docker.io/bde2020/hadoop-nodemanager:2.0.0-hadoop3.2.1-java8 linux/amd64

docker.io/bde2020/hadoop-nodemanager:2.0.0-hadoop3.2.1-java8 - Trivy安全扫描结果 扫描时间: 2024-12-14 17:21
全部漏洞信息
低危漏洞:181 中危漏洞:395 高危漏洞:535 严重漏洞:179

系统OS: debian 9.11 扫描引擎: Trivy 扫描时间: 2024-12-14 17:21

docker.io/bde2020/hadoop-nodemanager:2.0.0-hadoop3.2.1-java8 (debian 9.11) (debian)
低危漏洞:162 中危漏洞:290 高危漏洞:197 严重漏洞:36
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
curl CVE-2019-5481 严重 7.52.1-5+deb9u9 7.52.1-5+deb9u10 curl: double free due to subsequent call of realloc()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
curl CVE-2019-5482 严重 7.52.1-5+deb9u9 7.52.1-5+deb9u10 curl: heap buffer overflow in function tftp_receive_packet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
dpkg CVE-2022-1664 严重 1.18.25 1.18.26 Dpkg::Source::Archive in dpkg, the Debian package management system, b ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1664

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-05-26 14:15 修改: 2022-12-03 02:19
libbsd0 CVE-2019-20367 严重 0.8.3-1 0.8.3-1+deb9u1 nlist.c in libbsd before 0.10.0 has an out-of-bounds read during a com ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20367

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-08 17:15 修改: 2023-11-07 03:09
libbz2-1.0 CVE-2019-12900 严重 1.0.6-8.1 bzip2: out-of-bounds write in function BZ2_decompress

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
libcurl3 CVE-2019-5481 严重 7.52.1-5+deb9u9 7.52.1-5+deb9u10 curl: double free due to subsequent call of realloc()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libcurl3 CVE-2019-5482 严重 7.52.1-5+deb9u9 7.52.1-5+deb9u10 curl: heap buffer overflow in function tftp_receive_packet()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libdb5.3 CVE-2019-8457 严重 5.3.28-12+deb9u1 sqlite: heap out-of-bound read in function rtreenode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libelf1 CVE-2018-16402 严重 0.168-1 0.168-1+deb9u1 elfutils: Double-free due to double decompression of sections in crafted ELF causes crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16402

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-09-03 19:29 修改: 2023-11-07 02:53
libexpat1 CVE-2022-22822 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in addBinding in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22822

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 15:29
libexpat1 CVE-2022-22823 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in build_model in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22823

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
libexpat1 CVE-2022-22824 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in defineAttribute in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22824

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
libexpat1 CVE-2022-23852 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u5 expat: Integer overflow in function XML_GetBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23852

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-24 02:15 修改: 2022-10-29 02:44
libexpat1 CVE-2022-25235 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u5 expat: Malformed 2- and 3-byte UTF-8 sequences can lead to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25235

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44
libexpat1 CVE-2022-25236 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u5 expat: Namespace-separator characters in "xmlns[:prefix]" attribute values can lead to arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25236

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-16 01:15 修改: 2023-11-07 03:44
libexpat1 CVE-2022-25315 严重 2.2.0-2+deb9u3 2.2.0-2+deb9u5 expat: Integer overflow in storeRawNames()

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25315

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
libfreetype6 CVE-2022-27404 严重 2.6.3-3.2 FreeType: Buffer overflow in sfnt_init_face

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27404

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libidn11 CVE-2017-14062 严重 1.33-1 1.33-1+deb9u1 libidn2: Integer overflow in puny_decode.c/decode_digit

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14062

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-08-31 16:29 修改: 2020-12-07 20:17
libldap-2.4-2 CVE-2022-29155 严重 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u9 openldap: OpenLDAP SQL injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56
libldap-common CVE-2022-29155 严重 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u9 openldap: OpenLDAP SQL injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56
liblz4-1 CVE-2021-3520 严重 0.0~r131-2+b1 0.0~r131-2+deb9u1 lz4: memory corruption due to an integer overflow bug caused by memmove argument

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3520

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-06-02 13:15 修改: 2024-06-06 20:25
libnss3 CVE-2019-17006 严重 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Check length of inputs for cryptographic primitives

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17006

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-22 21:15 修改: 2021-07-21 11:39
libnss3 CVE-2020-12403 严重 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: CHACHA20-POLY1305 decryption with undersized tag leads to out-of-bounds read

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12403

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-27 19:15 修改: 2023-03-24 16:15
libnss3 CVE-2021-43527 严重 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u3 nss: Memory corruption in decodeECorDsaSignature with DSA signatures (and RSA-PSS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43527

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-12-08 22:15 修改: 2023-02-23 01:40
libpng16-16 CVE-2017-12652 严重 1.6.28-1+deb9u1 libpng: does not check length of chunks against user limit

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12652

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-07-10 15:15 修改: 2023-11-07 02:38
libproxy1v5 CVE-2020-26154 严重 0.4.14-2 0.4.14-2+deb9u2 libproxy: sending more than 102400 bytes in PAC without a Content-Length present could result in buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26154

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-30 18:15 修改: 2023-11-07 03:20
libsndfile1 CVE-2017-12562 严重 1.0.27-3 1.0.27-3+deb9u3 libsndfile: Heap-based Buffer Overflow in psf_binheader_writef function in common.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12562

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-08-05 17:29 修改: 2022-12-02 22:58
libsqlite3-0 CVE-2019-8457 严重 3.16.2-5+deb9u1 sqlite: heap out-of-bound read in function rtreenode()

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libssl1.1 CVE-2022-1292 严重 1.1.0l-1~deb9u1 1.1.0l-1~deb9u6 openssl: c_rehash script allows command injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
libx11-6 CVE-2021-31535 严重 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u4 libX11: missing request length checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
libx11-data CVE-2021-31535 严重 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u4 libX11: missing request length checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
libx11-xcb1 CVE-2021-31535 严重 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u4 libX11: missing request length checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31535

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-27 13:15 修改: 2023-11-07 03:34
libxml2 CVE-2017-8872 严重 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: Out-of-bounds read in htmlParseTryOrFinish

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8872

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-05-10 05:29 修改: 2020-09-10 01:15
login CVE-2017-12424 严重 1:4.4-4.1 1:4.4-4.1+deb9u1 shadow-utils: Buffer overflow via newusers tool

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12424

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-08-04 09:29 修改: 2021-03-23 20:02
openssl CVE-2022-1292 严重 1.1.0l-1~deb9u1 1.1.0l-1~deb9u6 openssl: c_rehash script allows command injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
passwd CVE-2017-12424 严重 1:4.4-4.1 1:4.4-4.1+deb9u1 shadow-utils: Buffer overflow via newusers tool

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12424

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-08-04 09:29 修改: 2021-03-23 20:02
libdbus-1-3 CVE-2020-35512 高危 1.10.28-0+deb9u1 1.10.32-0+deb9u1 dbus: users with the same numeric UID could lead to use-after-free and undefined behaviour

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35512

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-15 17:15 修改: 2023-12-27 16:36
curl CVE-2021-22946 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u16 curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
bsdutils CVE-2016-2779 高危 1:2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
e2fslibs CVE-2022-1304 高危 1.43.4-2+deb9u1 e2fsprogs: out-of-bounds read/write via crafted filesystem

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
e2fsprogs CVE-2022-1304 高危 1.43.4-2+deb9u1 e2fsprogs: out-of-bounds read/write via crafted filesystem

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
gcc-6-base CVE-2018-12886 高危 6.3.0-18+deb9u1 gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
gnupg CVE-2018-1000858 高危 2.1.18-8~deb9u4 gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
gnupg-agent CVE-2018-1000858 高危 2.1.18-8~deb9u4 gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
gpgv CVE-2018-1000858 高危 2.1.18-8~deb9u4 gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
libexpat1 CVE-2021-45960 高危 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Large number of prefixed XML attributes on a single tag can crash libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45960

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-01 19:15 修改: 2022-10-06 19:08
libexpat1 CVE-2021-46143 高危 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in doProlog in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46143

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-06 04:15 修改: 2022-10-06 19:11
libexpat1 CVE-2022-22825 高危 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in lookup in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22825

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 14:47
libexpat1 CVE-2022-22826 高危 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in nextScaffoldPart in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22826

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:44
libexpat1 CVE-2022-22827 高危 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: Integer overflow in storeAtts in xmlparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22827

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-10-06 12:52
libexpat1 CVE-2022-23990 高危 2.2.0-2+deb9u3 2.2.0-2+deb9u4 expat: integer overflow in the doProlog function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23990

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-26 19:15 修改: 2023-11-07 03:44
libfdisk1 CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
gzip CVE-2022-1271 高危 1.6-5+b1 1.6-5+deb9u1 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libfreetype6 CVE-2022-27405 高危 2.6.3-3.2 FreeType: Segmentation violation via FNT_Size_Request

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libfreetype6 CVE-2022-27406 高危 2.6.3-3.2 Freetype: Segmentation violation via FT_Request_Size

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libgcc1 CVE-2018-12886 高危 1:6.3.0-18+deb9u1 gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libgcrypt20 CVE-2021-33560 高危 1.7.6-2+deb9u3 libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libglib2.0-0 CVE-2021-27218 高危 2.50.3-2+deb9u1 2.50.3-2+deb9u3 glib: integer overflow in g_byte_array_new_take function when called with a buffer of 4GB or more on a 64-bit platform

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27218

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31
libglib2.0-0 CVE-2021-27219 高危 2.50.3-2+deb9u1 2.50.3-2+deb9u3 glib: integer overflow in g_bytes_new function on 64-bit platforms due to an implicit cast from 64 bits to 32 bits

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27219

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-15 17:15 修改: 2023-11-07 03:31
libgmp10 CVE-2021-43618 高危 2:6.1.2+dfsg-1 2:6.1.2+dfsg-1+deb9u1 gmp: Integer overflow and resultant buffer overflow via crafted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
libgnutls30 CVE-2019-3829 高危 3.5.8-5+deb9u4 3.5.8-5+deb9u5 gnutls: use-after-free/double-free in certificate verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3829

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-03-27 18:29 修改: 2023-11-07 03:10
libgraphite2-3 CVE-2018-7999 高危 1.3.10-1 graphite2: NULL pointer dereference in Segment.cpp in libgraphite2

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7999

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-09 19:29 修改: 2023-11-07 03:01
libgssapi-krb5-2 CVE-2020-28196 高危 1.15-1+deb9u1 1.15-1+deb9u2 krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libhogweed4 CVE-2021-20305 高危 3.3-1+b2 3.3-1+deb9u1 nettle: Out of bounds memory access in signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libhogweed4 CVE-2021-3580 高危 3.3-1+b2 3.3-1+deb9u1 nettle: Remote crash in RSA decryption via manipulated ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
libicu57 CVE-2020-10531 高危 57.1-6+deb9u3 57.1-6+deb9u4 ICU: Integer overflow in UnicodeString::doAppend()

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10531

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-03-12 19:15 修改: 2023-11-07 03:14
libavahi-client3 CVE-2021-26720 高危 0.6.32-2 0.6.32-2+deb9u1 avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-26720

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-17 22:15 修改: 2022-12-06 21:52
libjpeg62-turbo CVE-2019-2201 高危 1:1.5.1-2 1:1.5.1-2+deb9u2 libjpeg-turbo: several integer overflows and subsequent segfaults when attempting to compress/decompress gigapixel images

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2201

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-11-13 18:15 修改: 2023-11-07 03:09
libjpeg62-turbo CVE-2020-13790 高危 1:1.5.1-2 1:1.5.1-2+deb9u1 libjpeg-turbo: heap-based buffer over-read in get_rgb_row() in rdppm.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13790

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-06-03 19:15 修改: 2023-11-07 03:16
libjpeg62-turbo CVE-2020-14152 高危 1:1.5.1-2 1:1.5.1-2+deb9u1 libjpeg: improper handling of max_memory_to_use setting can lead to excessive memory consumption

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14152

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-06-15 17:15 修改: 2023-02-27 18:17
libk5crypto3 CVE-2020-28196 高危 1.15-1+deb9u1 1.15-1+deb9u2 krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libkrb5-3 CVE-2020-28196 高危 1.15-1+deb9u1 1.15-1+deb9u2 krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libkrb5support0 CVE-2020-28196 高危 1.15-1+deb9u1 1.15-1+deb9u2 krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libavahi-common-data CVE-2021-26720 高危 0.6.32-2 0.6.32-2+deb9u1 avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-26720

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-17 22:15 修改: 2022-12-06 21:52
libldap-2.4-2 CVE-2020-12243 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u4 openldap: denial of service via nested boolean expressions in LDAP search filters

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24
libldap-2.4-2 CVE-2020-25692 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u5 openldap: NULL pointer dereference for unauthenticated packet in slapd

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27
libldap-2.4-2 CVE-2020-25709 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 openldap: assertion failure in Certificate List syntax validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20
libldap-2.4-2 CVE-2020-25710 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 openldap: assertion failure in CSN normalization with invalid input

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20
libldap-2.4-2 CVE-2020-36221 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36222 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Assertion failure in slapd in the saslAuthzTo validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36223 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Out-of-bounds read in Values Return Filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36224 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Invalid pointer free in the saslAuthzTo processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36225 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Double free in the saslAuthzTo processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36226 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Denial of service via length miscalculation in slap_parse_user

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36227 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Infinite loop in slapd with the cancel_extop Cancel operation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36228 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36229 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Type confusion in ad_keystring in ad.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2020-36230 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Assertion failure in ber_next_element in decode.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2 CVE-2021-27212 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u8 openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31
libavahi-common3 CVE-2021-26720 高危 0.6.32-2 0.6.32-2+deb9u1 avahi-daemon-check-dns.sh in the Debian avahi package through 0.8-4 is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-26720

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-17 22:15 修改: 2022-12-06 21:52
libldap-common CVE-2020-12243 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u4 openldap: denial of service via nested boolean expressions in LDAP search filters

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24
libldap-common CVE-2020-25692 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u5 openldap: NULL pointer dereference for unauthenticated packet in slapd

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27
libldap-common CVE-2020-25709 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 openldap: assertion failure in Certificate List syntax validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20
libldap-common CVE-2020-25710 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u6 openldap: assertion failure in CSN normalization with invalid input

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20
libldap-common CVE-2020-36221 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36222 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Assertion failure in slapd in the saslAuthzTo validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36223 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Out-of-bounds read in Values Return Filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36224 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Invalid pointer free in the saslAuthzTo processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36225 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Double free in the saslAuthzTo processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36226 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Denial of service via length miscalculation in slap_parse_user

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36227 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Infinite loop in slapd with the cancel_extop Cancel operation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36228 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36229 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Type confusion in ad_keystring in ad.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2020-36230 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u7 openldap: Assertion failure in ber_next_element in decode.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common CVE-2021-27212 高危 2.4.44+dfsg-5+deb9u3 2.4.44+dfsg-5+deb9u8 openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31
libblkid1 CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
liblzma5 CVE-2022-1271 高危 5.2.2-1.2+b1 5.2.2-1.2+deb9u1 gzip: arbitrary-file-write vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libmount1 CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libncursesw5 CVE-2022-29458 高危 6.0+20161126-1+deb9u2 ncurses: segfaulting OOB read

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libnettle6 CVE-2021-20305 高危 3.3-1+b2 3.3-1+deb9u1 nettle: Out of bounds memory access in signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libnettle6 CVE-2021-3580 高危 3.3-1+b2 3.3-1+deb9u1 nettle: Remote crash in RSA decryption via manipulated ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
libnghttp2-14 CVE-2018-1000168 高危 1.18.1-1+deb9u1 1.18.1-1+deb9u2 nghttp2: Null pointer dereference when too large ALTSVC frame is received

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000168

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-05-08 15:29 修改: 2022-08-16 13:01
libnghttp2-14 CVE-2020-11080 高危 1.18.1-1+deb9u1 1.18.1-1+deb9u2 nghttp2: overly large SETTINGS frames can lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11080

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-06-03 23:15 修改: 2023-11-07 03:14
curl CVE-2019-5436 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u10 curl: TFTP receive heap buffer overflow in tftp_receive_packet() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11
curl CVE-2020-8177 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u11 curl: Incorrect argument check can allow remote servers to overwrite local files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcairo-gobject2 CVE-2020-35492 高危 1.14.8-1 1.14.8-1+deb9u1 cairo: libreoffice slideshow aborts with stack smashing in cairo's composite_boxes

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35492

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-03-18 19:15 修改: 2023-05-03 12:15
libnss3 CVE-2019-11719 高危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Out-of-bounds read when importing curve25519 private key

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11719

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15
libnss3 CVE-2019-11729 高危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Empty or malformed p256-ECDH public keys may trigger a segmentation fault

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11729

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-07-23 14:15 修改: 2020-09-30 18:15
libnss3 CVE-2019-11745 高危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Out-of-bounds write when passing an output buffer smaller than the block size to NSC_EncryptUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11745

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-08 20:15 修改: 2021-02-19 17:22
libnss3 CVE-2019-17007 高危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Handling of Netscape Certificate Sequences in CERT_DecodeCertPackage() may crash with a NULL deref leading to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17007

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-22 21:15 修改: 2021-02-19 16:58
libnss3 CVE-2020-25648 高危 2:3.26.2-1.1+deb9u1 nss: TLS 1.3 CCS flood remote DoS Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25648

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-20 22:15 修改: 2023-11-07 03:20
libp11-kit0 CVE-2020-29361 高危 0.23.3-2 0.23.3-2+deb9u1 p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29361

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-16 14:15 修改: 2023-11-07 03:21
libcairo2 CVE-2020-35492 高危 1.14.8-1 1.14.8-1+deb9u1 cairo: libreoffice slideshow aborts with stack smashing in cairo's composite_boxes

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35492

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-03-18 19:15 修改: 2023-05-03 12:15
libcomerr2 CVE-2022-1304 高危 1.43.4-2+deb9u1 e2fsprogs: out-of-bounds read/write via crafted filesystem

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libproxy1v5 CVE-2020-25219 高危 0.4.14-2 0.4.14-2+deb9u1 libproxy: uncontrolled recursion via an infinite stream response leading to stack exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25219

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-09 21:15 修改: 2023-11-07 03:20
librsvg2-2 CVE-2017-11464 高危 2.40.16-1+b1 2.40.21-0+deb9u1 librsvg: SIGFPE is raised in box_blur_line function of rsvg-filter.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11464

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-07-19 21:29 修改: 2020-07-28 22:15
librsvg2-common CVE-2017-11464 高危 2.40.16-1+b1 2.40.21-0+deb9u1 librsvg: SIGFPE is raised in box_blur_line function of rsvg-filter.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11464

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-07-19 21:29 修改: 2020-07-28 22:15
libsasl2-2 CVE-2022-24407 高危 2.1.27~101-g0780600+dfsg-3+deb9u1 2.1.27~101-g0780600+dfsg-3+deb9u2 cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
libsasl2-modules-db CVE-2022-24407 高危 2.1.27~101-g0780600+dfsg-3+deb9u1 2.1.27~101-g0780600+dfsg-3+deb9u2 cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
libsmartcols1 CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libcups2 CVE-2020-3898 高危 2.2.1-8+deb9u4 2.2.1-8+deb9u6 cups: heap based buffer overflow in libcups's ppdFindOption() in ppd-mark.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3898

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-22 18:15 修改: 2021-07-21 11:39
libsndfile1 CVE-2017-14245 高危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: Out-of-bounds read in the function d2alaw_array()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14245

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-21 13:29 修改: 2020-10-29 19:15
libsndfile1 CVE-2017-14246 高危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: Out-of-bounds read in the function d2ulaw_array()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14246

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-21 13:29 修改: 2020-10-29 19:15
libsndfile1 CVE-2017-6892 高危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: Information disclosure via aiff_read_chanmap() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6892

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-06-12 16:29 修改: 2020-10-29 19:15
libsndfile1 CVE-2018-19662 高危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: buffer over-read in the function i2alaw_array in alaw.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19662

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-11-29 08:29 修改: 2020-10-29 19:15
libsndfile1 CVE-2021-3246 高危 1.0.27-3 1.0.27-3+deb9u2 libsndfile: Heap buffer overflow via crafted WAV file allows arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3246

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-20 15:15 修改: 2023-11-07 03:37
libsndfile1 CVE-2021-4156 高危 1.0.27-3 1.0.27-3+deb9u3 libsndfile: heap out-of-bounds read in src/flac.c in flac_buffer_copy

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4156

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-03-23 20:15 修改: 2023-09-29 13:15
curl CVE-2020-8231 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u12 curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libsqlite3-0 CVE-2018-20346 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20346

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-21 21:29 修改: 2023-11-07 02:56
libsqlite3-0 CVE-2018-20506 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20506

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-04-03 18:29 修改: 2021-07-31 08:15
libsqlite3-0 CVE-2018-8740 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: NULL pointer dereference with databases with schema corrupted with CREATE TABLE AS allows for denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-8740

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-17 00:29 修改: 2023-11-07 03:01
libsqlite3-0 CVE-2019-20218 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u3 sqlite: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20218

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-02 14:16 修改: 2022-10-07 17:56
libsqlite3-0 CVE-2019-5827 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: out-of-bounds access due to the use of 32-bit memory allocator interfaces

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5827

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-06-27 17:15 修改: 2023-11-07 03:12
libsqlite3-0 CVE-2019-9936 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9936

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
libsqlite3-0 CVE-2019-9937 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: null-pointer dereference in function fts5ChunkIterate in sqlite3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9937

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
libsqlite3-0 CVE-2020-11655 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: malformed window-function query leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11655

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-09 03:15 修改: 2022-04-08 10:34
libsqlite3-0 CVE-2020-13630 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: Use-after-free in fts3EvalNextRow in ext/fts3/fts3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13630

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libsqlite3-0 CVE-2020-13871 高危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: use-after-free in resetAccumulator in select.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13871

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-06-06 16:15 修改: 2023-11-07 03:16
libss2 CVE-2022-1304 高危 1.43.4-2+deb9u1 e2fsprogs: out-of-bounds read/write via crafted filesystem

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libssh2-1 CVE-2019-13115 高危 1.7.0-1+deb9u1 1.7.0-1+deb9u2 libssh2: integer overflow in kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c leads to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13115

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-07-16 18:15 修改: 2023-11-07 03:03
libssh2-1 CVE-2019-17498 高危 1.7.0-1+deb9u1 1.7.0-1+deb9u2 libssh2: integer overflow in SSH_MSG_DISCONNECT logic in packet.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17498

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-10-21 22:15 修改: 2023-11-07 03:06
libssl1.0.2 CVE-2021-23840 高危 1.0.2u-1~deb9u1 1.0.2u-1~deb9u4 openssl: integer overflow in CipherUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.0.2 CVE-2021-3712 高危 1.0.2u-1~deb9u1 1.0.2u-1~deb9u6 openssl: Read buffer overruns processing ASN.1 strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.0.2 CVE-2022-0778 高危 1.0.2u-1~deb9u1 1.0.2u-1~deb9u7 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
curl CVE-2020-8285 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u13 curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libssl1.1 CVE-2021-23840 高危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u3 openssl: integer overflow in CipherUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2021-3712 高危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u4 openssl: Read buffer overruns processing ASN.1 strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2022-0778 高危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u5 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
libstdc++6 CVE-2018-12886 高危 6.3.0-18+deb9u1 gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libsystemd0 CVE-2019-3843 高危 232-25+deb9u12 systemd: services with DynamicUser can create SUID/SGID binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0 CVE-2019-3844 高危 232-25+deb9u12 systemd: services with DynamicUser can get new privileges and create SGID binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0 CVE-2020-1712 高危 232-25+deb9u12 232-25+deb9u14 systemd: use-after-free when asynchronous polkit queries are performed

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1712

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-03-31 17:15 修改: 2023-11-07 03:19
libtiff5 CVE-2018-12900 高危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: Heap-based buffer overflow in the cpSeparateBufToContigBuf function resulting in a denial of service or possibly code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12900

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-06-26 22:29 修改: 2021-03-05 19:15
libtiff5 CVE-2018-17100 高危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: Integer overflow in multiply_ms in tools/ppm2tiff.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17100

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-09-16 21:29 修改: 2019-03-21 16:00
libtiff5 CVE-2019-17546 高危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: integer overflow leading to heap-based buffer overflow in tif_getimage.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17546

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
libtiff5 CVE-2020-19131 高危 4.0.8-2+deb9u4 4.0.8-2+deb9u7 libtiff: a buffer overflow via the "invertImage()" may lead to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19131

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-07 15:15 修改: 2021-12-01 14:18
libtiff5 CVE-2020-35523 高危 4.0.8-2+deb9u4 4.0.8-2+deb9u6 libtiff: Integer overflow in tif_getimage.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35523

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtiff5 CVE-2020-35524 高危 4.0.8-2+deb9u4 4.0.8-2+deb9u6 libtiff: Heap-based buffer overflow in TIFF2PDF tool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35524

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtinfo5 CVE-2022-29458 高危 6.0+20161126-1+deb9u2 ncurses: segfaulting OOB read

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libudev1 CVE-2019-3843 高危 232-25+deb9u12 systemd: services with DynamicUser can create SUID/SGID binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1 CVE-2019-3844 高危 232-25+deb9u12 systemd: services with DynamicUser can get new privileges and create SGID binaries

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1 CVE-2020-1712 高危 232-25+deb9u12 232-25+deb9u14 systemd: use-after-free when asynchronous polkit queries are performed

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1712

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-03-31 17:15 修改: 2023-11-07 03:19
libuuid1 CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libvorbis0a CVE-2017-14160 高危 1.3.5-4+deb9u2 1.3.5-4+deb9u3 libvorbis: Out-of-bounds read in the bark_noise_hybridmp function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14160

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-21 14:29 修改: 2021-11-30 22:13
libvorbis0a CVE-2018-10392 高危 1.3.5-4+deb9u2 1.3.5-4+deb9u3 libvorbis: heap buffer overflow in mapping0_forward function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10392

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-26 05:29 修改: 2021-11-30 22:13
libvorbis0a CVE-2018-10393 高危 1.3.5-4+deb9u2 1.3.5-4+deb9u3 libvorbis: stack buffer overflow in bark_noise_hybridmp function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10393

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-26 05:29 修改: 2021-11-30 21:59
libvorbisenc2 CVE-2017-14160 高危 1.3.5-4+deb9u2 1.3.5-4+deb9u3 libvorbis: Out-of-bounds read in the bark_noise_hybridmp function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14160

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-21 14:29 修改: 2021-11-30 22:13
libvorbisenc2 CVE-2018-10392 高危 1.3.5-4+deb9u2 1.3.5-4+deb9u3 libvorbis: heap buffer overflow in mapping0_forward function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10392

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-26 05:29 修改: 2021-11-30 22:13
libvorbisenc2 CVE-2018-10393 高危 1.3.5-4+deb9u2 1.3.5-4+deb9u3 libvorbis: stack buffer overflow in bark_noise_hybridmp function

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10393

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-26 05:29 修改: 2021-11-30 21:59
libcurl3 CVE-2019-5436 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u10 curl: TFTP receive heap buffer overflow in tftp_receive_packet() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11
libx11-6 CVE-2020-14363 高危 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u3 libX11: integer overflow leads to double free in locale handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17
libcurl3 CVE-2020-8177 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u11 curl: Incorrect argument check can allow remote servers to overwrite local files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libx11-data CVE-2020-14363 高危 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u3 libX11: integer overflow leads to double free in locale handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17
libcurl3 CVE-2020-8231 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u12 curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libx11-xcb1 CVE-2020-14363 高危 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u3 libX11: integer overflow leads to double free in locale handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14363

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-11 18:15 修改: 2023-11-07 03:17
libcurl3 CVE-2020-8285 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u13 curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libxml2 CVE-2017-16932 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u6 libxml2: Infinite recursion in parameter entities

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16932

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-11-23 21:29 修改: 2023-11-07 02:40
libxml2 CVE-2017-5130 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u6 chromium-browser: heap overflow in libxml2

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5130

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-02-07 23:29 修改: 2022-04-08 23:15
libxml2 CVE-2018-14404 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: NULL pointer dereference in xmlXPathCompOpEval() function in xpath.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14404

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-07-19 13:29 修改: 2020-09-10 01:15
libxml2 CVE-2019-19956 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: memory leak in xmlParseBalancedChunkMemoryRecover in parser.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19956

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07
libxml2 CVE-2019-20388 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: memory leak in xmlSchemaPreRun in xmlschemas.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20388

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-21 23:15 修改: 2023-11-09 14:44
libxml2 CVE-2020-7595 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: infinite loop in xmlStringLenDecodeEntities in some end-of-file situations

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7595

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-21 23:15 修改: 2023-11-07 03:26
libxml2 CVE-2021-3516 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u4 libxml2: Use-after-free in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3516

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-01 14:15 修改: 2023-11-07 03:38
libxml2 CVE-2021-3517 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u4 libxml2: Heap-based buffer overflow in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3517

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-19 14:15 修改: 2023-11-07 03:38
libxml2 CVE-2021-3518 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u4 libxml2: Use-after-free in xmlXIncludeDoProcess() in xinclude.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3518

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:38
libxml2 CVE-2022-23308 高危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u6 libxml2: Use-after-free of ID and IDREF attributes

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23308

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-26 05:15 修改: 2023-11-07 03:44
libcurl3 CVE-2020-8286 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u13 curl: Inferior OCSP verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
login CVE-2017-20002 高危 1:4.4-4.1 1:4.4-4.1+deb9u1 The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20002

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-03-17 06:15 修改: 2021-06-07 14:58
mount CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
ncurses-base CVE-2022-29458 高危 6.0+20161126-1+deb9u2 ncurses: segfaulting OOB read

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-bin CVE-2022-29458 高危 6.0+20161126-1+deb9u2 ncurses: segfaulting OOB read

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
openjdk-8-jdk CVE-2020-14583 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14593 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-2604 高危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jdk CVE-2020-2803 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2805 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-14583 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14593 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-2604 高危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jdk-headless CVE-2020-2803 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2805 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-14583 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14593 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-2604 高危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jre CVE-2020-2803 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2805 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-14583 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Bypass of boundary checks in nio.Buffer via concurrent access (Libraries, 8238920)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14593 高危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incomplete bounds checks in Affine Transformations (2D, 8240119)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-2604 高危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Serialization filter changes via jdk.serialFilter property modification (Serialization, 8231422)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2604

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2022-10-29 02:34
openjdk-8-jre-headless CVE-2020-2803 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect bounds checks in NIO Buffers (Libraries, 8234841)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2805 高危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect type checks in MethodType.readObject() (Libraries, 8235274)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2805

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
libcurl3 CVE-2021-22946 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u16 curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
openssl CVE-2021-23840 高危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u3 openssl: integer overflow in CipherUpdate

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl CVE-2021-3712 高危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u4 openssl: Read buffer overruns processing ASN.1 strings

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
openssl CVE-2022-0778 高危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u5 openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
curl CVE-2020-8286 高危 7.52.1-5+deb9u9 7.52.1-5+deb9u13 curl: Inferior OCSP verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
passwd CVE-2017-20002 高危 1:4.4-4.1 1:4.4-4.1+deb9u1 The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20002

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-03-17 06:15 修改: 2021-06-07 14:58
perl-base CVE-2020-10543 高危 5.24.1-3+deb9u5 5.24.1-3+deb9u7 perl: heap-based buffer overflow in regular expression compiler leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10543

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base CVE-2020-10878 高危 5.24.1-3+deb9u5 5.24.1-3+deb9u7 perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10878

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base CVE-2020-12723 高危 5.24.1-3+deb9u5 5.24.1-3+deb9u7 perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12723

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-06-05 15:15 修改: 2023-11-07 03:15
perl-base CVE-2020-16156 高危 5.24.1-3+deb9u5 perl-CPAN: Bypass of verification of signatures in CHECKSUMS files

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
util-linux CVE-2016-2779 高危 2.29.2-1+deb9u1 util-linux: runuser tty hijack via TIOCSTI ioctl

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
zlib1g CVE-2018-25032 高危 1:1.2.8.dfsg-5 1:1.2.8.dfsg-5+deb9u1 zlib: A flaw found in zlib when compressing (not decompressing) certain inputs

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
apt CVE-2020-27350 中危 1.4.9 1.4.11 APT had several integer overflows and underflows while parsing .deb pa ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libglib2.0-0 CVE-2021-28153 中危 2.50.3-2+deb9u1 2.50.3-2+deb9u3 glib: g_file_replace() with G_FILE_CREATE_REPLACE_DESTINATION creates empty target for dangling symlink

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28153

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-03-11 22:15 修改: 2023-11-07 03:32
libelf1 CVE-2018-16062 中危 0.168-1 0.168-1+deb9u1 elfutils: Heap-based buffer over-read in libdw/dwarf_getaranges.c:dwarf_getaranges() via crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16062

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-08-29 03:29 修改: 2023-11-07 02:53
libelf1 CVE-2018-18310 中危 0.168-1 0.168-1+deb9u1 elfutils: invalid memory address dereference was discovered in dwfl_segment_report_module.c in libdwfl

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18310

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-10-15 02:29 修改: 2021-11-30 21:59
libssl1.0.2 CVE-2020-1971 中危 1.0.2u-1~deb9u1 1.0.2u-1~deb9u3 openssl: EDIPARTYNAME NULL pointer de-reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.0.2 CVE-2021-23841 中危 1.0.2u-1~deb9u1 1.0.2u-1~deb9u4 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libgnutls30 CVE-2018-16868 中危 3.5.8-5+deb9u4 gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16868

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-03 14:29 修改: 2022-11-30 21:20
libgnutls30 CVE-2021-4209 中危 3.5.8-5+deb9u4 GnuTLS: Null pointer dereference in MD_UPDATE

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
libelf1 CVE-2018-18520 中危 0.168-1 0.168-1+deb9u1 elfutils: eu-size cannot handle recursive ar files

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18520

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-10-19 17:29 修改: 2021-11-30 21:59
libelf1 CVE-2018-18521 中危 0.168-1 0.168-1+deb9u1 elfutils: Divide-by-zero in arlib_add_symbols function in arlib.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18521

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-10-19 17:29 修改: 2021-11-30 21:59
libssl1.1 CVE-2019-1551 中危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u5 openssl: Integer overflow in RSAZ modular exponentiation on x86_64

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
libssl1.1 CVE-2020-1971 中危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u2 openssl: EDIPARTYNAME NULL pointer de-reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2021-23841 中危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u3 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1 CVE-2021-4160 中危 1.1.0l-1~deb9u1 openssl: Carry propagation bug in the MIPS32 and MIPS64 squaring procedure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4160

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-28 22:15 修改: 2024-06-21 19:15
libgssapi-krb5-2 CVE-2018-20217 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: Reachable assertion in the KDC using S4U2Self requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libgssapi-krb5-2 CVE-2018-5710 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libgssapi-krb5-2 CVE-2018-5729 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libgssapi-krb5-2 CVE-2021-37750 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
libsystemd0 CVE-2021-33910 中危 232-25+deb9u12 232-25+deb9u13 systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libsystemd0 CVE-2021-3997 中危 232-25+deb9u12 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libharfbuzz0b CVE-2022-33068 中危 1.4.2-1 harfbuzz: integer overflow in the component hb-ot-shape-fallback.cc

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33068

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-06-23 17:15 修改: 2023-11-07 03:48
libelf1 CVE-2019-7150 中危 0.168-1 0.168-1+deb9u1 elfutils: segmentation fault in elf64_xlatetom in libelf/elf32_xlatetom.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7150

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-01-29 00:29 修改: 2021-11-30 19:52
libelf1 CVE-2019-7665 中危 0.168-1 0.168-1+deb9u1 elfutils: heap-based buffer over-read in function elf32_xlatetom in elf32_xlatetom.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7665

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-02-09 16:29 修改: 2021-11-30 19:53
libhogweed4 CVE-2018-16869 中危 3.3-1+b2 nettle: Leaky data conversion exposing a manager oracle

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
e2fslibs CVE-2019-5188 中危 1.43.4-2+deb9u1 1.43.4-2+deb9u2 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libicu57 CVE-2020-21913 中危 57.1-6+deb9u3 57.1-6+deb9u5 icu: Use after free in pkg_createWithAssemblyCode function in tools/pkgdata/pkgdata.cpp

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21913

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-20 14:15 修改: 2021-11-29 17:20
libtiff5 CVE-2018-17000 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: NULL pointer dereference in function _TIFFmemcmp at tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-17000

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-09-13 16:29 修改: 2019-04-05 21:29
libtiff5 CVE-2018-19210 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: NULL pointer dereference in TIFFWriteDirectorySec function in tif_dirwrite.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19210

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-11-12 19:29 修改: 2023-11-07 02:55
libtiff5 CVE-2019-14973 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: integer overflow in _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14973

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-08-14 06:15 修改: 2023-11-07 03:05
libtiff5 CVE-2019-7663 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u5 libtiff: integer overflow in libtiff/tif_dirwrite.c resulting in an invalid pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7663

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-02-09 16:29 修改: 2020-08-24 17:37
libtiff5 CVE-2020-18768 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u7 libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-18768

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2023-08-22 19:15 修改: 2023-08-25 20:45
libtiff5 CVE-2020-19144 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u7 libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19144

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-09 15:15 修改: 2021-12-02 20:46
libtiff5 CVE-2022-0561 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u8 libtiff: Denial of Service via crafted TIFF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0561

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-11 18:15 修改: 2023-11-07 03:41
libtiff5 CVE-2022-0562 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u8 libtiff: Null source pointer lead to Denial of Service via crafted TIFF file

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0562

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-11 18:15 修改: 2023-11-07 03:41
libtiff5 CVE-2022-22844 中危 4.0.8-2+deb9u4 4.0.8-2+deb9u8 libtiff: out-of-bounds read in _TIFFmemcpy() in tif_unix.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22844

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-10 14:12 修改: 2022-11-16 19:07
curl CVE-2021-22876 中危 7.52.1-5+deb9u9 7.52.1-5+deb9u14 curl: Leak of authentication credentials in URL via automatic Referer

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libnettle6 CVE-2018-16869 中危 3.3-1+b2 nettle: Leaky data conversion exposing a manager oracle

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
libcomerr2 CVE-2019-5188 中危 1.43.4-2+deb9u1 1.43.4-2+deb9u2 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libapt-pkg5.0 CVE-2020-27350 中危 1.4.9 1.4.11 APT had several integer overflows and underflows while parsing .deb pa ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libudev1 CVE-2021-33910 中危 232-25+deb9u12 232-25+deb9u13 systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libudev1 CVE-2021-3997 中危 232-25+deb9u12 systemd: Uncontrolled recursion in systemd-tmpfiles when removing files

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libcups2 CVE-2019-2228 中危 2.2.1-8+deb9u4 2.2.1-8+deb9u5 In array_find of array.c, there is a possible out-of-bounds read due t ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-2228

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-12-06 23:15 修改: 2019-12-23 01:15
libjpeg62-turbo CVE-2018-1152 中危 1:1.5.1-2 1:1.5.1-2+deb9u1 libjpeg-turbo: Divide by zero allows for denial of service via crafted BMP image

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1152

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-06-18 14:29 修改: 2020-07-31 21:15
libjpeg62-turbo CVE-2018-14498 中危 1:1.5.1-2 1:1.5.1-2+deb9u1 libjpeg-turbo: heap-based buffer over-read via crafted 8-bit BMP in get_8bit_row in rdbmp.c leads to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14498

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-03-07 23:29 修改: 2023-11-07 02:52
libcups2 CVE-2020-10001 中危 2.2.1-8+deb9u4 2.2.1-8+deb9u7 cups: access to uninitialized buffer in ipp.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10001

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-02 18:15 修改: 2021-11-30 21:49
libk5crypto3 CVE-2018-20217 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: Reachable assertion in the KDC using S4U2Self requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libk5crypto3 CVE-2018-5710 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libk5crypto3 CVE-2018-5729 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libk5crypto3 CVE-2021-37750 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
libnss3 CVE-2018-12404 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Cache side-channel variant of the Bleichenbacher attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12404

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-05-02 17:29 修改: 2021-02-12 07:15
libx11-6 CVE-2020-14344 中危 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u2 libX11: Heap overflow in the X input method client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17
libnss3 CVE-2018-18508 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: NULL pointer dereference in several CMS functions resulting in a denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18508

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-22 21:15 修改: 2021-02-18 15:20
libnss3 CVE-2019-11727 中危 2:3.26.2-1.1+deb9u1 nss: PKCS#1 v1.5 signatures can be used for TLS 1.3

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-11727

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-07-23 14:15 修改: 2019-07-30 23:15
libx11-data CVE-2020-14344 中危 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u2 libX11: Heap overflow in the X input method client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17
libnss3 CVE-2020-12399 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Timing attack on DSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12399

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-09 15:15 修改: 2022-01-04 16:38
libnss3 CVE-2020-12400 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: P-384 and P-521 implementation uses a side-channel vulnerable modular inversion function

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12400

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15
libx11-xcb1 CVE-2020-14344 中危 2:1.6.4-3+deb9u1 2:1.6.4-3+deb9u2 libX11: Heap overflow in the X input method client

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14344

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-08-05 14:15 修改: 2023-11-07 03:17
libnss3 CVE-2020-12401 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: ECDSA timing attack mitigation bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12401

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-08 14:15 修改: 2023-02-20 17:15
libnss3 CVE-2020-12402 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Side channel vulnerabilities during RSA key generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12402

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-09 15:15 修改: 2023-11-07 03:15
libnss3 CVE-2020-12413 中危 2:3.26.2-1.1+deb9u1 nss: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12413

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2023-02-16 22:15 修改: 2023-02-28 19:49
libnss3 CVE-2020-6829 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u2 nss: Side channel attack on ECDSA signature generation

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-6829

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-28 12:15 修改: 2023-02-20 17:15
libnss3 CVE-2022-22747 中危 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u5 Mozilla: Crash when handling empty pkcs7 sequence

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22747

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-12-22 20:15 修改: 2022-12-29 23:17
libcups2 CVE-2022-26691 中危 2.2.1-8+deb9u4 2.2.1-8+deb9u8 cups: authorization bypass when using "local" authorization

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26691

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-05-26 18:15 修改: 2023-11-07 03:45
libp11-kit0 CVE-2020-29362 中危 0.23.3-2 0.23.3-2+deb9u1 p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29362

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-16 14:15 修改: 2021-01-11 16:50
libpcre3 CVE-2020-14155 中危 2:8.39-3 pcre: Integer overflow when parsing callout numeric arguments

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
libkrb5-3 CVE-2018-20217 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: Reachable assertion in the KDC using S4U2Self requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libkrb5-3 CVE-2018-5710 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5-3 CVE-2018-5729 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libxml2 CVE-2016-9318 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u6 libxml2: XML External Entity vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9318

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2016-11-16 00:59 修改: 2022-04-08 23:15
libxml2 CVE-2017-18258 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: Unrestricted memory usage in xz_head() function in xzlib.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18258

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-08 17:29 修改: 2020-09-10 01:15
libxml2 CVE-2017-5969 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u6 libxml2: Null pointer dereference in xmlSaveDoc implementation

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5969

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-04-11 16:59 修改: 2024-08-05 16:15
libxml2 CVE-2018-14567 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: Infinite loop caused by incorrect error detection during LZMA decompression

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14567

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-16 20:29 修改: 2020-09-10 01:15
libxml2 CVE-2020-24977 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u3 libxml2: Buffer overflow vulnerability in xmlEncodeEntitiesInternal() in entities.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24977

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-04 00:15 修改: 2023-11-07 03:20
libxml2 CVE-2021-3537 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u4 libxml2: NULL pointer dereference when post-validating mixed content parsed in recovery mode

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3537

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-05-14 20:15 修改: 2023-11-07 03:38
libxml2 CVE-2021-3541 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u5 libxml2: Exponential entity expansion attack bypasses all existing protection mechanisms

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3541

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-09 17:15 修改: 2022-03-01 18:25
libxml2 CVE-2022-29824 中危 2.9.4+dfsg1-2.2+deb9u2 2.9.4+dfsg1-2.2+deb9u7 libxml2: integer overflows in xmlBuf and xmlBuffer lead to out-of-bounds write

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29824

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-05-03 03:15 修改: 2023-11-07 03:46
libkrb5-3 CVE-2021-37750 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
librsvg2-2 CVE-2019-20446 中危 2.40.16-1+b1 2.40.21-0+deb9u1 librsvg: Resource exhaustion via crafted SVG file with nested patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20446

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-02-02 14:15 修改: 2023-11-07 03:09
libapt-pkg5.0 CVE-2020-3810 中危 1.4.9 1.4.10 Missing input validation in the ar/tar implementations of APT before v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3810

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-05-15 14:15 修改: 2023-11-07 03:23
librsvg2-common CVE-2019-20446 中危 2.40.16-1+b1 2.40.21-0+deb9u1 librsvg: Resource exhaustion via crafted SVG file with nested patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20446

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-02-02 14:15 修改: 2023-11-07 03:09
libkrb5support0 CVE-2018-20217 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: Reachable assertion in the KDC using S4U2Self requests

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libkrb5support0 CVE-2018-5710 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5support0 CVE-2018-5729 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libkrb5support0 CVE-2021-37750 中危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
e2fsprogs CVE-2019-5188 中危 1.43.4-2+deb9u1 1.43.4-2+deb9u2 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libavahi-client3 CVE-2021-3468 中危 0.6.32-2 0.6.32-2+deb9u1 avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
openjdk-8-jdk CVE-2020-14556 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14621 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14779 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14781 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk CVE-2020-14782 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk CVE-2020-14792 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk CVE-2020-14797 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk CVE-2020-14803 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jdk CVE-2020-2593 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jdk CVE-2020-2601 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jdk CVE-2020-2781 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2800 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2830 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2021-2341 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jdk CVE-2021-2369 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jdk CVE-2021-2388 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jdk CVE-2021-35550 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2021-35556 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2021-35559 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jdk CVE-2021-35561 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk CVE-2021-35564 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2021-35565 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2021-35567 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk CVE-2021-35578 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2021-35586 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2022-21248 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jdk CVE-2022-21282 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jdk CVE-2022-21283 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jdk CVE-2022-21293 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jdk CVE-2022-21294 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jdk CVE-2022-21296 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jdk CVE-2022-21299 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2022-21305 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk CVE-2022-21340 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk CVE-2022-21341 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk CVE-2022-21349 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jdk CVE-2022-21360 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jdk CVE-2022-21365 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jdk CVE-2022-21426 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jdk CVE-2022-21434 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2022-21443 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2022-21476 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jdk CVE-2022-21496 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
curl CVE-2021-22947 中危 7.52.1-5+deb9u9 7.52.1-5+deb9u16 curl: Server responses received before STARTTLS processed after TLS handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
libavahi-common-data CVE-2021-3468 中危 0.6.32-2 0.6.32-2+deb9u1 avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
glib-networking CVE-2020-13645 中危 2.50.0-1+b1 2.50.0-1+deb9u1 glib-networking: GTlsClientConnection silently ignores unset server identity

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13645

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-28 12:15 修改: 2023-11-07 03:16
libexpat1 CVE-2022-25313 中危 2.2.0-2+deb9u3 2.2.0-2+deb9u5 expat: Stack exhaustion in doctype parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25313

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-02-18 05:15 修改: 2023-11-07 03:44
libsndfile1 CVE-2017-14634 中危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: Divide-by-zero in the double64_init() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14634

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-21 07:29 修改: 2020-10-29 19:15
openjdk-8-jdk-headless CVE-2020-14556 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14621 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14779 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14781 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless CVE-2020-14782 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless CVE-2020-14792 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless CVE-2020-14797 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless CVE-2020-14803 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jdk-headless CVE-2020-2593 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jdk-headless CVE-2020-2601 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jdk-headless CVE-2020-2781 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2800 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2830 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2021-2341 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jdk-headless CVE-2021-2369 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jdk-headless CVE-2021-2388 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jdk-headless CVE-2021-35550 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2021-35556 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2021-35559 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jdk-headless CVE-2021-35561 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk-headless CVE-2021-35564 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2021-35565 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2021-35567 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jdk-headless CVE-2021-35578 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2021-35586 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2022-21248 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jdk-headless CVE-2022-21282 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jdk-headless CVE-2022-21283 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jdk-headless CVE-2022-21293 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jdk-headless CVE-2022-21294 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jdk-headless CVE-2022-21296 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jdk-headless CVE-2022-21299 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2022-21305 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk-headless CVE-2022-21340 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk-headless CVE-2022-21341 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jdk-headless CVE-2022-21349 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jdk-headless CVE-2022-21360 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jdk-headless CVE-2022-21365 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jdk-headless CVE-2022-21426 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jdk-headless CVE-2022-21434 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2022-21443 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2022-21476 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jdk-headless CVE-2022-21496 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
libsndfile1 CVE-2018-19661 中危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: buffer over-read in the function i2ulaw_array in ulaw.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19661

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-11-29 08:29 修改: 2020-10-29 19:15
libsndfile1 CVE-2018-19758 中危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: heap-based buffer over-read at wav.c in wav_write_header

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19758

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-11-30 03:29 修改: 2020-10-29 19:15
libsndfile1 CVE-2019-3832 中危 1.0.27-3 1.0.27-3+deb9u1 libsndfile: incomplete fix for CVE-2018-19758 still allow to read beyond buffer limits

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3832

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-03-21 16:01 修改: 2023-03-01 18:02
libavahi-common3 CVE-2021-3468 中危 0.6.32-2 0.6.32-2+deb9u1 avahi: Local DoS by event-busy-loop from writing long lines to /run/avahi-daemon/socket

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3468

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-02 16:15 修改: 2023-06-22 02:15
libflac8 CVE-2017-6888 中危 1.3.2-1 1.3.2-2+deb9u1 flac: Memory leak in src/libFLAC/stream_decoder.c:read_metadata_vorbiscomment_()

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6888

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-25 21:29 修改: 2023-11-07 02:49
openjdk-8-jre CVE-2020-14556 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14621 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14779 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14781 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre CVE-2020-14782 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre CVE-2020-14792 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre CVE-2020-14797 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre CVE-2020-14803 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jre CVE-2020-2593 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jre CVE-2020-2601 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jre CVE-2020-2781 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2800 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2830 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2021-2341 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jre CVE-2021-2369 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jre CVE-2021-2388 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jre CVE-2021-35550 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2021-35556 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2021-35559 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jre CVE-2021-35561 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre CVE-2021-35564 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2021-35565 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2021-35567 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre CVE-2021-35578 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2021-35586 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2022-21248 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jre CVE-2022-21282 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jre CVE-2022-21283 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jre CVE-2022-21293 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jre CVE-2022-21294 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jre CVE-2022-21296 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jre CVE-2022-21299 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2022-21305 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre CVE-2022-21340 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre CVE-2022-21341 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre CVE-2022-21349 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jre CVE-2022-21360 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jre CVE-2022-21365 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jre CVE-2022-21426 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jre CVE-2022-21434 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2022-21443 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2022-21476 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jre CVE-2022-21496 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
libflac8 CVE-2020-0499 中危 1.3.2-1 1.3.2-2+deb9u1 flac: out-of-bounds read can lead to denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-0499

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-15 16:15 修改: 2023-11-07 03:13
libflac8 CVE-2021-0561 中危 1.3.2-1 1.3.2-2+deb9u2 flac: out of bound write in append_to_verify_fifo_interleaved_ of stream_encoder.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-0561

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-22 11:15 修改: 2023-11-07 03:27
glib-networking-common CVE-2020-13645 中危 2.50.0-1 2.50.0-1+deb9u1 glib-networking: GTlsClientConnection silently ignores unset server identity

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13645

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-28 12:15 修改: 2023-11-07 03:16
libcurl3 CVE-2021-22876 中危 7.52.1-5+deb9u9 7.52.1-5+deb9u14 curl: Leak of authentication credentials in URL via automatic Referer

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libcurl3 CVE-2021-22947 中危 7.52.1-5+deb9u9 7.52.1-5+deb9u16 curl: Server responses received before STARTTLS processed after TLS handshake

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
openjdk-8-jre-headless CVE-2020-14556 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Incorrect handling of access control context in ForkJoinPool (Libraries, 8237117)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14621 中危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: XML validation manipulation due to incomplete application of the use-grammar-pool-only feature (JAXP, 8242136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14621

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14779 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: High memory usage during deserialization of Proxy class with many interfaces (Serialization, 8236862)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14779

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14781 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Credentials sent over unencrypted LDAP connection (JNDI, 8237990)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless CVE-2020-14782 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Certificate blacklist bypass via alternate certificate encodings (Libraries, 8237995)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14782

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless CVE-2020-14792 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Integer overflow leading to out-of-bounds access (Hotspot, 8241114)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14792

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless CVE-2020-14797 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Incomplete check for invalid characters in URI to path conversion (Libraries, 8242685)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14797

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless CVE-2020-14803 中危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Race condition in NIO Buffer boundary checks (Libraries, 8244136)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14803

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2021-02-24 21:42
openjdk-8-jre-headless CVE-2020-2593 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect isBuiltinStreamHandler check causing URL normalization issues (Networking, 8228548)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2593

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 21:00
openjdk-8-jre-headless CVE-2020-2601 中危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Use of unsafe RSA-MD5 checksum in Kerberos TGS (Security, 8229951)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2601

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:49
openjdk-8-jre-headless CVE-2020-2781 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Re-use of single TLS session for new connections (JSSE, 8234408)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2781

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2800 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: CRLF injection into HTTP headers in HttpServer (Lightweight HTTP Server, 8234825)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2800

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2830 中危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2830

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2021-2341 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: FTP PASV command response can cause FtpClient to connect to arbitrary host (Networking, 8258432)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-11-07 03:32
openjdk-8-jre-headless CVE-2021-2369 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect verification of JAR files with multiple MANIFEST.MF files (Library, 8260967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2369

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2023-08-03 20:15
openjdk-8-jre-headless CVE-2021-2388 中危 8u232-b09-1~deb9u1 8u302-b08-1~deb9u1 OpenJDK: Incorrect comparison during range check elimination (Hotspot, 8264066)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2388

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-07-21 15:15 修改: 2022-09-23 14:00
openjdk-8-jre-headless CVE-2021-35550 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35550

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2021-35556 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFParser (Swing, 8265167)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35556

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2021-35559 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in RTFReader (Swing, 8265580)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35559

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-07-03 01:36
openjdk-8-jre-headless CVE-2021-35561 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in HashMap and HashSet (Utility, 8266097)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35561

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre-headless CVE-2021-35564 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Certificates with end dates too far in the future can corrupt keystore (Keytool, 8266137)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35564

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2021-35565 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Loop in HttpsServer triggered during TLS session close (JSSE, 8254967)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35565

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2021-35567 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incorrect principal selection when using Kerberos Constrained Delegation (Libraries, 8266689)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35567

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2023-11-07 03:36
openjdk-8-jre-headless CVE-2021-35578 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Unexpected exception raised during TLS handshake (JSSE, 8267729)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2021-35586 中危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8267735)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35586

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2022-21248 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete deserialization class filtering in ObjectInputStream (Serialization, 8264934)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21248

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:09
openjdk-8-jre-headless CVE-2022-21282 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient URI checks in the XSLT TransformerImpl (JAXP, 8270492)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21282

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 18:06
openjdk-8-jre-headless CVE-2022-21283 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unexpected exception thrown in regex Pattern (Libraries, 8268813)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21283

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-02-16 17:28
openjdk-8-jre-headless CVE-2022-21293 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incomplete checks of StringBuffer and StringBuilder during deserialization (Libraries, 8270392)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21293

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:43
openjdk-8-jre-headless CVE-2022-21294 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect IdentityHashMap size checks during deserialization (Libraries, 8270416)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21294

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-12 22:13
openjdk-8-jre-headless CVE-2022-21296 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Incorrect access checks in XMLEntityManager (JAXP, 8270498)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21296

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:44
openjdk-8-jre-headless CVE-2022-21299 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Infinite loop related to incorrect handling of newlines in XMLEntityScanner (JAXP, 8270646)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21299

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2022-21305 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Array indexing issues in LIRGenerator (Hotspot, 8272014)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21305

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre-headless CVE-2022-21340 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive resource use when reading JAR manifest attributes (Libraries, 8272026)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21340

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre-headless CVE-2022-21341 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Insufficient checks when deserializing exceptions in ObjectInputStream (Serialization, 8272236)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21341

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:15
openjdk-8-jre-headless CVE-2022-21349 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Unaligned memory access in ContextualGlyphSubstProc2 (2D, 8273748)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21349

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2022-09-29 15:56
openjdk-8-jre-headless CVE-2022-21360 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Excessive memory allocation in BMPImageReader (ImageIO, 8273756)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21360

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:11
openjdk-8-jre-headless CVE-2022-21365 中危 8u232-b09-1~deb9u1 8u322-b06-1~deb9u1 OpenJDK: Integer overflow in BMPImageReader (ImageIO, 8273838)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21365

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-19 12:15 修改: 2024-01-26 16:12
openjdk-8-jre-headless CVE-2022-21426 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Unbounded memory allocation when compiling crafted XPath expressions (JAXP, 8270504)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21426

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2023-04-27 17:53
openjdk-8-jre-headless CVE-2022-21434 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Improper object-to-string conversion in AnnotationInvocationHandler (Libraries, 8277672)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21434

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2022-21443 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Missing check for negative ObjectIdentifier (Libraries, 8275151)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21443

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2022-21476 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: Defective secure validation in Apache Santuario (Libraries, 8278008)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21476

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-02-23 20:03
openjdk-8-jre-headless CVE-2022-21496 中危 8u232-b09-1~deb9u1 8u332-ga-1~deb9u1 OpenJDK: URI parsing inconsistencies (JNDI, 8278972)

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-21496

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-04-19 21:15 修改: 2024-06-21 19:15
libfreetype6 CVE-2020-15999 中危 2.6.3-3.2 2.6.3-3.2+deb9u2 freetype: Heap-based buffer overflow due to integer truncation in Load_SBit_Png

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15999

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-11-03 03:15 修改: 2024-07-25 17:25
glib-networking-services CVE-2020-13645 中危 2.50.0-1+b1 2.50.0-1+deb9u1 glib-networking: GTlsClientConnection silently ignores unset server identity

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13645

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-28 12:15 修改: 2023-11-07 03:16
apt CVE-2020-3810 中危 1.4.9 1.4.10 Missing input validation in the ar/tar implementations of APT before v ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3810

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-05-15 14:15 修改: 2023-11-07 03:23
libgcrypt20 CVE-2019-13627 中危 1.7.6-2+deb9u3 libgcrypt: ECDSA timing attack allowing private key leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13627

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-09-25 15:15 修改: 2021-07-21 11:39
openssl CVE-2019-1551 中危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u5 openssl: Integer overflow in RSAZ modular exponentiation on x86_64

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
openssl CVE-2020-1971 中危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u2 openssl: EDIPARTYNAME NULL pointer de-reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
openssl CVE-2021-23841 中危 1.1.0l-1~deb9u1 1.1.0l-1~deb9u3 openssl: NULL pointer dereference in X509_issuer_and_serial_hash()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl CVE-2021-4160 中危 1.1.0l-1~deb9u1 openssl: Carry propagation bug in the MIPS32 and MIPS64 squaring procedure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4160

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2022-01-28 22:15 修改: 2024-06-21 19:15
libsqlite3-0 CVE-2019-16168 中危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16168

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-09-09 17:15 修改: 2023-11-07 03:05
libsqlite3-0 CVE-2019-19645 中危 3.16.2-5+deb9u1 sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14
libsqlite3-0 CVE-2020-13434 中危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: integer overflow in sqlite3_str_vappendf function in printf.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13434

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-24 22:15 修改: 2023-11-07 03:16
libsqlite3-0 CVE-2020-13631 中危 3.16.2-5+deb9u1 sqlite: Virtual table can be renamed into the name of one of its shadow tables

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libsqlite3-0 CVE-2020-13632 中危 3.16.2-5+deb9u1 3.16.2-5+deb9u2 sqlite: NULL pointer dereference in ext/fts3/fts3_snippet.c via a crafted matchinfo() query

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13632

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libgcrypt20 CVE-2021-40528 中危 1.7.6-2+deb9u3 1.7.6-2+deb9u4 libgcrypt: ElGamal implementation allows plaintext recovery

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
tar CVE-2018-20482 中危 1.29b-1.1 1.29b-1.1+deb9u1 tar: Infinite read loop in sparse_dump_region function in sparse.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20482

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-12-26 18:29 修改: 2021-11-30 19:52
libss2 CVE-2019-5188 中危 1.43.4-2+deb9u1 1.43.4-2+deb9u2 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libdbus-1-3 CVE-2020-12049 中危 1.10.28-0+deb9u1 1.10.32-0+deb9u1 dbus: denial of service via file descriptor leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12049

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-06-08 17:15 修改: 2023-06-12 07:15
openjdk-8-jdk-headless CVE-2020-2590 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jdk-headless CVE-2020-2654 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jdk-headless CVE-2020-2659 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jdk-headless CVE-2020-2754 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2755 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2756 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2757 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2020-2773 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk-headless CVE-2021-2163 低危 8u232-b09-1~deb9u1 8u292-b10-0+deb9u1 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jdk-headless CVE-2021-35588 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk-headless CVE-2021-35603 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
libfdisk1 CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libsmartcols1 CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcairo-gobject2 CVE-2019-6462 低危 1.14.8-1 cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libcurl3 CVE-2020-8284 低危 7.52.1-5+deb9u9 7.52.1-5+deb9u13 curl: FTP PASV command response can cause curl to connect to arbitrary host

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
libcurl3 CVE-2021-22898 低危 7.52.1-5+deb9u9 7.52.1-5+deb9u15 curl: TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
libcurl3 CVE-2021-22924 低危 7.52.1-5+deb9u9 7.52.1-5+deb9u15 curl: Bad connection reuse due to flawed path name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
curl CVE-2021-22924 低危 7.52.1-5+deb9u9 7.52.1-5+deb9u15 curl: Bad connection reuse due to flawed path name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcairo2 CVE-2017-7475 低危 1.14.8-1 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
libcairo2 CVE-2017-9814 低危 1.14.8-1 cairo: Out-of-bounds read due to mishandling of unexpected malloc(0) call

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9814

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-07-17 13:18 修改: 2023-11-07 02:50
libtinfo5 CVE-2018-19211 低危 6.0+20161126-1+deb9u2 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
libtinfo5 CVE-2019-17594 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libtinfo5 CVE-2019-17595 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libgbm1 CVE-2019-5068 低危 13.0.6-1+b2 mesa: security bypass in 3D library graphics

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libk5crypto3 CVE-2017-11462 低危 1.15-1+deb9u1 krb5: Automatic sec context deletion could lead to double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
liblz4-1 CVE-2019-17543 低危 0.0~r131-2+b1 lz4: heap-based buffer overflow in LZ4_write32

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
libk5crypto3 CVE-2018-5730 低危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libegl1-mesa CVE-2019-5068 低危 13.0.6-1+b2 mesa: security bypass in 3D library graphics

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libudev1 CVE-2018-16888 低危 232-25+deb9u12 systemd: kills privileged process if unprivileged PIDFile was tampered

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16888

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-01-14 22:29 修改: 2023-11-07 02:53
libudev1 CVE-2018-6954 低危 232-25+deb9u12 systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00
libmount1 CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libuuid1 CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcairo2 CVE-2018-18064 低危 1.14.8-1 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
libncursesw5 CVE-2018-19211 低危 6.0+20161126-1+deb9u2 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
libncursesw5 CVE-2019-17594 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libncursesw5 CVE-2019-17595 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libcairo2 CVE-2019-6461 低危 1.14.8-1 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libcairo2 CVE-2019-6462 低危 1.14.8-1 cairo: infinite loop in the function _arc_error_normalized in the file cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6462

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libwayland-egl1-mesa CVE-2019-5068 低危 13.0.6-1+b2 mesa: security bypass in 3D library graphics

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libgdk-pixbuf2.0-0 CVE-2017-2870 低危 2.36.5-2+deb9u2 gdk-pixbuf2: Integer overflow in tiff_image_parse function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2870

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-05 18:29 修改: 2022-06-07 17:39
libkrb5-3 CVE-2017-11462 低危 1.15-1+deb9u1 krb5: Automatic sec context deletion could lead to double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libkrb5-3 CVE-2018-5730 低危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libgdk-pixbuf2.0-0 CVE-2017-6311 低危 2.36.5-2+deb9u2 gdk-pixbuf: NULL pointer dereference in gdk-pixbuf-thumbnailer

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6311

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-03-10 02:59 修改: 2023-11-07 02:49
libgdk-pixbuf2.0-common CVE-2017-2870 低危 2.36.5-2+deb9u2 gdk-pixbuf2: Integer overflow in tiff_image_parse function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-2870

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-05 18:29 修改: 2022-06-07 17:39
libgdk-pixbuf2.0-common CVE-2017-6311 低危 2.36.5-2+deb9u2 gdk-pixbuf: NULL pointer dereference in gdk-pixbuf-thumbnailer

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-6311

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-03-10 02:59 修改: 2023-11-07 02:49
libgl1-mesa-glx CVE-2019-5068 低危 13.0.6-1+b2 mesa: security bypass in 3D library graphics

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libglapi-mesa CVE-2019-5068 低危 13.0.6-1+b2 mesa: security bypass in 3D library graphics

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5068

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-11-05 22:15 修改: 2022-06-21 19:23
libkrb5support0 CVE-2017-11462 低危 1.15-1+deb9u1 krb5: Automatic sec context deletion could lead to double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libxkbcommon0 CVE-2018-15853 低危 0.7.1-2~deb9u1 libxkbcommon: Endless recursion in xkbcomp/expr.c resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15853

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15854 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15854

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15855 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference when handling xkb_geometry

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15855

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
openjdk-8-jdk CVE-2020-14577 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14578 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14579 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14581 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Information disclosure in color management (2D, 8238002)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk CVE-2020-14796 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk CVE-2020-14798 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk CVE-2020-2583 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jdk CVE-2020-2590 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jre CVE-2020-14577 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14578 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14579 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14581 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Information disclosure in color management (2D, 8238002)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre CVE-2020-14796 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre CVE-2020-14798 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre CVE-2020-2583 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jre CVE-2020-2590 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jre CVE-2020-2654 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jre CVE-2020-2659 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jre CVE-2020-2754 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2755 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2756 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2757 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2020-2773 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre CVE-2021-2163 低危 8u232-b09-1~deb9u1 8u292-b10-0+deb9u1 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jre CVE-2021-35588 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre CVE-2021-35603 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2020-2654 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jdk CVE-2020-2659 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jdk CVE-2020-2754 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2755 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2756 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2757 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2020-2773 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jdk CVE-2021-2163 低危 8u232-b09-1~deb9u1 8u292-b10-0+deb9u1 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jdk CVE-2021-35588 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jdk CVE-2021-35603 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
libxkbcommon0 CVE-2018-15856 低危 0.7.1-2~deb9u1 libxkbcommon: Infinite loop when reaching EOL unexpectedly resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15856

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-10-03 00:03
libxkbcommon0 CVE-2018-15857 低危 0.7.1-2~deb9u1 libxkbcommon: Invalid free in ExprAppendMultiKeysymList resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15857

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15858 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference when handling invalid aliases in CopyKeyAliasesToKeymap resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15858

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-03-19 17:34
libxkbcommon0 CVE-2018-15859 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference when parsing invalid atoms in ExprResolveLhs resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15859

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15861 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference in ExprResolveLhs resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15861

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15862 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference in LookupModMask resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15862

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15863 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference in ResolveStateAndPredicate resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15863

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libxkbcommon0 CVE-2018-15864 低危 0.7.1-2~deb9u1 libxkbcommon: NULL pointer dereference in resolve_keysym resulting in a crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15864

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-08-25 21:29 修改: 2019-08-06 17:15
libkrb5support0 CVE-2018-5730 低危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
gnupg CVE-2018-9234 低危 2.1.18-8~deb9u4 GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
gnupg CVE-2019-14855 低危 2.1.18-8~deb9u4 gnupg2: OpenPGP Key Certification Forgeries with SHA-1

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libcroco3 CVE-2017-8834 低危 0.6.11-3 libcroco: Memory allocation failure in the cr_tknzr_parse_comment function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8834

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-06-12 06:29 修改: 2020-08-19 19:17
libcroco3 CVE-2017-8871 低危 0.6.11-3 libcroco: Infinite loop in the cr_parser_parse_selector_core function

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-8871

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-06-12 06:29 修改: 2020-08-19 19:12
libelf1 CVE-2018-16403 低危 0.168-1 elfutils: Heap-based buffer over-read in libdw/dwarf_getabbrev.c and libwd/dwarf_hasattr.c causes crash

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16403

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-09-03 19:29 修改: 2023-11-07 02:53
libelf1 CVE-2019-7149 低危 0.168-1 elfutils: heap-based buffer over-read in read_srclines in dwarf_getsrclines.c in libdw

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-7149

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-01-29 00:29 修改: 2019-06-10 17:29
libcroco3 CVE-2020-12825 低危 0.6.11-3 libcroco: Stack overflow in function cr_parser_parse_any_core in cr-parser.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12825

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-05-12 18:15 修改: 2022-10-27 01:04
libssl1.0.2 CVE-2020-1968 低危 1.0.2u-1~deb9u1 1.0.2u-1~deb9u2 openssl: Information exposure when DH secret are reused across multiple TLS connections

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1968

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-09-09 14:15 修改: 2022-11-21 19:48
bsdutils CVE-2021-37600 低危 1:2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
gnupg-agent CVE-2018-9234 低危 2.1.18-8~deb9u4 GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
gnupg-agent CVE-2019-14855 低危 2.1.18-8~deb9u4 gnupg2: OpenPGP Key Certification Forgeries with SHA-1

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
coreutils CVE-2016-2781 低危 8.26-3 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libnss3 CVE-2018-12384 低危 2:3.26.2-1.1+deb9u1 nss: ServerHello.random is all zeros when handling a v2-compatible ClientHello

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12384

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-04-29 15:29 修改: 2020-08-24 17:37
libcups2 CVE-2019-8842 低危 2.2.1-8+deb9u4 2.2.1-8+deb9u6 A buffer overflow was addressed with improved bounds checking. This is ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8842

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-27 20:15 修改: 2023-11-07 03:13
gpgv CVE-2018-9234 低危 2.1.18-8~deb9u4 GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
libgssapi-krb5-2 CVE-2017-11462 低危 1.15-1+deb9u1 krb5: Automatic sec context deletion could lead to double-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libgssapi-krb5-2 CVE-2018-5730 低危 1.15-1+deb9u1 1.15-1+deb9u3 krb5: DN container check bypass by supplying special crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libblkid1 CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
gpgv CVE-2019-14855 低危 2.1.18-8~deb9u4 gnupg2: OpenPGP Key Certification Forgeries with SHA-1

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
curl CVE-2020-8284 低危 7.52.1-5+deb9u9 7.52.1-5+deb9u13 curl: FTP PASV command response can cause curl to connect to arbitrary host

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
login CVE-2018-7169 低危 1:4.4-4.1 shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
curl CVE-2021-22898 低危 7.52.1-5+deb9u9 7.52.1-5+deb9u15 curl: TELNET stack contents disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
mount CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libcairo-gobject2 CVE-2017-7475 低危 1.14.8-1 cairo: NULL pointer dereference with a crafted font file

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7475

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-05-19 20:29 修改: 2023-02-12 23:30
ncurses-base CVE-2018-19211 低危 6.0+20161126-1+deb9u2 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-base CVE-2019-17594 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-base CVE-2019-17595 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libsystemd0 CVE-2018-16888 低危 232-25+deb9u12 systemd: kills privileged process if unprivileged PIDFile was tampered

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16888

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-01-14 22:29 修改: 2023-11-07 02:53
ncurses-bin CVE-2018-19211 低危 6.0+20161126-1+deb9u2 ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
openjdk-8-jre-headless CVE-2020-14577 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14578 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14579 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14581 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Information disclosure in color management (2D, 8238002)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jre-headless CVE-2020-14796 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless CVE-2020-14798 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jre-headless CVE-2020-2583 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jre-headless CVE-2020-2590 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Improper checks of SASL message properties in GssKrb5Base (Security, 8226352)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2590

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-02-26 19:38
openjdk-8-jre-headless CVE-2020-2654 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Excessive memory usage in OID processing in X.509 certificate parsing (Libraries, 8234037)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2654

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-03-04 20:47
openjdk-8-jre-headless CVE-2020-2659 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incomplete enforcement of maxDatagramSockets limit in DatagramChannelImpl (Networking, 8231795)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2659

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-12-06 15:07
openjdk-8-jre-headless CVE-2020-2754 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2754

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2755 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of empty string nodes in regular expression Parser (Scripting, 8223904)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2755

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2756 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Incorrect handling of references to uninitialized class descriptors during deserialization (Serialization, 8224541)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2756

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2757 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Uncaught InstantiationError exception in ObjectStreamClass (Serialization, 8224549)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2757

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2020-2773 低危 8u232-b09-1~deb9u1 8u252-b09-1~deb9u1 OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory (Security, 8231415)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2773

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-04-15 14:15 修改: 2023-11-07 03:21
openjdk-8-jre-headless CVE-2021-2163 低危 8u232-b09-1~deb9u1 8u292-b10-0+deb9u1 OpenJDK: Incomplete enforcement of JAR signing disabled algorithms (Libraries, 8249906)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-2163

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-04-22 22:15 修改: 2023-11-07 03:32
openjdk-8-jre-headless CVE-2021-35588 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Incomplete validation of inner class references in ClassFileParser (Hotspot, 8268071)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35588

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:16 修改: 2024-06-21 19:15
openjdk-8-jre-headless CVE-2021-35603 低危 8u232-b09-1~deb9u1 8u312-b07-1~deb9u1 OpenJDK: Non-constant comparison during TLS handshakes (JSSE, 8269618)

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35603

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2021-10-20 11:17 修改: 2024-06-21 19:15
ncurses-bin CVE-2019-17594 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-bin CVE-2019-17595 低危 6.0+20161126-1+deb9u2 ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libsystemd0 CVE-2018-6954 低危 232-25+deb9u12 systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00
libcairo-gobject2 CVE-2017-9814 低危 1.14.8-1 cairo: Out-of-bounds read due to mishandling of unexpected malloc(0) call

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9814

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2017-07-17 13:18 修改: 2023-11-07 02:50
libcairo-gobject2 CVE-2018-18064 低危 1.14.8-1 cairo: Stack-based buffer overflow via parsing of crafted WebKitGTK+ document

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-18064

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2018-10-08 18:29 修改: 2023-11-07 02:54
libcairo-gobject2 CVE-2019-6461 低危 1.14.8-1 cairo: assertion problem in _cairo_arc_in_direction in cairo-arc.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-6461

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2019-01-16 18:29 修改: 2023-11-07 03:13
libsepol1 CVE-2021-36084 低危 2.6-2 libsepol: use-after-free in __cil_verify_classperms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1 CVE-2021-36085 低危 2.6-2 libsepol: use-after-free in __cil_verify_classperms()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1 CVE-2021-36086 低危 2.6-2 libsepol: use-after-free in cil_reset_classpermission()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1 CVE-2021-36087 低危 2.6-2 libsepol: heap-based buffer overflow in ebitmap_match_any()

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
passwd CVE-2018-7169 低危 1:4.4-4.1 shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
openjdk-8-jdk-headless CVE-2020-14577 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: HostnameChecker does not ensure X.509 certificate names are in normalized form (JSSE, 8237592)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14577

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14578 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerInputStream (Libraries, 8237731)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14578

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14579 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Unexpected exception raised by DerValue.equals() (Libraries, 8237736)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14579

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14581 低危 8u232-b09-1~deb9u1 8u265-b01-0+deb9u1 OpenJDK: Information disclosure in color management (2D, 8238002)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14581

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-07-15 18:15 修改: 2023-11-07 03:17
openjdk-8-jdk-headless CVE-2020-14796 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing permission check in path to URI conversion (Libraries, 8242680)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14796

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
openjdk-8-jdk-headless CVE-2020-14798 低危 8u232-b09-1~deb9u1 8u272-b10-0+deb9u1 OpenJDK: Missing maximum length check in WindowsNativeDispatcher.asNativeBuffer() (Libraries, 8242695)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14798

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-10-21 15:15 修改: 2022-05-13 14:57
util-linux CVE-2021-37600 低危 2.29.2-1+deb9u1 util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
openjdk-8-jdk-headless CVE-2020-2583 低危 8u232-b09-1~deb9u1 8u242-b08-1~deb9u1 OpenJDK: Incorrect exception processing during deserialization in BeanContextSupport (Serialization, 8224909)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-2583

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 2020-01-15 17:15 修改: 2021-07-21 11:39
openjdk-8-jdk-headless DLA-2412-2 未知 8u232-b09-1~deb9u1 8u275-b01-1~deb9u1 openjdk-8 - regression update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssl1.0.2 DLA-2761-1 未知 1.0.2u-1~deb9u1 1.0.2u-1~deb9u5 openssl1.0 - security update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libnss3 DLA-2836-2 未知 2:3.26.2-1.1+deb9u1 2:3.26.2-1.1+deb9u4 nss - regression update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
debian-archive-keyring DLA-2948-1 未知 2017.5+deb9u1 2017.5+deb9u2 debian-archive-keyring - security update

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openjdk-8-jre DLA-2412-2 未知 8u232-b09-1~deb9u1 8u275-b01-1~deb9u1 openjdk-8 - regression update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30 DLA-2759-1 未知 3.5.8-5+deb9u4 3.5.8-5+deb9u6 gnutls28 - security update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata DLA-2424-1 未知 2019c-0+deb9u1 2020d-0+deb9u1 tzdata - new upstream version

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata DLA-2509-1 未知 2019c-0+deb9u1 2020e-0+deb9u1 tzdata - new upstream version

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata DLA-2542-1 未知 2019c-0+deb9u1 2021a-0+deb9u1 tzdata - new upstream version

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata DLA-2797-1 未知 2019c-0+deb9u1 2021a-0+deb9u2 tzdata - new upstream version

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata DLA-2963-1 未知 2019c-0+deb9u1 2021a-0+deb9u3 tzdata - new timezone database

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata DLA-3051-1 未知 2019c-0+deb9u1 2021a-0+deb9u4 tzdata - new timezone database

漏洞详情:

镜像层: sha256:7948c3e5790c6df89fe48041fabd8f1c576d4bb7c869183e03b9e3873a5f33d9

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ca-certificates DLA-2593-1 未知 20161130+nmu1+deb9u1 20200601~deb9u2 ca-certificates - whitelist Symantec CA

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openjdk-8-jre-headless DLA-2412-2 未知 8u232-b09-1~deb9u1 8u275-b01-1~deb9u1 openjdk-8 - regression update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
openjdk-8-jdk DLA-2412-2 未知 8u232-b09-1~deb9u1 8u275-b01-1~deb9u1 openjdk-8 - regression update

漏洞详情:

镜像层: sha256:741e7e800bd293aae175e895132ed848d46df85b916ebf8a865bee6159768bf0

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
Java (jar)
低危漏洞:19 中危漏洞:105 高危漏洞:338 严重漏洞:143
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
com.fasterxml.jackson.core:jackson-databind CVE-2017-15095 严重 2.4.0 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind CVE-2017-15095 严重 2.4.0 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind CVE-2017-15095 严重 2.4.0 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind CVE-2017-17485 严重 2.4.0 2.9.4, 2.8.11, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind CVE-2017-17485 严重 2.4.0 2.9.4, 2.8.11, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind CVE-2017-17485 严重 2.4.0 2.9.4, 2.8.11, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind CVE-2017-7525 严重 2.4.0 2.6.7.1, 2.7.9.1, 2.8.9 jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7525

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:50
com.fasterxml.jackson.core:jackson-databind CVE-2017-7525 严重 2.4.0 2.6.7.1, 2.7.9.1, 2.8.9 jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7525

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:50
com.fasterxml.jackson.core:jackson-databind CVE-2017-7525 严重 2.4.0 2.6.7.1, 2.7.9.1, 2.8.9 jackson-databind: Deserialization vulnerability via readValue method of ObjectMapper

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7525

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:50
com.fasterxml.jackson.core:jackson-databind CVE-2018-11307 严重 2.4.0 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind CVE-2018-11307 严重 2.4.0 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind CVE-2018-11307 严重 2.4.0 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind CVE-2018-14718 严重 2.4.0 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: arbitrary code execution in slf4j-ext class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-14718 严重 2.4.0 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: arbitrary code execution in slf4j-ext class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-14718 严重 2.4.0 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: arbitrary code execution in slf4j-ext class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-14719 严重 2.4.0 2.9.7, 2.8.11.3, 2.7.9.5 jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-14719 严重 2.4.0 2.9.7, 2.8.11.3, 2.7.9.5 jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-14719 严重 2.4.0 2.9.7, 2.8.11.3, 2.7.9.5 jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-19362 严重 2.4.0 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: improper polymorphic deserialization in jboss-common-core class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind CVE-2018-19362 严重 2.4.0 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: improper polymorphic deserialization in jboss-common-core class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind CVE-2018-19362 严重 2.4.0 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: improper polymorphic deserialization in jboss-common-core class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind CVE-2018-7489 严重 2.4.0 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind CVE-2018-7489 严重 2.4.0 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind CVE-2018-7489 严重 2.4.0 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.4.0 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.4.0 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.4.0 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.4.0 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.4.0 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.4.0 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.4.0 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.4.0 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.4.0 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.4.0 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.4.0 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.4.0 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.4.0 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.4.0 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.4.0 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.4.0 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.4.0 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.4.0 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.4.0 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.4.0 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.4.0 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.4.0 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.4.0 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.4.0 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.4.0 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2017-15095 严重 2.6.7.1 2.8.11, 2.9.4, 2.6.7.3, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-7525)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15095

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-06 15:29 修改: 2023-11-07 02:39
com.fasterxml.jackson.core:jackson-databind CVE-2017-17485 严重 2.6.7.1 2.9.4, 2.8.11, 2.7.9.2 jackson-databind: Unsafe deserialization due to incomplete black list (incomplete fix for CVE-2017-15095)

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17485

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-10 18:29 修改: 2023-06-08 18:00
com.fasterxml.jackson.core:jackson-databind CVE-2018-11307 严重 2.6.7.1 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: Potential information exfiltration with default typing, serialization gadget from MyBatis

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11307

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-09 16:15 修改: 2024-04-03 17:40
com.fasterxml.jackson.core:jackson-databind CVE-2018-14718 严重 2.6.7.1 2.9.7, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: arbitrary code execution in slf4j-ext class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14718

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-14719 严重 2.6.7.1 2.9.7, 2.8.11.3, 2.7.9.5 jackson-databind: arbitrary code execution in blaze-ds-opt and blaze-ds-core classes

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-14719

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:53
com.fasterxml.jackson.core:jackson-databind CVE-2018-19362 严重 2.6.7.1 2.9.8, 2.8.11.3, 2.7.9.5, 2.6.7.3 jackson-databind: improper polymorphic deserialization in jboss-common-core class

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19362

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-01-02 18:29 修改: 2023-11-07 02:55
com.fasterxml.jackson.core:jackson-databind CVE-2018-7489 严重 2.6.7.1 2.8.11.1, 2.9.5, 2.7.9.3, 2.6.7.5 jackson-databind: incomplete fix for CVE-2017-7525 permits unsafe serialization via c3p0 libraries

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7489

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-02-26 15:29 修改: 2023-11-07 03:01
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.6.7.1 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.6.7.1 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.6.7.1 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.6.7.1 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.6.7.1 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.6.7.1 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.6.7.1 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.6.7.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.6.7.1 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.6.7.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.6.7.1 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.9.8 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.9.8 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14379 严重 2.9.8 2.9.9.2, 2.8.11.4, 2.7.9.6 jackson-databind: default typing mishandling leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14379

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-29 12:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.9.8 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.9.8 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14540 严重 2.9.8 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariConfig

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14540

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.9.8 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.9.8 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16335 严重 2.9.8 2.9.10, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.zaxxer.hikari.HikariDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16335

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-15 22:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16942 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.commons.dbcp.datasources.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16942

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-16943 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in com.p6spy.engine.spy.P6DataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16943

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 17:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.9.8 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.9.8 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17267 严重 2.9.8 2.9.10, 2.8.11.5 jackson-databind: Serialization gadgets in classes of the ehcache package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17267

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-07 00:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-17531 严重 2.9.8 2.9.10.1, 2.8.11.5, 2.6.7.3 jackson-databind: Serialization gadgets in org.apache.log4j.receivers.db.*

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17531

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-12 21:15 修改: 2023-11-07 03:06
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.9.8 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.9.8 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2019-20330 严重 2.9.8 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.2 jackson-databind: lacks certain net.sf.ehcache blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20330

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-03 04:15 修改: 2023-11-07 03:09
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.9.8 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.9.8 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-8840 严重 2.9.8 2.6.7.4, 2.7.9.7, 2.8.11.5, 2.9.10.3 jackson-databind: Lacks certain xbean-reflect/JNDI blocking

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8840

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-02-10 21:56 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9546 严重 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in shaded-hikari-config

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9546 严重 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in shaded-hikari-config

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9546 严重 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in shaded-hikari-config

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9546

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.9.8 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.9.8 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9547 严重 2.9.8 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in ibatis-sqlmap

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9547

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.9.8 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.9.8 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.fasterxml.jackson.core:jackson-databind CVE-2020-9548 严重 2.9.8 2.9.10.4, 2.8.11.6, 2.7.9.7 jackson-databind: Serialization gadgets in anteros-core

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9548

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 04:15 修改: 2023-11-07 03:26
com.nimbusds:nimbus-jose-jwt CVE-2019-17195 严重 4.41.1 7.9 nimbus-jose-jwt: Uncaught exceptions while parsing a JWT

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17195

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-15 14:15 修改: 2023-11-07 03:06
com.nimbusds:nimbus-jose-jwt CVE-2019-17195 严重 4.41.1 7.9 nimbus-jose-jwt: Uncaught exceptions while parsing a JWT

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17195

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-15 14:15 修改: 2023-11-07 03:06
com.nimbusds:nimbus-jose-jwt CVE-2019-17195 严重 4.41.1 7.9 nimbus-jose-jwt: Uncaught exceptions while parsing a JWT

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17195

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-15 14:15 修改: 2023-11-07 03:06
io.netty:netty CVE-2019-20444 严重 3.10.5.Final 4.0.0 netty: HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20444

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty CVE-2019-20444 严重 3.10.5.Final 4.0.0 netty: HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20444

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty-codec-http CVE-2019-20444 严重 4.1.17.Final 4.1.44 netty: HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20444

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
log4j:log4j CVE-2019-17571 严重 1.2.17 log4j: deserialization of untrusted data in SocketServer

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17571

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-12-20 17:15 修改: 2023-11-07 03:06
log4j:log4j CVE-2019-17571 严重 1.2.17 log4j: deserialization of untrusted data in SocketServer

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17571

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-12-20 17:15 修改: 2023-11-07 03:06
log4j:log4j CVE-2022-23305 严重 1.2.17 log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23305

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
log4j:log4j CVE-2022-23305 严重 1.2.17 log4j: SQL injection in Log4j 1.x when application is configured to use JDBCAppender

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23305

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
log4j:log4j CVE-2022-23307 严重 1.2.17 log4j: Unsafe deserialization flaw in Chainsaw log viewer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23307

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:29
log4j:log4j CVE-2022-23307 严重 1.2.17 log4j: Unsafe deserialization flaw in Chainsaw log viewer

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23307

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:29
org.apache.avro:avro CVE-2024-47561 严重 1.7.7 1.11.4 apache-avro: Schema parsing may trigger Remote Code Execution (RCE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
org.apache.avro:avro CVE-2024-47561 严重 1.7.7 1.11.4 apache-avro: Schema parsing may trigger Remote Code Execution (RCE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
org.apache.avro:avro CVE-2024-47561 严重 1.7.7 1.11.4 apache-avro: Schema parsing may trigger Remote Code Execution (RCE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47561

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-03 11:15 修改: 2024-10-21 09:15
org.apache.hadoop:hadoop-common CVE-2021-37404 严重 3.2.1 3.3.2, 3.2.3, 2.10.2 hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common CVE-2021-37404 严重 3.2.1 3.3.2, 3.2.3, 2.10.2 hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common CVE-2021-37404 严重 3.2.1 3.3.2, 3.2.3, 2.10.2 hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common CVE-2021-37404 严重 3.2.1 3.3.2, 3.2.3, 2.10.2 hadoop-hdfs: Heap buffer overflow in Apache Hadoop libhdfs

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37404

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-06-13 07:15 修改: 2023-06-27 15:15
org.apache.hadoop:hadoop-common CVE-2022-25168 严重 3.2.1 2.10.2, 3.2.4, 3.3.3 hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common CVE-2022-25168 严重 3.2.1 2.10.2, 3.2.4, 3.3.3 hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common CVE-2022-25168 严重 3.2.1 2.10.2, 3.2.4, 3.3.3 hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common CVE-2022-25168 严重 3.2.1 2.10.2, 3.2.4, 3.3.3 hadoop: Command injection in org.apache.hadoop.fs.FileUtil.unTarUsingTar

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25168

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-08-04 15:15 修改: 2023-06-26 11:15
org.apache.hadoop:hadoop-common CVE-2022-26612 严重 3.2.1 3.2.3 hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.hadoop:hadoop-common CVE-2022-26612 严重 3.2.1 3.2.3 hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.hadoop:hadoop-common CVE-2022-26612 严重 3.2.1 3.2.3 hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.hadoop:hadoop-common CVE-2022-26612 严重 3.2.1 3.2.3 hadoop: Arbitrary file write in FileUtil#unpackEntries on Windows

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-26612

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-04-07 19:15 修改: 2023-08-08 14:21
org.apache.zookeeper:zookeeper CVE-2023-44981 严重 3.4.13 3.7.2, 3.8.3, 3.9.1 zookeeper: Authorization Bypass in Apache ZooKeeper

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44981

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-10-11 12:15 修改: 2024-06-21 19:15
org.apache.zookeeper:zookeeper CVE-2023-44981 严重 3.4.13 3.7.2, 3.8.3, 3.9.1 zookeeper: Authorization Bypass in Apache ZooKeeper

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44981

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-10-11 12:15 修改: 2024-06-21 19:15
org.codehaus.jackson:jackson-mapper-asl CVE-2019-10202 严重 1.9.13 codehaus: incomplete fix for unsafe deserialization in jackson-databind vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10202

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 15:15 修改: 2023-02-12 23:33
org.codehaus.jackson:jackson-mapper-asl CVE-2019-10202 严重 1.9.13 codehaus: incomplete fix for unsafe deserialization in jackson-databind vulnerabilities

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10202

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-10-01 15:15 修改: 2023-02-12 23:33
org.hsqldb:hsqldb CVE-2022-41853 严重 2.3.4 2.7.1 hsqldb: Untrusted input may lead to RCE attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41853

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-06 18:17 修改: 2023-02-03 23:43
com.cedarsoftware:json-io CVE-2023-34610 高危 2.5.1 4.14.1 json-io: cyclic dependencies in a crafted object could result in Dos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34610

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-14 14:15 修改: 2023-06-26 17:11
com.fasterxml.jackson.core:jackson-databind CVE-2018-12022 高危 2.4.0 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: improper polymorphic deserialization of types from Jodd-db library

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind CVE-2018-12022 高危 2.4.0 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: improper polymorphic deserialization of types from Jodd-db library

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind CVE-2018-12022 高危 2.4.0 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: improper polymorphic deserialization of types from Jodd-db library

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind CVE-2018-5968 高危 2.4.0 2.8.11.1, 2.9.4, 2.7.9.5 jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind CVE-2018-5968 高危 2.4.0 2.8.11.1, 2.9.4, 2.7.9.5 jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind CVE-2018-5968 高危 2.4.0 2.8.11.1, 2.9.4, 2.7.9.5 jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.4.0 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.4.0 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.4.0 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.4.0 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.4.0 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.4.0 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.4.0 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.4.0 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.4.0 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2018-12022 高危 2.6.7.1 2.7.9.4, 2.8.11.2, 2.9.6 jackson-databind: improper polymorphic deserialization of types from Jodd-db library

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12022

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-21 16:00 修改: 2023-11-07 02:52
com.fasterxml.jackson.core:jackson-databind CVE-2018-5968 高危 2.6.7.1 2.8.11.1, 2.9.4, 2.7.9.5 jackson-databind: unsafe deserialization due to incomplete blacklist (incomplete fix for CVE-2017-7525 and CVE-2017-17485)

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2018-01-22 04:29 修改: 2023-09-13 14:19
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.6.7.1 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.6.7.1 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.6.7.1 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.6.7.1 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.6.7.1 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.6.7.1 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.6.7.1 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.6.7.1 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.6.7.1 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.6.7.1 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.6.7.1 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.6.7.1 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.6.7.1 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.6.7.1 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.4.0 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.4.0 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.4.0 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.4.0 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.4.0 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.4.0 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.4.0 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.4.0 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.4.0 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.4.0 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.4.0 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.4.0 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.9.8 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.9.8 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12086 高危 2.9.8 2.9.9, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-17 17:29 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.9.8 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.9.8 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14439 高危 2.9.8 2.9.9.2, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: Polymorphic typing issue related to logback/JNDI

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14439

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-07-30 11:15 修改: 2023-11-07 03:04
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.9.8 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.9.8 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14892 高危 2.9.8 2.6.7.3, 2.8.11.5, 2.9.10 jackson-databind: Serialization gadgets in classes of the commons-configuration package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14892

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 17:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14893 高危 2.9.8 2.9.10 jackson-databind: Serialization gadgets in classes of the xalan package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14893

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 21:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14893 高危 2.9.8 2.9.10 jackson-databind: Serialization gadgets in classes of the xalan package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14893

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 21:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2019-14893 高危 2.9.8 2.9.10 jackson-databind: Serialization gadgets in classes of the xalan package

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14893

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-02 21:15 修改: 2023-11-07 03:05
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.9.8 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.9.8 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10650 高危 2.9.8 2.9.10.4 A deserialization flaw was discovered in jackson-databind through 2.9. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10650

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-26 20:15 修改: 2023-08-18 14:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-10672 高危 2.9.8 2.9.10.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10672 高危 2.9.8 2.9.10.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10672 高危 2.9.8 2.9.10.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10672

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.9.8 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.9.8 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10673 高危 2.9.8 2.9.10.4, 2.6.7.4 jackson-databind: mishandles the interaction between serialization gadgets and typing which could result in remote command execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10673

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-18 22:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10968 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10968 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10968 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.aoju.bus.proxy.provider.*.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10968

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10969 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in javax.swing.JEditorPane

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10969 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in javax.swing.JEditorPane

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-10969 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in javax.swing.JEditorPane

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10969

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-26 13:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11111 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11111 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11111 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.activemq.jms.pool.XaPooledConnectionFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11111

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11112 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11112 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11112 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.commons.proxy.provider.remoting.RmiProvider

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11112

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11113 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11113 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11113 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11113

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-03-31 05:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-11619 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.springframework:spring-aop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-11619 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.springframework:spring-aop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-11619 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in org.springframework:spring-aop

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11619

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-11620 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-11620 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-11620 高危 2.9.8 2.9.10.4 jackson-databind: Serialization gadgets in commons-jelly:commons-jelly

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11620

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 23:15 修改: 2023-11-07 03:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-14060 高危 2.9.8 2.9.10.5 jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14060 高危 2.9.8 2.9.10.5 jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14060 高危 2.9.8 2.9.10.5 jackson-databind: serialization in oadd.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14060

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 21:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14061 高危 2.9.8 2.9.10.5 jackson-databind: serialization in weblogic/oracle-aqjms

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14061 高危 2.9.8 2.9.10.5 jackson-databind: serialization in weblogic/oracle-aqjms

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14061 高危 2.9.8 2.9.10.5 jackson-databind: serialization in weblogic/oracle-aqjms

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14061

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14062 高危 2.9.8 2.9.10.5 jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14062 高危 2.9.8 2.9.10.5 jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14062 高危 2.9.8 2.9.10.5 jackson-databind: serialization in com.sun.org.apache.xalan.internal.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14062

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-14 20:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2020-14195 高危 2.9.8 2.9.10.5 jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-14195 高危 2.9.8 2.9.10.5 jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-14195 高危 2.9.8 2.9.10.5 jackson-databind: serialization in org.jsecurity.realm.jndi.JndiRealmFactory

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14195

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-06-16 16:15 修改: 2021-11-17 20:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.9.8 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.9.8 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24616 高危 2.9.8 2.9.10.6 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to br.com.anteros.dbcp.AnterosDBCPDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24616

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-08-25 18:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.9.8 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.9.8 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-24750 高危 2.9.8 2.6.7.5, 2.9.10.6 jackson-databind: Serialization gadgets in com.pastdev.httpcomponents.configuration.JndiConfiguration

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-24750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-09-17 19:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.9.8 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.9.8 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-25649 高危 2.9.8 2.6.7.4, 2.9.10.7, 2.10.5.1 jackson-databind: FasterXML DOMDeserializer insecure entity expansion is vulnerable to XML external entity (XXE)

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25649

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-03 17:15 修改: 2023-11-07 03:20
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35490 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35490

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35491 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35491

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-17 19:15 修改: 2022-09-08 21:32
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-35728 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.oracle.wls.shaded.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35728

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-27 05:15 修改: 2023-11-07 03:22
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36179 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to oadd.org.apache.commons.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36179

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36180 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.commons.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36180

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36181 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36181

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36182 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.cpdsadapter.DriverAdapterCPDS

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36182

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-36183 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.docx4j.org.apache.xalan.lib.sql.JNDIConnectionPool

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36183

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-07 00:15 修改: 2023-09-13 14:56
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.9.8 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.9.8 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.9.8 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.9.8 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.9.8 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.9.8 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.9.8 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.9.8 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.9.8 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.9.8 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.9.8 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.9.8 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.9.8 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.9.8 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.google.code.gson:gson CVE-2022-25647 高危 2.2.4 2.8.9 com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25647

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-05-01 16:15 修改: 2022-11-28 17:33
com.google.code.gson:gson CVE-2022-25647 高危 2.2.4 2.8.9 com.google.code.gson-gson: Deserialization of Untrusted Data in com.google.code.gson-gson

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25647

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-05-01 16:15 修改: 2022-11-28 17:33
com.google.protobuf:protobuf-java CVE-2021-22569 高危 2.5.0 3.16.1, 3.18.2, 3.19.2 protobuf-java: potential DoS in the parsing procedure for binary data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
com.google.protobuf:protobuf-java CVE-2021-22569 高危 2.5.0 3.16.1, 3.18.2, 3.19.2 protobuf-java: potential DoS in the parsing procedure for binary data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
com.google.protobuf:protobuf-java CVE-2021-22569 高危 2.5.0 3.16.1, 3.18.2, 3.19.2 protobuf-java: potential DoS in the parsing procedure for binary data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22569

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-10 14:10 修改: 2023-04-18 09:15
com.google.protobuf:protobuf-java CVE-2021-22570 高危 2.5.0 3.15.0 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java CVE-2021-22570 高危 2.5.0 3.15.0 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java CVE-2021-22570 高危 2.5.0 3.15.0 protobuf: Incorrect parsing of nullchar in the proto symbol leads to Nullptr dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22570

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-26 14:15 修改: 2023-11-07 03:30
com.google.protobuf:protobuf-java CVE-2022-3509 高危 2.5.0 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Textformat parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java CVE-2022-3509 高危 2.5.0 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Textformat parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java CVE-2022-3509 高危 2.5.0 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Textformat parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3509

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-12 13:15 修改: 2022-12-15 16:57
com.google.protobuf:protobuf-java CVE-2022-3510 高危 2.5.0 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Message-Type Extensions parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java CVE-2022-3510 高危 2.5.0 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Message-Type Extensions parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java CVE-2022-3510 高危 2.5.0 3.16.3, 3.19.6, 3.20.3, 3.21.7 protobuf-java: Message-Type Extensions parsing issue leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3510

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-12 13:15 修改: 2023-11-07 03:51
com.google.protobuf:protobuf-java CVE-2024-7254 高危 2.5.0 3.25.5, 4.27.5, 4.28.2 protobuf: StackOverflow vulnerability in Protocol Buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
com.google.protobuf:protobuf-java CVE-2024-7254 高危 2.5.0 3.25.5, 4.27.5, 4.28.2 protobuf: StackOverflow vulnerability in Protocol Buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
com.google.protobuf:protobuf-java CVE-2024-7254 高危 2.5.0 3.25.5, 4.27.5, 4.28.2 protobuf: StackOverflow vulnerability in Protocol Buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7254

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-19 01:15 修改: 2024-09-20 12:30
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36184 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2024-07-03 01:36
com.nimbusds:nimbus-jose-jwt CVE-2023-52428 高危 4.41.1 9.37.2 nimbus-jose-jwt: large JWE p2c header value causes Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
com.nimbusds:nimbus-jose-jwt CVE-2023-52428 高危 4.41.1 9.37.2 nimbus-jose-jwt: large JWE p2c header value causes Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
com.nimbusds:nimbus-jose-jwt CVE-2023-52428 高危 4.41.1 9.37.2 nimbus-jose-jwt: large JWE p2c header value causes Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52428

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-02-11 05:15 修改: 2024-10-30 20:35
commons-beanutils:commons-beanutils CVE-2014-0114 高危 1.9.3 1.9.4 1: Class Loader manipulation via request parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-0114

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2014-04-30 10:49 修改: 2023-02-13 00:32
commons-beanutils:commons-beanutils CVE-2014-0114 高危 1.9.3 1.9.4 1: Class Loader manipulation via request parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-0114

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2014-04-30 10:49 修改: 2023-02-13 00:32
commons-beanutils:commons-beanutils CVE-2014-0114 高危 1.9.3 1.9.4 1: Class Loader manipulation via request parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2014-0114

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2014-04-30 10:49 修改: 2023-02-13 00:32
commons-beanutils:commons-beanutils CVE-2019-10086 高危 1.9.3 1.9.4 apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-08-20 21:15 修改: 2023-11-07 03:02
commons-beanutils:commons-beanutils CVE-2019-10086 高危 1.9.3 1.9.4 apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-08-20 21:15 修改: 2023-11-07 03:02
commons-beanutils:commons-beanutils CVE-2019-10086 高危 1.9.3 1.9.4 apache-commons-beanutils: does not suppresses the class property in PropertyUtilsBean by default

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10086

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-08-20 21:15 修改: 2023-11-07 03:02
commons-io:commons-io CVE-2024-47554 高危 2.5 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-03 12:15 修改: 2024-12-04 15:15
commons-io:commons-io CVE-2024-47554 高危 2.5 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-03 12:15 修改: 2024-12-04 15:15
commons-io:commons-io CVE-2024-47554 高危 2.5 2.14.0 apache-commons-io: Possible denial of service attack on untrusted input to XmlStreamReader

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47554

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-03 12:15 修改: 2024-12-04 15:15
dnsjava:dnsjava CVE-2024-25638 高危 2.1.7 3.6.0 dnsjava: Improper response validation allowing DNSSEC bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
dnsjava:dnsjava CVE-2024-25638 高危 2.1.7 3.6.0 dnsjava: Improper response validation allowing DNSSEC bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
dnsjava:dnsjava CVE-2024-25638 高危 2.1.7 3.6.0 dnsjava: Improper response validation allowing DNSSEC bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25638

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-07-22 14:15 修改: 2024-09-04 15:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
io.netty:netty CVE-2021-37136 高危 3.10.5.Final 4.0.0 netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37136

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty CVE-2021-37136 高危 3.10.5.Final 4.0.0 netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37136

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty CVE-2021-37137 高危 3.10.5.Final 4.0.0 netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37137

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty CVE-2021-37137 高危 3.10.5.Final 4.0.0 netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37137

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty-all CVE-2019-16869 高危 4.0.52.Final 4.1.42.Final netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06
io.netty:netty-all CVE-2019-16869 高危 4.0.52.Final 4.1.42.Final netty: HTTP request smuggling by mishandled whitespace before the colon in HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16869

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-09-26 16:15 修改: 2023-11-07 03:06
io.netty:netty-codec CVE-2021-37136 高危 4.1.17.Final 4.1.68.Final netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37136

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
io.netty:netty-codec CVE-2021-37137 高危 4.1.17.Final 4.1.68.Final netty-codec: SnappyFrameDecoder doesn't restrict chunk length and may buffer skippable chunks in an unnecessary way

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37137

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-10-19 15:15 修改: 2023-11-07 03:36
com.fasterxml.jackson.core:jackson-databind CVE-2020-36185 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp2.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36185

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
io.netty:netty-handler CVE-2020-11612 高危 4.1.17.Final 4.1.46 netty: compression/decompression codecs don't enforce limits on buffer allocation sizes

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11612

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-04-07 18:15 修改: 2023-11-07 03:14
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36186 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.PerUserPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36186

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36187 高危 2.4.0 2.9.10.8 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to org.apache.tomcat.dbcp.dbcp.datasources.SharedPoolDataSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36187

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
log4j:log4j CVE-2021-4104 高危 1.2.17 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4104

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-12-14 12:15 修改: 2023-12-22 09:15
log4j:log4j CVE-2021-4104 高危 1.2.17 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSAppender

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4104

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-12-14 12:15 修改: 2023-12-22 09:15
log4j:log4j CVE-2022-23302 高危 1.2.17 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23302

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
log4j:log4j CVE-2022-23302 高危 1.2.17 log4j: Remote code execution in Log4j 1.x when application is configured to use JMSSink

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23302

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-01-18 16:15 修改: 2023-02-24 15:30
net.minidev:json-smart CVE-2023-1370 高危 2.3 2.4.9 json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
net.minidev:json-smart CVE-2023-1370 高危 2.3 2.4.9 json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
net.minidev:json-smart CVE-2023-1370 高危 2.3 2.4.9 json-smart: Uncontrolled Resource Consumption vulnerability in json-smart (Resource Exhaustion)

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1370

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-03-22 06:15 修改: 2024-06-21 19:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36188 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.JNDIConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36188

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
org.apache.avro:avro CVE-2023-39410 高危 1.7.7 1.11.3 apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.avro:avro CVE-2023-39410 高危 1.7.7 1.11.3 apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.avro:avro CVE-2023-39410 高危 1.7.7 1.11.3 apache-avro: Apache Avro Java SDK: Memory when deserializing untrusted data in Avro Java SDK

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39410

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-29 17:15 修改: 2024-06-21 19:15
org.apache.commons:commons-compress CVE-2019-12402 高危 1.18 1.19 apache-commons-compress: Infinite loop in name encoding algorithm

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12402

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-08-30 09:15 修改: 2023-11-07 03:03
org.apache.commons:commons-compress CVE-2019-12402 高危 1.18 1.19 apache-commons-compress: Infinite loop in name encoding algorithm

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12402

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-08-30 09:15 修改: 2023-11-07 03:03
org.apache.commons:commons-compress CVE-2019-12402 高危 1.18 1.19 apache-commons-compress: Infinite loop in name encoding algorithm

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12402

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-08-30 09:15 修改: 2023-11-07 03:03
org.apache.commons:commons-compress CVE-2021-35515 高危 1.18 1.21 apache-commons-compress: infinite loop when reading a specially crafted 7Z archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35515

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35515 高危 1.18 1.21 apache-commons-compress: infinite loop when reading a specially crafted 7Z archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35515

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35515 高危 1.18 1.21 apache-commons-compress: infinite loop when reading a specially crafted 7Z archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35515

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35516 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35516

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35516 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35516

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35516 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted 7Z archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35516

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35517 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35517

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35517 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35517

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-35517 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted TAR archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-35517

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-36090 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36090

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-36090 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36090

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2021-36090 高危 1.18 1.21 apache-commons-compress: excessive memory allocation when reading a specially crafted ZIP archive

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36090

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-07-13 08:15 修改: 2023-11-07 03:36
org.apache.commons:commons-compress CVE-2024-25710 高危 1.18 1.26.0 commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
org.apache.commons:commons-compress CVE-2024-25710 高危 1.18 1.26.0 commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
org.apache.commons:commons-compress CVE-2024-25710 高危 1.18 1.26.0 commons-compress: Denial of service caused by an infinite loop for a corrupted DUMP file

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25710

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-02-19 09:15 修改: 2024-03-07 17:15
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36189 高危 2.4.0 2.9.10.8, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to com.newrelic.agent.deps.ch.qos.logback.core.db.DriverManagerConnectionSource

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36189

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-06 23:15 修改: 2023-09-13 14:57
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.4.0 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.4.0 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2020-36518 高危 2.4.0 2.13.2.1, 2.12.6.1 jackson-databind: denial of service via a large depth of nested objects

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36518

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-03-11 07:15 修改: 2022-11-29 22:12
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.4.0 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.4.0 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2021-20190 高危 2.4.0 2.9.10.7, 2.6.7.5 jackson-databind: mishandles the interaction between serialization gadgets and typing, related to javax.swing

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20190

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-19 17:15 修改: 2023-11-07 03:28
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.4.0 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.4.0 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
com.fasterxml.jackson.core:jackson-databind CVE-2022-42003 高危 2.4.0 2.12.7.1, 2.13.4.2 jackson-databind: deep wrapper array nesting wrt UNWRAP_SINGLE_VALUE_ARRAYS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42003

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2023-12-20 10:15
org.apache.hadoop:hadoop-common CVE-2020-9492 高危 3.2.1 3.2.2, 3.1.4, 2.10.1 hadoop: WebHDFS client might send SPNEGO authorization header

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-common CVE-2020-9492 高危 3.2.1 3.2.2, 3.1.4, 2.10.1 hadoop: WebHDFS client might send SPNEGO authorization header

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-common CVE-2020-9492 高危 3.2.1 3.2.2, 3.1.4, 2.10.1 hadoop: WebHDFS client might send SPNEGO authorization header

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-common CVE-2020-9492 高危 3.2.1 3.2.2, 3.1.4, 2.10.1 hadoop: WebHDFS client might send SPNEGO authorization header

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-9492

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-01-26 18:16 修改: 2023-11-07 03:26
org.apache.hadoop:hadoop-yarn-server-common CVE-2021-33036 高危 3.2.1 2.10.2, 3.2.3, 3.3.2 hadoop: privilege escalation via yarn user

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33036

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-06-15 15:15 修改: 2022-10-27 16:30
org.apache.hadoop:hadoop-yarn-server-common CVE-2021-33036 高危 3.2.1 2.10.2, 3.2.3, 3.3.2 hadoop: privilege escalation via yarn user

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33036

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-06-15 15:15 修改: 2022-10-27 16:30
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.4.0 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.4.0 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.fasterxml.jackson.core:jackson-databind CVE-2022-42004 高危 2.4.0 2.12.7.1, 2.13.4 jackson-databind: use of deeply nested arrays

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42004

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-02 05:15 修改: 2022-12-02 15:10
com.amazonaws:aws-java-sdk-s3 CVE-2022-31159 高危 1.11.375 1.12.261 Partial Path Traversal in com.amazonaws:aws-java-sdk-s3

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31159

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-07-15 18:15 修改: 2022-07-22 16:27
org.codehaus.jackson:jackson-mapper-asl CVE-2019-10172 高危 1.9.13 jackson-mapper-asl: XML external entity similar to CVE-2016-3720

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10172

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-11-18 17:15 修改: 2023-02-12 23:33
org.codehaus.jackson:jackson-mapper-asl CVE-2019-10172 高危 1.9.13 jackson-mapper-asl: XML external entity similar to CVE-2016-3720

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10172

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-11-18 17:15 修改: 2023-02-12 23:33
org.codehaus.jettison:jettison CVE-2022-40150 高危 1.1 1.5.2 jettison: memory exhaustion via user-supplied XML or JSON data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40150

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-07-13 17:24
org.codehaus.jettison:jettison CVE-2022-40150 高危 1.1 1.5.2 jettison: memory exhaustion via user-supplied XML or JSON data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40150

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-07-13 17:24
org.codehaus.jettison:jettison CVE-2022-40150 高危 1.1 1.5.2 jettison: memory exhaustion via user-supplied XML or JSON data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40150

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-07-13 17:24
org.codehaus.jettison:jettison CVE-2022-45685 高危 1.1 1.5.2 jettison: stack overflow in JSONObject() allows attackers to cause a Denial of Service (DoS) via crafted JSON data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45685

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-13 15:15 修改: 2023-01-30 17:57
org.codehaus.jettison:jettison CVE-2022-45685 高危 1.1 1.5.2 jettison: stack overflow in JSONObject() allows attackers to cause a Denial of Service (DoS) via crafted JSON data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45685

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-13 15:15 修改: 2023-01-30 17:57
org.codehaus.jettison:jettison CVE-2022-45685 高危 1.1 1.5.2 jettison: stack overflow in JSONObject() allows attackers to cause a Denial of Service (DoS) via crafted JSON data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45685

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-13 15:15 修改: 2023-01-30 17:57
org.codehaus.jettison:jettison CVE-2022-45693 高危 1.1 1.5.2 jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45693

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-13 15:15 修改: 2023-01-26 17:35
org.codehaus.jettison:jettison CVE-2022-45693 高危 1.1 1.5.2 jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45693

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-13 15:15 修改: 2023-01-26 17:35
org.codehaus.jettison:jettison CVE-2022-45693 高危 1.1 1.5.2 jettison: If the value in map is the map's self, the new new JSONObject(map) cause StackOverflowError which may lead to dos

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-45693

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-13 15:15 修改: 2023-01-26 17:35
org.codehaus.jettison:jettison CVE-2023-1436 高危 1.1 1.5.4 jettison: Uncontrolled Recursion in JSONArray

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1436

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-03-22 06:15 修改: 2023-11-07 04:03
org.codehaus.jettison:jettison CVE-2023-1436 高危 1.1 1.5.4 jettison: Uncontrolled Recursion in JSONArray

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1436

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-03-22 06:15 修改: 2023-11-07 04:03
org.codehaus.jettison:jettison CVE-2023-1436 高危 1.1 1.5.4 jettison: Uncontrolled Recursion in JSONArray

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1436

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-03-22 06:15 修改: 2023-11-07 04:03
org.eclipse.jetty:jetty-server CVE-2018-12545 高危 9.3.24.v20180605 9.4.12.v20180830, 9.3.25.v20180904 jetty: large settings frames causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12545

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-27 20:29 修改: 2023-11-07 02:52
org.eclipse.jetty:jetty-server CVE-2018-12545 高危 9.3.24.v20180605 9.4.12.v20180830, 9.3.25.v20180904 jetty: large settings frames causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12545

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-27 20:29 修改: 2023-11-07 02:52
org.eclipse.jetty:jetty-server CVE-2018-12545 高危 9.3.24.v20180605 9.4.12.v20180830, 9.3.25.v20180904 jetty: large settings frames causing denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12545

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-03-27 20:29 修改: 2023-11-07 02:52
org.eclipse.jetty:jetty-server CVE-2021-28165 高危 9.3.24.v20180605 9.4.39, 10.0.2, 11.0.2 jetty: Resource exhaustion when receiving an invalid large TLS frame

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28165

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-04-01 15:15 修改: 2023-11-07 03:32
org.eclipse.jetty:jetty-server CVE-2021-28165 高危 9.3.24.v20180605 9.4.39, 10.0.2, 11.0.2 jetty: Resource exhaustion when receiving an invalid large TLS frame

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28165

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-04-01 15:15 修改: 2023-11-07 03:32
org.eclipse.jetty:jetty-server CVE-2021-28165 高危 9.3.24.v20180605 9.4.39, 10.0.2, 11.0.2 jetty: Resource exhaustion when receiving an invalid large TLS frame

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28165

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-04-01 15:15 修改: 2023-11-07 03:32
org.eclipse.jetty:jetty-webapp CVE-2020-27216 高危 9.3.24.v20180605 9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3 jetty: local temporary directory hijacking vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27216

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-10-23 13:15 修改: 2023-11-07 03:20
org.eclipse.jetty:jetty-webapp CVE-2020-27216 高危 9.3.24.v20180605 9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3 jetty: local temporary directory hijacking vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27216

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-10-23 13:15 修改: 2023-11-07 03:20
org.eclipse.jetty:jetty-webapp CVE-2020-27216 高危 9.3.24.v20180605 9.4.33.v20201020, 10.0.0.beta3, 11.0.0.beta3 jetty: local temporary directory hijacking vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27216

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-10-23 13:15 修改: 2023-11-07 03:20
com.cedarsoftware:json-io CVE-2023-34610 高危 2.5.1 4.14.1 json-io: cyclic dependencies in a crafted object could result in Dos

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34610

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-14 14:15 修改: 2023-06-26 17:11
org.jdom:jdom CVE-2021-33813 高危 1.1 jdom: XXE allows attackers to cause a DoS via a crafted HTTP request

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33813

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-06-16 12:15 修改: 2023-11-07 03:35
org.xerial.snappy:snappy-java CVE-2023-34455 高危 1.0.5 1.1.10.1 snappy-java: Unchecked chunk length leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17
org.xerial.snappy:snappy-java CVE-2023-34455 高危 1.0.5 1.1.10.1 snappy-java: Unchecked chunk length leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17
org.xerial.snappy:snappy-java CVE-2023-34455 高危 1.0.5 1.1.10.1 snappy-java: Unchecked chunk length leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 18:15 修改: 2024-02-01 14:17
org.xerial.snappy:snappy-java CVE-2023-43642 高危 1.0.5 1.1.10.4 snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46
org.xerial.snappy:snappy-java CVE-2023-43642 高危 1.0.5 1.1.10.4 snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46
org.xerial.snappy:snappy-java CVE-2023-43642 高危 1.0.5 1.1.10.4 snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-25 20:15 修改: 2023-09-26 15:46
org.yaml:snakeyaml CVE-2017-18640 高危 1.16 1.26 snakeyaml: Billion laughs attack via alias feature

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18640

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-12-12 03:15 修改: 2023-11-07 02:41
org.yaml:snakeyaml CVE-2022-1471 高危 1.16 2.0 SnakeYaml: Constructor Deserialization Remote Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1471

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-01 11:15 修改: 2024-06-21 19:15
org.yaml:snakeyaml CVE-2022-25857 高危 1.16 1.31 snakeyaml: Denial of Service due to missing nested depth limitation for collections

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25857

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-08-30 05:15 修改: 2024-03-15 11:15
software.amazon.ion:ion-java CVE-2024-21634 高危 1.0.2 1.10.5 ion-java: ion-java: Ion Java StackOverflow vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21634

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-01-03 23:15 修改: 2024-01-10 16:38
org.apache.commons:commons-configuration2 CVE-2024-29133 中危 2.1.1 2.10.1 commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
com.google.guava:guava CVE-2023-2976 中危 27.0-jre 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
com.google.guava:guava CVE-2023-2976 中危 27.0-jre 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.4.0 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
io.netty:netty-codec-http CVE-2021-21290 中危 4.1.17.Final 4.1.59.Final netty: Information disclosure via the local system temporary directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21290

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-02-08 20:15 修改: 2023-11-07 03:29
io.netty:netty-codec-http CVE-2021-43797 中危 4.1.17.Final 4.1.71.Final netty: control chars in header names may lead to HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43797

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-12-09 19:15 修改: 2023-02-24 15:47
io.netty:netty-codec-http CVE-2022-24823 中危 4.1.17.Final 4.1.77.Final netty: world readable temporary file containing sensitive data

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24823

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-05-06 12:15 修改: 2022-12-03 14:25
io.netty:netty-codec-http CVE-2024-29025 中危 4.1.17.Final 4.1.108.Final netty-codec-http: Allocation of Resources Without Limits or Throttling

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29025

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-25 20:15 修改: 2024-06-21 22:15
io.netty:netty-common CVE-2024-47535 中危 4.1.17.Final 4.1.115 netty: Denial of Service attack on windows app using Netty

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47535

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-11-12 16:15 修改: 2024-11-13 17:01
com.squareup.okio:okio CVE-2023-3635 中危 1.6.0 3.4.0, 1.17.6 okio: GzipSource class improper exception handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
io.netty:netty-handler CVE-2019-20445 中危 4.1.17.Final 4.1.45 netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20445

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty-handler CVE-2023-34462 中危 4.1.17.Final 4.1.94.Final netty: SniHandler 16MB allocation leads to OOM

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34462

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-22 23:15 修改: 2024-06-21 19:15
junit:junit CVE-2020-15250 中危 4.11 4.13.1 junit4: TemporaryFolder is shared between all users across system which could result in information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15250

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-10-12 18:15 修改: 2023-11-07 03:17
com.squareup.okio:okio CVE-2023-3635 中危 1.6.0 3.4.0, 1.17.6 okio: GzipSource class improper exception handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3635

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-07-12 19:15 修改: 2023-10-25 15:17
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.4.0 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.4.0 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.6.7.1 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.6.7.1 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.4.0 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
org.apache.httpcomponents:httpclient CVE-2020-13956 中危 4.5.5 4.5.13, 5.0.3 apache-httpclient: incorrect handling of malformed authority component in request URIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
org.apache.httpcomponents:httpclient CVE-2020-13956 中危 4.5.6 4.5.13, 5.0.3 apache-httpclient: incorrect handling of malformed authority component in request URIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
org.apache.httpcomponents:httpclient CVE-2020-13956 中危 4.5.6 4.5.13, 5.0.3 apache-httpclient: incorrect handling of malformed authority component in request URIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
org.apache.httpcomponents:httpclient CVE-2020-13956 中危 4.5.6 4.5.13, 5.0.3 apache-httpclient: incorrect handling of malformed authority component in request URIs

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13956

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-02 17:15 修改: 2023-11-07 03:17
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.9.8 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.9.8 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
org.apache.zookeeper:zookeeper CVE-2019-0201 中危 3.4.13 3.4.14, 3.5.5 zookeeper: Information disclosure in Apache ZooKeeper

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-0201

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-23 14:29 修改: 2023-11-07 03:01
org.apache.zookeeper:zookeeper CVE-2019-0201 中危 3.4.13 3.4.14, 3.5.5 zookeeper: Information disclosure in Apache ZooKeeper

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-0201

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-05-23 14:29 修改: 2023-11-07 03:01
org.bouncycastle:bcprov-jdk15on CVE-2020-15522 中危 1.60 1.66 bouncycastle: Timing issue within the EC math library

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15522

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-05-20 12:15 修改: 2021-06-22 09:15
org.bouncycastle:bcprov-jdk15on CVE-2020-26939 中危 1.60 1.61 In Legion of the Bouncy Castle BC before 1.61 and BC-FJA before 1.0.1. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26939

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-11-02 22:15 修改: 2023-11-07 03:20
org.bouncycastle:bcprov-jdk15on CVE-2023-33201 中危 1.60 bouncycastle: potential blind LDAP injection attack using a self-signed certificate

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33201

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-07-05 03:15 修改: 2023-08-24 19:15
org.bouncycastle:bcprov-jdk15on CVE-2023-33202 中危 1.60 1.70 bc-java: Out of memory while parsing ASN.1 crafted data in org.bouncycastle.openssl.PEMParser class

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-33202

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-11-23 16:15 修改: 2024-09-09 13:53
org.bouncycastle:bcprov-jdk15on CVE-2024-29857 中危 1.60 1.78 org.bouncycastle: Importing an EC certificate with crafted F2m parameters may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29857

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-05-14 15:17 修改: 2024-12-06 14:15
org.bouncycastle:bcprov-jdk15on CVE-2024-30171 中危 1.60 1.78 bc-java: BouncyCastle vulnerable to a timing variant of Bleichenbacher (Marvin Attack)

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-30171

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-05-14 15:21 修改: 2024-08-19 18:35
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.9.8 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.9.8 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
commons-io:commons-io CVE-2021-29425 中危 2.5 2.7 apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32
commons-io:commons-io CVE-2021-29425 中危 2.5 2.7 apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32
commons-io:commons-io CVE-2021-29425 中危 2.5 2.7 apache-commons-io: Limited path traversal in Apache Commons IO 2.2 to 2.6

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-29425

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-04-13 07:15 修改: 2023-11-07 03:32
net.minidev:json-smart CVE-2021-27568 中危 2.3 1.3.2, 2.4.1, 2.3.1 json-smart: uncaught exception may lead to crash or information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27568

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-02-23 02:15 修改: 2023-11-07 03:31
net.minidev:json-smart CVE-2021-27568 中危 2.3 1.3.2, 2.4.1, 2.3.1 json-smart: uncaught exception may lead to crash or information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27568

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-02-23 02:15 修改: 2023-11-07 03:31
net.minidev:json-smart CVE-2021-27568 中危 2.3 1.3.2, 2.4.1, 2.3.1 json-smart: uncaught exception may lead to crash or information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27568

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-02-23 02:15 修改: 2023-11-07 03:31
commons-net:commons-net CVE-2021-37533 中危 3.6 3.9.0 apache-commons-net: FTP client trusts the host from PASV response by default

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37533

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-03 15:15 修改: 2023-01-10 19:29
commons-net:commons-net CVE-2021-37533 中危 3.6 3.9.0 apache-commons-net: FTP client trusts the host from PASV response by default

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37533

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-03 15:15 修改: 2023-01-10 19:29
commons-net:commons-net CVE-2021-37533 中危 3.6 3.9.0 apache-commons-net: FTP client trusts the host from PASV response by default

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37533

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-12-03 15:15 修改: 2023-01-10 19:29
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.9.8 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.9.8 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
com.fasterxml.woodstox:woodstox-core CVE-2022-40152 中危 5.0.3 6.4.0, 5.4.0 woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40152

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-02-09 01:36
com.fasterxml.woodstox:woodstox-core CVE-2022-40152 中危 5.0.3 6.4.0, 5.4.0 woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40152

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-02-09 01:36
com.fasterxml.woodstox:woodstox-core CVE-2022-40152 中危 5.0.3 6.4.0, 5.4.0 woodstox-core: woodstox to serialise XML data was vulnerable to Denial of Service attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40152

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-02-09 01:36
org.codehaus.jettison:jettison CVE-2022-40149 中危 1.1 1.5.1 jettison: parser crash by stackoverflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40149

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-03-01 16:32
org.codehaus.jettison:jettison CVE-2022-40149 中危 1.1 1.5.1 jettison: parser crash by stackoverflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40149

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-03-01 16:32
org.codehaus.jettison:jettison CVE-2022-40149 中危 1.1 1.5.1 jettison: parser crash by stackoverflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40149

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-16 10:15 修改: 2023-03-01 16:32
org.eclipse.jetty:jetty-http CVE-2023-40167 中危 9.3.24.v20180605 9.4.52, 10.0.16, 11.0.16, 12.0.1 jetty: Improper validation of HTTP/1 content-length

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http CVE-2023-40167 中危 9.3.24.v20180605 9.4.52, 10.0.16, 11.0.16, 12.0.1 jetty: Improper validation of HTTP/1 content-length

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http CVE-2023-40167 中危 9.3.24.v20180605 9.4.52, 10.0.16, 11.0.16, 12.0.1 jetty: Improper validation of HTTP/1 content-length

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-40167

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-09-15 20:15 修改: 2023-10-13 01:59
org.eclipse.jetty:jetty-http CVE-2024-6763 中危 9.3.24.v20180605 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
org.eclipse.jetty:jetty-http CVE-2024-6763 中危 9.3.24.v20180605 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
org.eclipse.jetty:jetty-http CVE-2024-6763 中危 9.3.24.v20180605 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:15
com.google.protobuf:protobuf-java CVE-2022-3171 中危 2.5.0 3.21.7, 3.20.3, 3.19.6, 3.16.3 protobuf-java: timeout in parser leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
com.google.protobuf:protobuf-java CVE-2022-3171 中危 2.5.0 3.21.7, 3.20.3, 3.19.6, 3.16.3 protobuf-java: timeout in parser leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
com.google.protobuf:protobuf-java CVE-2022-3171 中危 2.5.0 3.21.7, 3.20.3, 3.19.6, 3.16.3 protobuf-java: timeout in parser leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3171

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-10-12 23:15 修改: 2023-11-07 03:50
com.fasterxml.jackson.core:jackson-databind CVE-2019-12814 中危 2.4.0 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: polymorphic typing issue allows attacker to read arbitrary local files on the server via crafted JSON message.

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12814

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-19 14:15 修改: 2023-11-07 03:03
io.netty:netty CVE-2019-20445 中危 3.10.5.Final 4.0.0 netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20445

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
io.netty:netty CVE-2019-20445 中危 3.10.5.Final 4.0.0 netty: HttpObjectDecoder.java allows Content-Length header to accompanied by second Content-Length header

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20445

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-01-29 21:15 修改: 2023-11-07 03:09
org.eclipse.jetty:jetty-server CVE-2019-10241 中危 9.3.24.v20180605 9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411 jetty: using specially formatted URL against DefaultServlet or ResourceHandler leads to XSS conditions

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10241

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10241 中危 9.3.24.v20180605 9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411 jetty: using specially formatted URL against DefaultServlet or ResourceHandler leads to XSS conditions

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10241

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10241 中危 9.3.24.v20180605 9.2.27.v20190403, 9.3.26.v20190403, 9.4.16.v20190411 jetty: using specially formatted URL against DefaultServlet or ResourceHandler leads to XSS conditions

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10241

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10246 中危 9.3.24.v20180605 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 jetty: Directory Listing on Windows reveals Resource Base path

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10246

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10246 中危 9.3.24.v20180605 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 jetty: Directory Listing on Windows reveals Resource Base path

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10246

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10246 中危 9.3.24.v20180605 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 jetty: Directory Listing on Windows reveals Resource Base path

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10246

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10247 中危 9.3.24.v20180605 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 jetty: error path information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10247

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10247 中危 9.3.24.v20180605 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 jetty: error path information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10247

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2019-10247 中危 9.3.24.v20180605 9.2.28.v20190418, 9.3.27.v20190418, 9.4.17.v20190418 jetty: error path information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10247

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-04-22 20:29 修改: 2023-11-07 03:02
org.eclipse.jetty:jetty-server CVE-2023-26048 中危 9.3.24.v20180605 9.4.51.v20230217, 10.0.14, 11.0.14 jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server CVE-2023-26048 中危 9.3.24.v20180605 9.4.51.v20230217, 10.0.14, 11.0.14 jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server CVE-2023-26048 中危 9.3.24.v20180605 9.4.51.v20230217, 10.0.14, 11.0.14 jetty-server: OutOfMemoryError for large multipart without filename read via request.getParameter()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26048

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-04-18 21:15 修改: 2023-09-30 15:15
org.eclipse.jetty:jetty-server CVE-2024-8184 中危 9.3.24.v20180605 12.0.9, 10.0.24, 11.0.24, 9.4.56 org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:00
org.eclipse.jetty:jetty-server CVE-2024-8184 中危 9.3.24.v20180605 12.0.9, 10.0.24, 11.0.24, 9.4.56 org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:00
org.eclipse.jetty:jetty-server CVE-2024-8184 中危 9.3.24.v20180605 12.0.9, 10.0.24, 11.0.24, 9.4.56 org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-10-14 16:15 修改: 2024-11-08 21:00
io.netty:netty CVE-2021-21290 中危 3.10.5.Final 4.0.0 netty: Information disclosure via the local system temporary directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21290

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-02-08 20:15 修改: 2023-11-07 03:29
io.netty:netty CVE-2021-21290 中危 3.10.5.Final 4.0.0 netty: Information disclosure via the local system temporary directory

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21290

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-02-08 20:15 修改: 2023-11-07 03:29
io.netty:netty CVE-2021-21295 中危 3.10.5.Final 4.0.0 netty: possible request smuggling in HTTP/2 due missing validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21295

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-03-09 19:15 修改: 2023-11-07 03:29
io.netty:netty CVE-2021-21295 中危 3.10.5.Final 4.0.0 netty: possible request smuggling in HTTP/2 due missing validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21295

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-03-09 19:15 修改: 2023-11-07 03:29
io.netty:netty CVE-2021-21409 中危 3.10.5.Final 4.0.0 netty: Request smuggling via content-length header

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21409

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-03-30 15:15 修改: 2023-11-07 03:30
io.netty:netty CVE-2021-21409 中危 3.10.5.Final 4.0.0 netty: Request smuggling via content-length header

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-21409

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-03-30 15:15 修改: 2023-11-07 03:30
io.netty:netty CVE-2021-43797 中危 3.10.5.Final 4.0.0 netty: control chars in header names may lead to HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43797

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-12-09 19:15 修改: 2023-02-24 15:47
io.netty:netty CVE-2021-43797 中危 3.10.5.Final 4.0.0 netty: control chars in header names may lead to HTTP request smuggling

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43797

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-12-09 19:15 修改: 2023-02-24 15:47
com.fasterxml.jackson.core:jackson-databind CVE-2019-12384 中危 2.4.0 2.9.9.1, 2.8.11.4, 2.7.9.6, 2.6.7.3 jackson-databind: failure to block the logback-core class from polymorphic deserialization leading to remote code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12384

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2019-06-24 16:15 修改: 2023-11-07 03:03
com.google.guava:guava CVE-2023-2976 中危 27.0-jre 32.0.0-android guava: insecure temporary directory creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2976

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-14 18:15 修改: 2024-02-13 19:15
org.apache.commons:commons-configuration2 CVE-2024-29131 中危 2.1.1 2.10.1 commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-21 09:15 修改: 2024-08-28 15:35
org.xerial.snappy:snappy-java CVE-2023-34453 中危 1.0.5 1.1.10.1 snappy-java: Integer overflow in shuffle leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59
org.xerial.snappy:snappy-java CVE-2023-34453 中危 1.0.5 1.1.10.1 snappy-java: Integer overflow in shuffle leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59
org.xerial.snappy:snappy-java CVE-2023-34453 中危 1.0.5 1.1.10.1 snappy-java: Integer overflow in shuffle leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 17:15 修改: 2023-06-27 15:59
org.xerial.snappy:snappy-java CVE-2023-34454 中危 1.0.5 1.1.10.1 snappy-java: Integer overflow in compress leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 17:15 修改: 2024-12-12 17:15
org.xerial.snappy:snappy-java CVE-2023-34454 中危 1.0.5 1.1.10.1 snappy-java: Integer overflow in compress leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 17:15 修改: 2024-12-12 17:15
org.xerial.snappy:snappy-java CVE-2023-34454 中危 1.0.5 1.1.10.1 snappy-java: Integer overflow in compress leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-06-15 17:15 修改: 2024-12-12 17:15
org.apache.commons:commons-configuration2 CVE-2024-29131 中危 2.1.1 2.10.1 commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-21 09:15 修改: 2024-08-28 15:35
org.apache.commons:commons-configuration2 CVE-2024-29131 中危 2.1.1 2.10.1 commons-configuration: StackOverflowError adding property in AbstractListDelimiterHandler.flattenIterator()

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29131

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-21 09:15 修改: 2024-08-28 15:35
org.apache.commons:commons-configuration2 CVE-2024-29133 中危 2.1.1 2.10.1 commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
org.yaml:snakeyaml CVE-2022-38749 中危 1.16 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.composer.Composer.composeSequenceNode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38749

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-38750 中危 1.16 1.31 snakeyaml: Uncaught exception in org.yaml.snakeyaml.constructor.BaseConstructor.constructObject

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38750

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-38751 中危 1.16 1.31 snakeyaml: Uncaught exception in java.base/java.util.regex.Pattern$Ques.match

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38751

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-38752 中危 1.16 1.32 snakeyaml: Uncaught exception in java.base/java.util.ArrayList.hashCode

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38752

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-09-05 10:15 修改: 2024-03-15 11:15
org.yaml:snakeyaml CVE-2022-41854 中危 1.16 1.32 dev-java/snakeyaml: DoS via stack overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41854

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-11-11 13:15 修改: 2024-06-21 19:15
org.apache.commons:commons-configuration2 CVE-2024-29133 中危 2.1.1 2.10.1 commons-configuration: StackOverflowError calling ListDelimiterHandler.flatten(Object, int) with a cyclical object tree

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29133

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-03-21 09:15 修改: 2024-11-04 17:35
org.eclipse.jetty:jetty-http CVE-2022-2047 低危 9.3.24.v20180605 9.4.47, 10.0.10, 11.0.10 jetty-http: improver hostname input handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10
org.eclipse.jetty:jetty-http CVE-2022-2047 低危 9.3.24.v20180605 9.4.47, 10.0.10, 11.0.10 jetty-http: improver hostname input handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10
org.apache.hadoop:hadoop-common CVE-2024-23454 低危 3.2.1 3.4.0 Apache Hadoop: Temporary File Local Information Disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.eclipse.jetty:jetty-server CVE-2021-34428 低危 9.3.24.v20180605 9.4.41, 10.0.3, 11.0.3 jetty: SessionListener can prevent a session from being invalidated breaking logout

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34428

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-06-22 15:15 修改: 2023-11-07 03:35
org.eclipse.jetty:jetty-server CVE-2021-34428 低危 9.3.24.v20180605 9.4.41, 10.0.3, 11.0.3 jetty: SessionListener can prevent a session from being invalidated breaking logout

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34428

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-06-22 15:15 修改: 2023-11-07 03:35
org.eclipse.jetty:jetty-server CVE-2021-34428 低危 9.3.24.v20180605 9.4.41, 10.0.3, 11.0.3 jetty: SessionListener can prevent a session from being invalidated breaking logout

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-34428

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2021-06-22 15:15 修改: 2023-11-07 03:35
org.eclipse.jetty:jetty-server CVE-2023-26049 低危 9.3.24.v20180605 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36
org.eclipse.jetty:jetty-server CVE-2023-26049 低危 9.3.24.v20180605 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36
org.eclipse.jetty:jetty-server CVE-2023-26049 低危 9.3.24.v20180605 9.4.51.v20230217, 10.0.14, 11.0.14, 12.0.0.beta0 jetty-server: Cookie parsing of quoted values can exfiltrate values from other cookies

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26049

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2023-04-18 21:15 修改: 2024-02-01 15:36
com.google.guava:guava CVE-2020-8908 低危 27.0-jre 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
com.google.guava:guava CVE-2020-8908 低危 27.0-jre 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
com.google.guava:guava CVE-2020-8908 低危 27.0-jre 32.0.0-android guava: local information disclosure via temporary directory created with unsafe permissions

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8908

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2020-12-10 23:15 修改: 2023-08-02 17:30
org.eclipse.jetty:jetty-xml GHSA-58qw-p7qm-5rvh 低危 9.3.24.v20180605 10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823 Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations

漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.eclipse.jetty:jetty-xml GHSA-58qw-p7qm-5rvh 低危 9.3.24.v20180605 10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823 Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations

漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.eclipse.jetty:jetty-xml GHSA-58qw-p7qm-5rvh 低危 9.3.24.v20180605 10.0.16, 11.0.16, 12.0.0, 9.4.52.v20230823 Eclipse Jetty XmlParser allows arbitrary DOCTYPE declarations

漏洞详情: https://github.com/advisories/GHSA-58qw-p7qm-5rvh

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
org.apache.hadoop:hadoop-common CVE-2024-23454 低危 3.2.1 3.4.0 Apache Hadoop: Temporary File Local Information Disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.apache.hadoop:hadoop-common CVE-2024-23454 低危 3.2.1 3.4.0 Apache Hadoop: Temporary File Local Information Disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.apache.hadoop:hadoop-common CVE-2024-23454 低危 3.2.1 3.4.0 Apache Hadoop: Temporary File Local Information Disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-23454

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2024-09-25 08:15 修改: 2024-11-05 20:35
org.eclipse.jetty:jetty-http CVE-2022-2047 低危 9.3.24.v20180605 9.4.47, 10.0.10, 11.0.10 jetty-http: improver hostname input handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2047

镜像层: sha256:64d4b7ea9276ae88808cfd346eda051a970567243f4a065744dafb9c34e80c03

发布日期: 2022-07-07 21:15 修改: 2022-10-25 19:10