15:15 修改: 2023-01-10 19:29
net.minidev:json-smart	CVE-2021-27568	中危	2.3	1.3.2, 2.4.1, 2.3.1	json-smart: uncaught exception may lead to crash or information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27568 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-02-23 02:15 修改: 2023-11-07 03:31
net.minidev:json-smart	CVE-2021-27568	中危	2.3	1.3.2, 2.4.1, 2.3.1	json-smart: uncaught exception may lead to crash or information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27568 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-02-23 02:15 修改: 2023-11-07 03:31
net.minidev:json-smart	CVE-2021-27568	中危	2.3	1.3.2, 2.4.1, 2.3.1	json-smart: uncaught exception may lead to crash or information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27568 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-02-23 02:15 修改: 2023-11-07 03:31
commons-net:commons-net	CVE-2021-37533	中危	3.6	3.9.0	apache-commons-net: FTP client trusts the host from PASV response by default 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37533 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-03 15:15 修改: 2023-01-10 19:29
commons-net:commons-net	CVE-2021-37533	中危	3.6	3.9.0	apache-commons-net: FTP client trusts the host from PASV response by default 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37533 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-12-03 15:15 修改: 2023-01-10 19:29
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.9.8	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.9.8	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.woodstox:woodstox-core	CVE-2022-40152	中危	5.0.3	6.4.0, 5.4.0	woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40152 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-02-09 01:36
com.fasterxml.woodstox:woodstox-core	CVE-2022-40152	中危	5.0.3	6.4.0, 5.4.0	woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40152 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-02-09 01:36
com.fasterxml.woodstox:woodstox-core	CVE-2022-40152	中危	5.0.3	6.4.0, 5.4.0	woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40152 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-02-09 01:36
com.google.protobuf:protobuf-java	CVE-2022-3171	中危	2.5.0	3.21.7, 3.20.3, 3.19.6, 3.16.3	protobuf-java: timeout in parser leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
com.google.protobuf:protobuf-java	CVE-2022-3171	中危	2.5.0	3.21.7, 3.20.3, 3.19.6, 3.16.3	protobuf-java: timeout in parser leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
org.codehaus.jettison:jettison	CVE-2022-40149	中危	1.1	1.5.1	jettison: parser crash by stackoverflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40149 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-03-01 16:32
org.codehaus.jettison:jettison	CVE-2022-40149	中危	1.1	1.5.1	jettison: parser crash by stackoverflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40149 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-03-01 16:32
org.codehaus.jettison:jettison	CVE-2022-40149	中危	1.1	1.5.1	jettison: parser crash by stackoverflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40149 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-16 10:15 修改: 2023-03-01 16:32
org.eclipse.jetty:jetty-http	CVE-2023-40167	中危	9.3.24.v20180605	9.4.52, 10.0.16, 11.0.16, 12.0.1	jetty: Improper validation of HTTP/1 content-length 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http	CVE-2023-40167	中危	9.3.24.v20180605	9.4.52, 10.0.16, 11.0.16, 12.0.1	jetty: Improper validation of HTTP/1 content-length 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http	CVE-2023-40167	中危	9.3.24.v20180605	9.4.52, 10.0.16, 11.0.16, 12.0.1	jetty: Improper validation of HTTP/1 content-length 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http	CVE-2024-6763	中危	9.3.24.v20180605	12.0.12	org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
org.eclipse.jetty:jetty-http	CVE-2024-6763	中危	9.3.24.v20180605	12.0.12	org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
org.eclipse.jetty:jetty-http	CVE-2024-6763	中危	9.3.24.v20180605	12.0.12	org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
com.google.protobuf:protobuf-java	CVE-2022-3171	中危	2.5.0	3.21.7, 3.20.3, 3.19.6, 3.16.3	protobuf-java: timeout in parser leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12814	中危	2.4.0	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message. 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
io.netty:netty	CVE-2019-20445	中危	3.10.5.Final	4.0.0	netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20445 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty	CVE-2019-20445	中危	3.10.5.Final	4.0.0	netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20445 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty	CVE-2021-21290	中危	3.10.5.Final	4.0.0	netty: Information disclosure via the local system temporary directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21290 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-02-08 20:15 修改: 2023-11-07 03:29
io.netty:netty	CVE-2021-21290	中危	3.10.5.Final	4.0.0	netty: Information disclosure via the local system temporary directory 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21290 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-02-08 20:15 修改: 2023-11-07 03:29
org.eclipse.jetty:jetty-server	CVE-2019-10241	中危	9.3.24.v20180605	9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411	jetty: using specially formatted URL against DefaultServlet or ResourceHandler leads to XSS conditions 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10241 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10241	中危	9.3.24.v20180605	9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411	jetty: using specially formatted URL against DefaultServlet or ResourceHandler leads to XSS conditions 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10241 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10241	中危	9.3.24.v20180605	9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411	jetty: using specially formatted URL against DefaultServlet or ResourceHandler leads to XSS conditions 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10241 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10246	中危	9.3.24.v20180605	9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418	jetty: Directory Listing on Windows reveals Resource Base path 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10246 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10246	中危	9.3.24.v20180605	9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418	jetty: Directory Listing on Windows reveals Resource Base path 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10246 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10246	中危	9.3.24.v20180605	9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418	jetty: Directory Listing on Windows reveals Resource Base path 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10246 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10247	中危	9.3.24.v20180605	9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418	jetty: error path information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10247 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10247	中危	9.3.24.v20180605	9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418	jetty: error path information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10247 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2019-10247	中危	9.3.24.v20180605	9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418	jetty: error path information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10247 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server	CVE-2023-26048	中危	9.3.24.v20180605	9.4.51.v20230217, 10.0.14, 11.0.14	jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server	CVE-2023-26048	中危	9.3.24.v20180605	9.4.51.v20230217, 10.0.14, 11.0.14	jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server	CVE-2023-26048	中危	9.3.24.v20180605	9.4.51.v20230217, 10.0.14, 11.0.14	jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server	CVE-2024-8184	中危	9.3.24.v20180605	12.0.9, 10.0.24, 11.0.24, 9.4.56	org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:00
org.eclipse.jetty:jetty-server	CVE-2024-8184	中危	9.3.24.v20180605	12.0.9, 10.0.24, 11.0.24, 9.4.56	org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:00
org.eclipse.jetty:jetty-server	CVE-2024-8184	中危	9.3.24.v20180605	12.0.9, 10.0.24, 11.0.24, 9.4.56	org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:00
io.netty:netty	CVE-2021-21295	中危	3.10.5.Final	4.0.0	netty: possible request smuggling in HTTP/2 due missing validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21295 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-03-09 19:15 修改: 2023-11-07 03:29
io.netty:netty	CVE-2021-21295	中危	3.10.5.Final	4.0.0	netty: possible request smuggling in HTTP/2 due missing validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21295 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-03-09 19:15 修改: 2023-11-07 03:29
io.netty:netty	CVE-2021-21409	中危	3.10.5.Final	4.0.0	netty: Request smuggling via content-length header 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21409 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-03-30 15:15 修改: 2023-11-07 03:30
io.netty:netty	CVE-2021-21409	中危	3.10.5.Final	4.0.0	netty: Request smuggling via content-length header 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21409 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-03-30 15:15 修改: 2023-11-07 03:30
io.netty:netty	CVE-2021-43797	中危	3.10.5.Final	4.0.0	netty: control chars in header names may lead to HTTP request smuggling 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43797 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-12-09 19:15 修改: 2023-02-24 15:47
io.netty:netty	CVE-2021-43797	中危	3.10.5.Final	4.0.0	netty: control chars in header names may lead to HTTP request smuggling 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43797 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-12-09 19:15 修改: 2023-02-24 15:47
com.fasterxml.jackson.core:jackson-databind	CVE-2019-12384	中危	2.4.0	2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3	jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.google.guava:guava	CVE-2023-2976	中危	27.0-jre	32.0.0-android	guava: insecure temporary directory creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
com.google.guava:guava	CVE-2023-2976	中危	27.0-jre	32.0.0-android	guava: insecure temporary directory creation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
org.apache.commons:commons-configuration2	CVE-2024-29131	中危	2.1.1	2.10.1	commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator() 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-21 09:15 修改: 2024-08-28 15:35
org.apache.commons:commons-configuration2	CVE-2024-29131	中危	2.1.1	2.10.1	commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator() 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-21 09:15 修改: 2024-08-28 15:35
org.xerial.snappy:snappy-java	CVE-2023-34453	中危	1.0.5	1.1.10.1	snappy-java: Integer overflow in shuffle leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59
org.xerial.snappy:snappy-java	CVE-2023-34453	中危	1.0.5	1.1.10.1	snappy-java: Integer overflow in shuffle leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59
org.xerial.snappy:snappy-java	CVE-2023-34453	中危	1.0.5	1.1.10.1	snappy-java: Integer overflow in shuffle leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59
org.xerial.snappy:snappy-java	CVE-2023-34454	中危	1.0.5	1.1.10.1	snappy-java: Integer overflow in compress leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 17:15 修改: 2023-06-27 16:04
org.xerial.snappy:snappy-java	CVE-2023-34454	中危	1.0.5	1.1.10.1	snappy-java: Integer overflow in compress leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 17:15 修改: 2023-06-27 16:04
org.xerial.snappy:snappy-java	CVE-2023-34454	中危	1.0.5	1.1.10.1	snappy-java: Integer overflow in compress leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-06-15 17:15 修改: 2023-06-27 16:04
org.apache.commons:commons-configuration2	CVE-2024-29131	中危	2.1.1	2.10.1	commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator() 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-21 09:15 修改: 2024-08-28 15:35
org.apache.commons:commons-configuration2	CVE-2024-29133	中危	2.1.1	2.10.1	commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
org.apache.commons:commons-configuration2	CVE-2024-29133	中危	2.1.1	2.10.1	commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
org.yaml:snakeyaml	CVE-2022-38749	中危	1.16	1.31	snakeyaml: Uncaught exception in org.yaml.snakeyaml.composer.Composer.composeSequenceNode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38749 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml	CVE-2022-38750	中危	1.16	1.31	snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38750 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml	CVE-2022-38751	中危	1.16	1.31	snakeyaml: Uncaught exception in java.base/java.util.regex.Pattern$Ques.match 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38751 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml	CVE-2022-38752	中危	1.16	1.32	snakeyaml: Uncaught exception in java.base/java.util.ArrayList.hashCode 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38752 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml	CVE-2022-41854	中危	1.16	1.32	dev-java/snakeyaml: DoS via stack overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41854 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-11-11 13:15 修改: 2024-06-21 19:15
org.apache.commons:commons-configuration2	CVE-2024-29133	中危	2.1.1	2.10.1	commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
org.eclipse.jetty:jetty-http	CVE-2022-2047	低危	9.3.24.v20180605	9.4.47, 10.0.10, 11.0.10	jetty-http: improver hostname input handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10
org.eclipse.jetty:jetty-http	CVE-2022-2047	低危	9.3.24.v20180605	9.4.47, 10.0.10, 11.0.10	jetty-http: improver hostname input handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10
com.google.guava:guava	CVE-2020-8908	低危	27.0-jre	32.0.0-android	guava: local information disclosure via temporary directory created with unsafe permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
org.eclipse.jetty:jetty-server	CVE-2021-34428	低危	9.3.24.v20180605	9.4.41, 10.0.3, 11.0.3	jetty: SessionListener can prevent a session from being invalidated breaking logout 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34428 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-06-22 15:15 修改: 2023-11-07 03:35
org.eclipse.jetty:jetty-server	CVE-2021-34428	低危	9.3.24.v20180605	9.4.41, 10.0.3, 11.0.3	jetty: SessionListener can prevent a session from being invalidated breaking logout 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34428 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-06-22 15:15 修改: 2023-11-07 03:35
org.eclipse.jetty:jetty-server	CVE-2021-34428	低危	9.3.24.v20180605	9.4.41, 10.0.3, 11.0.3	jetty: SessionListener can prevent a session from being invalidated breaking logout 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34428 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2021-06-22 15:15 修改: 2023-11-07 03:35
org.eclipse.jetty:jetty-server	CVE-2023-26049	低危	9.3.24.v20180605	9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0	jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36
org.eclipse.jetty:jetty-server	CVE-2023-26049	低危	9.3.24.v20180605	9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0	jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36
org.eclipse.jetty:jetty-server	CVE-2023-26049	低危	9.3.24.v20180605	9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0	jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36
com.google.guava:guava	CVE-2020-8908	低危	27.0-jre	32.0.0-android	guava: local information disclosure via temporary directory created with unsafe permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
com.google.guava:guava	CVE-2020-8908	低危	27.0-jre	32.0.0-android	guava: local information disclosure via temporary directory created with unsafe permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
org.apache.hadoop:hadoop-common	CVE-2024-23454	低危	3.2.1	3.4.0	Apache Hadoop: Temporary File Local Information Disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.eclipse.jetty:jetty-xml	GHSA-58qw-p7qm-5rvh	低危	9.3.24.v20180605	10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823	Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations 漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.eclipse.jetty:jetty-xml	GHSA-58qw-p7qm-5rvh	低危	9.3.24.v20180605	10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823	Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations 漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.eclipse.jetty:jetty-xml	GHSA-58qw-p7qm-5rvh	低危	9.3.24.v20180605	10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823	Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations 漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.apache.hadoop:hadoop-common	CVE-2024-23454	低危	3.2.1	3.4.0	Apache Hadoop: Temporary File Local Information Disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.apache.hadoop:hadoop-common	CVE-2024-23454	低危	3.2.1	3.4.0	Apache Hadoop: Temporary File Local Information Disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.apache.hadoop:hadoop-common	CVE-2024-23454	低危	3.2.1	3.4.0	Apache Hadoop: Temporary File Local Information Disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.eclipse.jetty:jetty-http	CVE-2022-2047	低危	9.3.24.v20180605	9.4.47, 10.0.10, 11.0.10	jetty-http: improver hostname input handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047 镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03 发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10