docker.io/claymorelab/dramaclaw-frontend:latest linux/amd64

docker.io/claymorelab/dramaclaw-frontend:latest - Trivy安全扫描结果 扫描时间: 2026-07-14 19:39
全部漏洞信息
低危漏洞:26 中危漏洞:44 高危漏洞:35 严重漏洞:2

系统OS: alpine 3.21.3 扫描引擎: Trivy 扫描时间: 2026-07-14 19:39

docker.io/claymorelab/dramaclaw-frontend:latest (alpine 3.21.3) (alpine)
低危漏洞:26 中危漏洞:44 高危漏洞:35 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libcrypto3 CVE-2026-31789 严重 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

libssl3 CVE-2026-31789 严重 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Heap buffer overflow on 32-bit systems from large X.509 certificate processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31789

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

libcrypto3 CVE-2025-15467 高危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-30 03:16

libcrypto3 CVE-2025-69421 高危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libcrypto3 CVE-2026-28387 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libcrypto3 CVE-2026-28388 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libcrypto3 CVE-2026-28389 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libcrypto3 CVE-2026-28390 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libexpat CVE-2025-59375 高危 2.7.0-r0 2.7.2-r0 firefox: thunderbird: expat: libexpat in Expat allows attackers to trigger large dynamic memory allocations via a small document that is submitted for parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59375

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-09-15 03:15 修改: 2026-06-17 09:46

libexpat CVE-2026-25210 高危 2.7.0-r0 2.7.4-r0 libexpat: libexpat: Information disclosure and data integrity issues due to integer overflow in buffer reallocation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25210

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-01-30 07:16 修改: 2026-06-17 10:24

libexpat CVE-2026-45186 高危 2.7.0-r0 2.8.1-r0 libexpat: denial of service via crafted XML input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45186

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-05-10 07:16 修改: 2026-06-30 03:20

libexpat CVE-2026-56131 高危 2.7.0-r0 2.8.2-r0 libexpat before 2.8.2 lacks handler call depth tracking for calls to X ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56131

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15

libexpat CVE-2026-56407 高危 2.7.0-r0 2.8.2-r0 libexpat before 2.8.2 has an integer overflow in doProlog that is rela ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56407

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:28

libexpat CVE-2026-56408 高危 2.7.0-r0 2.8.2-r0 libexpat before 2.8.2 has an integer overflow in copyString.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56408

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:27

libpng CVE-2025-64720 高危 1.6.47-r0 1.6.53-r0 libpng: LIBPNG buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64720

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55

libpng CVE-2025-65018 高危 1.6.47-r0 1.6.53-r0 libpng: LIBPNG heap buffer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-65018

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:55

libpng CVE-2025-66293 高危 1.6.47-r0 1.6.53-r0 libpng: LIBPNG out-of-bounds read in png_image_read_composite

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66293

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-12-03 21:15 修改: 2026-06-17 09:56

libpng CVE-2026-22695 高危 1.6.47-r0 1.6.54-r0 libpng: libpng: Denial of service and information disclosure via heap buffer over-read in png_image_finish_read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22695

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20

libpng CVE-2026-22801 高危 1.6.47-r0 1.6.54-r0 libpng: libpng: Information disclosure and denial of service via integer truncation in simplified write API

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22801

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-01-12 23:15 修改: 2026-06-17 10:20

libpng CVE-2026-25646 高危 1.6.47-r0 1.6.55-r0 libpng: LIBPNG has a heap buffer overflow in png_set_quantize

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25646

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-02-10 18:16 修改: 2026-06-30 03:17

c-ares CVE-2026-33630 高危 1.34.5-r0 1.34.8-r0 c-ares: c-ares: Use-after-free / double-free in query-completion handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33630

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libssl3 CVE-2025-15467 高危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Remote code execution or Denial of Service via oversized Initialization Vector in CMS parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15467

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-30 03:16

libssl3 CVE-2025-69421 高危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via malformed PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69421

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2026-28387 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Arbitrary code execution due to use-after-free in DANE TLSA authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28387

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-28388 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in delta CRL processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28388

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-28389 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Denial of Service vulnerability in CMS processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28389

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libssl3 CVE-2026-28390 高危 3.3.3-r0 3.3.7-r0 openssl: OpenSSL: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-28390

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:28

libxml2 CVE-2025-32414 高危 2.13.4-r5 2.13.4-r6 libxml2: Out-of-Bounds Read in libxml2

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32414

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-04-08 03:15 修改: 2026-06-17 09:11

libxml2 CVE-2025-32415 高危 2.13.4-r5 2.13.4-r6 libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-32415

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-04-17 17:15 修改: 2026-06-17 09:11

libxml2 CVE-2025-49794 高危 2.13.4-r5 2.13.9-r0 libxml: Heap use after free (UAF) leads to Denial of service (DoS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49794

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-16 16:15 修改: 2026-06-29 21:16

libxml2 CVE-2025-49795 高危 2.13.4-r5 2.13.9-r0 libxml: Null pointer dereference leads to Denial of service (DoS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49795

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-16 16:15 修改: 2026-07-07 13:16

libxml2 CVE-2025-49796 高危 2.13.4-r5 2.13.9-r0 libxml: Type confusion leads to Denial of service (DoS)

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49796

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-16 16:15 修改: 2026-06-29 21:16

libxml2 CVE-2026-6732 高危 2.13.4-r5 2.13.9-r1 libxml2: libxml2: Denial of Service via crafted XSD-validated document

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6732

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-04-23 23:16 修改: 2026-06-30 20:16

musl CVE-2026-40200 高危 1.2.5-r9 1.2.5-r11 musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-10 17:17 修改: 2026-06-17 10:44

musl-utils CVE-2026-40200 高危 1.2.5-r9 1.2.5-r11 musl: musl libc: Arbitrary code execution and denial of service via stack-based memory corruption in qsort

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40200

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-10 17:17 修改: 2026-06-17 10:44

nghttp2-libs CVE-2026-27135 高危 1.64.0-r0 1.68.1 nghttp2: nghttp2: Denial of Service via malformed HTTP/2 frames after session termination

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27135

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-03-18 18:16 修改: 2026-06-30 03:17

zlib CVE-2026-22184 高危 1.3.1-r2 1.3.2-r0 zlib: zlib: Arbitrary code execution via buffer overflow in untgz utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22184

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-07 21:16 修改: 2026-06-30 03:17

libexpat CVE-2026-56406 中危 2.7.0-r0 2.8.2-r0 libexpat: libexpat: Arbitrary code execution via integer overflow in XML_ParseBuffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56406

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:29

libexpat CVE-2026-56409 中危 2.7.0-r0 2.8.2-r0 xmlwf in libexpat before 2.8.2 has an integer overflow for the output ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56409

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:21

libexpat CVE-2026-56410 中危 2.7.0-r0 2.8.2-r0 libexpat: libexpat: Integer overflow in xmlwf can lead to information disclosure and arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56410

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 16:18

libexpat CVE-2026-56411 中危 2.7.0-r0 2.8.2-r0 expat: libexpat: Integer Overflow Vulnerability Leading to Information Disclosure or Code Execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56411

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 17:16 修改: 2026-06-23 16:16

libexpat CVE-2026-56412 中危 2.7.0-r0 2.8.2-r0 libexpat: libexpat: Use-after-free vulnerability due to improper handling of XML CDATA sections

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56412

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 17:16 修改: 2026-06-23 15:31

curl CVE-2025-9086 中危 8.12.1-r1 8.14.1-r2 curl: libcurl: Curl out of bounds read for cookie path

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9086

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-09-12 06:15 修改: 2026-06-17 10:08

libcrypto3 CVE-2025-69419 中危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libcrypto3 CVE-2025-9230 中危 3.3.3-r0 3.3.5-r0 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libcrypto3 CVE-2025-9231 中危 3.3.3-r0 3.3.5-r0 openssl: Timing side-channel in SM2 algorithm on 64 bit ARM

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9231

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libcrypto3 CVE-2026-31790 中危 3.3.3-r0 3.3.7-r0 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

libcurl CVE-2025-4947 中危 8.12.1-r1 8.14.0-r0 libcurl: curl: QUIC certificate check skip with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4947

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-05-28 07:15 修改: 2026-06-17 09:34

libpng CVE-2025-64505 中危 1.6.47-r0 1.6.53-r0 libpng: LIBPNG heap buffer overflow via malformed palette index

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64505

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54

libpng CVE-2025-64506 中危 1.6.47-r0 1.6.53-r0 libpng: LIBPNG heap buffer over-read

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64506

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-11-25 00:15 修改: 2026-06-17 09:54

libpng CVE-2026-33416 中危 1.6.47-r0 1.6.56-r0 libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33416

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37

libpng CVE-2026-33636 中危 1.6.47-r0 1.6.56-r0 libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33636

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-03-26 17:16 修改: 2026-06-17 10:37

libpng CVE-2026-34757 中危 1.6.47-r0 1.6.57-r0 libpng: libpng: Information disclosure and data corruption via use-after-free vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34757

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-04-09 15:16 修改: 2026-06-17 10:39

libcurl CVE-2025-5025 中危 8.12.1-r1 8.14.0-r0 curl: libcurl: QUIC Certificate Pinning Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5025

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-05-28 07:15 修改: 2026-06-17 09:47

libcurl CVE-2025-5399 中危 8.12.1-r1 8.14.1-r0 curl: libcurl: WebSocket endless loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5399

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-07 08:15 修改: 2026-06-17 09:47

libcurl CVE-2025-9086 中危 8.12.1-r1 8.14.1-r2 curl: libcurl: Curl out of bounds read for cookie path

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9086

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-09-12 06:15 修改: 2026-06-17 10:08

busybox-binsh CVE-2024-58251 中危 1.37.0-r12 1.37.0-r14 In netstat in BusyBox through 1.37.0, local users can launch of networ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14

busybox CVE-2024-58251 中危 1.37.0-r12 1.37.0-r14 In netstat in BusyBox through 1.37.0, local users can launch of networ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14

c-ares CVE-2025-62408 中危 1.34.5-r0 1.34.6-r0 c-ares: c-ares: Denial of Service due to query termination after maximum attempts

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-62408

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-12-08 22:15 修改: 2026-06-17 09:51

curl CVE-2025-4947 中危 8.12.1-r1 8.14.0-r0 libcurl: curl: QUIC certificate check skip with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-4947

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-05-28 07:15 修改: 2026-06-17 09:34

libssl3 CVE-2025-69419 中危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS#12 processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69419

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2025-9230 中危 3.3.3-r0 3.3.5-r0 openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9230

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libssl3 CVE-2025-9231 中危 3.3.3-r0 3.3.5-r0 openssl: Timing side-channel in SM2 algorithm on 64 bit ARM

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9231

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libssl3 CVE-2026-31790 中危 3.3.3-r0 3.3.7-r0 openssl: openssl: Information Disclosure from Uninitialized Memory via Invalid RSA Public Key

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31790

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-07 22:16 修改: 2026-06-17 10:34

curl CVE-2025-5025 中危 8.12.1-r1 8.14.0-r0 curl: libcurl: QUIC Certificate Pinning Bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5025

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-05-28 07:15 修改: 2026-06-17 09:47

curl CVE-2025-5399 中危 8.12.1-r1 8.14.1-r0 curl: libcurl: WebSocket endless loop

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5399

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-07 08:15 修改: 2026-06-17 09:47

libexpat CVE-2026-32776 中危 2.7.0-r0 2.7.5-r0 libexpat: libexpat: Denial of Service due to NULL pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32776

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36

libexpat CVE-2026-32777 中危 2.7.0-r0 2.7.5-r0 libexpat: libexpat: Denial of Service via infinite loop in DTD content parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32777

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36

libexpat CVE-2026-32778 中危 2.7.0-r0 2.7.5-r0 libexpat: libexpat: Denial of Service via NULL pointer dereference after out-of-memory condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32778

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-03-16 14:19 修改: 2026-06-17 10:36

libexpat CVE-2026-50219 中危 2.7.0-r0 2.8.2-r0 expat: libexpat: Use-after-free vulnerability due to improper handler call depth tracking

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50219

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-04 06:16 修改: 2026-06-17 10:57

libxml2 CVE-2025-6021 中危 2.13.4-r5 2.13.9-r0 libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6021

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-12 13:15 修改: 2026-06-30 11:16

libxpm CVE-2026-4367 中危 3.5.17-r0 3.5.19-r0 libXpm: libXpm: Denial of Service via out-of-bounds read in XPM file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4367

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-16 19:16 修改: 2026-06-26 22:16

libexpat CVE-2026-56132 中危 2.7.0-r0 2.8.2-r0 expat: libexpat: Arbitrary Code Execution via Heap-based Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56132

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-19 06:17 修改: 2026-06-23 20:15

musl CVE-2026-6042 中危 1.2.5-r9 1.2.5-r10 musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-10 09:16 修改: 2026-06-17 11:00

libexpat CVE-2026-56403 中危 2.7.0-r0 2.8.2-r0 libexpat: libexpat: Arbitrary code execution due to integer overflow in storeAtts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56403

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15

musl-utils CVE-2026-6042 中危 1.2.5-r9 1.2.5-r10 musl libc: GB18030 4-byte Decoder: musl libc: Denial of Service via inefficient algorithmic complexity in iconv

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6042

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-04-10 09:16 修改: 2026-06-17 11:00

libexpat CVE-2026-56404 中危 2.7.0-r0 2.8.2-r0 libexpat before 2.8.2 has an integer overflow in addBinding.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56404

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:15

ssl_client CVE-2024-58251 中危 1.37.0-r12 1.37.0-r14 In netstat in BusyBox through 1.37.0, local users can launch of networ ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-58251

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-04-23 18:16 修改: 2026-06-17 08:14

xz-libs CVE-2026-34743 中危 5.6.3-r1 5.8.3-r0 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39

libexpat CVE-2026-56405 中危 2.7.0-r0 2.8.2-r0 libexpat: libexpat: Information disclosure and arbitrary code execution via integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-56405

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-06-21 16:16 修改: 2026-06-23 20:14

zlib CVE-2026-27171 中危 1.3.1-r2 1.3.2-r0 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26

libssl3 CVE-2025-69418 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2025-69420 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libssl3 CVE-2025-9232 低危 3.3.3-r0 3.3.5-r0 openssl: Out-of-bounds read in HTTP client no_proxy handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libssl3 CVE-2026-22795 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

libssl3 CVE-2026-22796 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

libcrypto3 CVE-2025-69420 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via malformed TimeStamp Response

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69420

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

libcrypto3 CVE-2025-9232 低危 3.3.3-r0 3.3.5-r0 openssl: Out-of-bounds read in HTTP client no_proxy handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9232

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-09-30 14:15 修改: 2026-06-17 10:08

libcrypto3 CVE-2026-22795 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service due to type confusion in PKCS#12 file processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22795

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

libcrypto3 CVE-2026-22796 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via type confusion in PKCS#7 signature verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-22796

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:20

libexpat CVE-2026-24515 低危 2.7.0-r0 2.7.4-r0 libexpat: libexpat null pointer dereference

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24515

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-01-23 08:16 修改: 2026-06-17 10:23

libexpat CVE-2026-41080 低危 2.7.0-r0 2.8.1-r0 libexpat: expat: libexpat: Denial of Service via hash flooding with crafted XML

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41080

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2026-04-16 17:16 修改: 2026-06-17 10:46

curl CVE-2025-10148 低危 8.12.1-r1 8.14.1-r2 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27

libxml2 CVE-2025-6170 低危 2.13.4-r5 2.13.9-r0 libxml2: Stack Buffer Overflow in xmllint Interactive Shell Command Handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6170

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-06-16 16:15 修改: 2026-07-08 15:16

busybox CVE-2025-46394 低危 1.37.0-r12 1.37.0-r14 In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26

busybox-binsh CVE-2025-46394 低危 1.37.0-r12 1.37.0-r14 In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26

libcrypto3 CVE-2025-15468 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37

libcurl CVE-2025-10148 低危 8.12.1-r1 8.14.1-r2 curl: predictable WebSocket mask

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-10148

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-09-12 06:15 修改: 2026-06-17 08:27

libcrypto3 CVE-2025-66199 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:56

libcrypto3 CVE-2025-68160 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58

libcrypto3 CVE-2025-69418 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Information disclosure and data tampering via specific low-level OCB encryption/decryption calls

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69418

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 10:00

ssl_client CVE-2025-46394 低危 1.37.0-r12 1.37.0-r14 In tar in BusyBox through 1.37.0, a TAR archive can have filenames hid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46394

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2025-04-23 16:15 修改: 2026-06-17 09:26

tiff CVE-2025-8961 低危 4.7.0-r0 4.7.1-r0 libtiff: LibTIFF memory corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8961

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-08-14 13:15 修改: 2026-06-17 10:08

tiff CVE-2025-9165 低危 4.7.0-r0 4.7.1-r0 libtiff: LibTIFF memory leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9165

镜像层: sha256:0d853d50b128aa460b47e7121849463a14b18d4fd976caf5014744aae24d28aa

发布日期: 2025-08-19 20:15 修改: 2026-06-17 10:08

libssl3 CVE-2025-15468 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service via NULL pointer dereference in QUIC protocol handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15468

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 08:37

libssl3 CVE-2025-66199 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service due to excessive memory allocation in TLS 1.3 certificate compression

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66199

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:56

libssl3 CVE-2025-68160 低危 3.3.3-r0 3.3.6-r0 openssl: OpenSSL: Denial of Service due to out-of-bounds write in BIO filter

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68160

镜像层: sha256:08000c18d16dadf9553d747a58cf44023423a9ab010aab96cf263d2216b8b350

发布日期: 2026-01-27 16:16 修改: 2026-06-17 09:58

检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×