docker.io/fellah/gitbook:3.2.1 linux/amd64

docker.io/fellah/gitbook:3.2.1 - Trivy安全扫描结果扫描时间: 2024-11-28 10:43

全部漏洞信息

低危漏洞:101

中危漏洞:188

高危漏洞:327

严重漏洞:55

系统OS: debian 9.8 扫描引擎: Trivy 扫描时间: 2024-11-28 10:43

docker.io/fellah/gitbook:3.2.1 (debian 9.8) (debian)

低危漏洞:62

中危漏洞:67

高危漏洞:131

严重漏洞:22

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
curl	CVE-2019-5481	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: double free due to subsequent call of realloc() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
curl	CVE-2019-5482	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: heap buffer overflow in function tftp_receive_packet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
dpkg	CVE-2022-1664	严重	1.18.25	1.18.26	Dpkg::Source::Archive in dpkg, the Debian package management system, b ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1664 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-05-26 14:15 修改: 2022-12-03 02:19
libbz2-1.0	CVE-2019-12900	严重	1.0.6-8.1		bzip2: out-of-bounds write in function BZ2_decompress 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12900 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-06-19 23:15 修改: 2023-11-07 03:03
libcurl3	CVE-2019-5481	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: double free due to subsequent call of realloc() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5481 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libcurl3	CVE-2019-5482	严重	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: heap buffer overflow in function tftp_receive_packet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5482 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-16 19:15 修改: 2023-11-07 03:11
libdb5.3	CVE-2019-8457	严重	5.3.28-12+deb9u1		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libidn11	CVE-2017-14062	严重	1.33-1	1.33-1+deb9u1	libidn2: Integer overflow in puny_decode.c/decode_digit 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14062 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-08-31 16:29 修改: 2020-12-07 20:17
libldap-2.4-2	CVE-2022-29155	严重	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u9	openldap: OpenLDAP SQL injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56
libldap-common	CVE-2022-29155	严重	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u9	openldap: OpenLDAP SQL injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29155 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-05-04 20:15 修改: 2022-10-06 15:56
liblz4-1	CVE-2021-3520	严重	0.0~r131-2+b1	0.0~r131-2+deb9u1	lz4: memory corruption due to an integer overflow bug caused by memmove argument 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3520 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-06-02 13:15 修改: 2024-06-06 20:25
libsqlite3-0	CVE-2019-8457	严重	3.16.2-5+deb9u1		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libssh2-1	CVE-2019-3858	严重	1.7.0-1	1.7.0-1+deb9u1	libssh2: Zero-byte allocation with a specially crafted SFTP packed leading to an out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3858 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-21 21:29 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3859	严重	1.7.0-1	1.7.0-1+deb9u1	libssh2: Unchecked use of _libssh2_packet_require and _libssh2_packet_requirev resulting in out-of-bounds read 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3859 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-21 16:01 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3860	严重	1.7.0-1	1.7.0-1+deb9u1	libssh2: Out-of-bounds reads with specially crafted SFTP packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3860 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-25 19:29 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3861	严重	1.7.0-1	1.7.0-1+deb9u1	libssh2: Out-of-bounds reads with specially crafted SSH packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3861 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-25 19:29 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3862	严重	1.7.0-1	1.7.0-1+deb9u1	libssh2: Out-of-bounds memory comparison with specially crafted message channel request 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3862 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-21 16:01 修改: 2023-11-07 03:10
libssl1.1	CVE-2022-1292	严重	1.1.0j-1~deb9u1	1.1.0l-1~deb9u6	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
login	CVE-2017-12424	严重	1:4.4-4.1	1:4.4-4.1+deb9u1	shadow-utils: Buffer overflow via newusers tool 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12424 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-08-04 09:29 修改: 2021-03-23 20:02
openssl	CVE-2022-1292	严重	1.1.0j-1~deb9u1	1.1.0l-1~deb9u6	openssl: c_rehash script allows command injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1292 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-05-03 16:15 修改: 2023-11-07 03:41
passwd	CVE-2017-12424	严重	1:4.4-4.1	1:4.4-4.1+deb9u1	shadow-utils: Buffer overflow via newusers tool 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-12424 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-08-04 09:29 修改: 2021-03-23 20:02
wget	CVE-2019-5953	严重	1.18-5+deb9u2	1.18-5+deb9u3	wget: do_conversion() heap-based buffer overflow vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5953 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-05-17 16:29 修改: 2020-08-24 17:37
curl	CVE-2020-8231	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u12	curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcurl3	CVE-2019-5436	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: TFTP receive heap buffer overflow in tftp_receive_packet() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11
libcurl3	CVE-2020-8177	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u11	curl: Incorrect argument check can allow remote servers to overwrite local files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcurl3	CVE-2020-8231	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u12	curl: Expired pointer dereference via multi API with CURLOPT_CONNECT_ONLY option set 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8231 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
libcurl3	CVE-2020-8285	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libcurl3	CVE-2020-8286	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Inferior OCSP verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libcurl3	CVE-2021-22946	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
curl	CVE-2020-8285	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Malicious FTP server can trigger stack overflow when CURLOPT_CHUNK_BGN_FUNCTION is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8285 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libfdisk1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libgcc1	CVE-2018-12886	高危	1:6.3.0-18+deb9u1		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libgcrypt20	CVE-2021-33560	高危	1.7.6-2+deb9u3		libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
libgmp10	CVE-2021-43618	高危	2:6.1.2+dfsg-1	2:6.1.2+dfsg-1+deb9u1	gmp: Integer overflow and resultant buffer overflow via crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43618 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-11-15 04:15 修改: 2023-09-29 15:15
libgnutls30	CVE-2019-3829	高危	3.5.8-5+deb9u4	3.5.8-5+deb9u5	gnutls: use-after-free/double-free in certificate verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3829 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-27 18:29 修改: 2023-11-07 03:10
libgssapi-krb5-2	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libhogweed4	CVE-2021-20305	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Out of bounds memory access in signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libhogweed4	CVE-2021-3580	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
curl	CVE-2020-8286	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: Inferior OCSP verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8286 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 15:47
libk5crypto3	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libkrb5-3	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
libkrb5support0	CVE-2020-28196	高危	1.15-1+deb9u1	1.15-1+deb9u2	krb5: unbounded recursion via an ASN.1-encoded Kerberos message in lib/krb5/asn.1/asn1_encode.c may lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28196 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-11-06 08:15 修改: 2023-11-07 03:21
curl	CVE-2021-22946	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Requirement to use TLS not properly enforced for IMAP, POP3, and FTP protocols 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22946 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:12
libldap-2.4-2	CVE-2020-12243	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u4	openldap: denial of service via nested boolean expressions in LDAP search filters 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24
libldap-2.4-2	CVE-2020-25692	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u5	openldap: NULL pointer dereference for unauthenticated packet in slapd 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27
libldap-2.4-2	CVE-2020-25709	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in Certificate List syntax validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20
libldap-2.4-2	CVE-2020-25710	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in CSN normalization with invalid input 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20
libldap-2.4-2	CVE-2020-36221	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36222	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in slapd in the saslAuthzTo validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36223	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Out-of-bounds read in Values Return Filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36224	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Invalid pointer free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36225	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Double free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36226	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Denial of service via length miscalculation in slap_parse_user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36227	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Infinite loop in slapd with the cancel_extop Cancel operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36228	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36229	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Type confusion in ad_keystring in ad.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2020-36230	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in ber_next_element in decode.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-2.4-2	CVE-2021-27212	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u8	openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31
dirmngr	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
libldap-common	CVE-2020-12243	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u4	openldap: denial of service via nested boolean expressions in LDAP search filters 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12243 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-04-28 19:15 修改: 2022-04-29 13:24
libldap-common	CVE-2020-25692	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u5	openldap: NULL pointer dereference for unauthenticated packet in slapd 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25692 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-08 01:15 修改: 2022-10-12 14:27
libldap-common	CVE-2020-25709	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in Certificate List syntax validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25709 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-05-18 12:15 修改: 2023-11-07 03:20
libldap-common	CVE-2020-25710	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u6	openldap: assertion failure in CSN normalization with invalid input 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-25710 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-05-28 11:15 修改: 2023-11-07 03:20
libldap-common	CVE-2020-36221	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in serialNumberAndIssuerCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36221 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36222	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in slapd in the saslAuthzTo validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36222 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36223	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Out-of-bounds read in Values Return Filter 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36223 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36224	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Invalid pointer free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36224 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36225	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Double free in the saslAuthzTo processing 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36225 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36226	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Denial of service via length miscalculation in slap_parse_user 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36226 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36227	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Infinite loop in slapd with the cancel_extop Cancel operation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36227 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36228	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Integer underflow in issuerAndThisUpdateCheck in schema_init.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36228 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36229	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Type confusion in ad_keystring in ad.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36229 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2020-36230	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u7	openldap: Assertion failure in ber_next_element in decode.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36230 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-01-26 18:15 修改: 2023-11-07 03:22
libldap-common	CVE-2021-27212	高危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u8	openldap: Assertion failure in slapd in the issuerAndThisUpdateCheck function 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27212 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-14 03:15 修改: 2023-11-07 03:31
bsdutils	CVE-2016-2779	高危	1:2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
liblzma5	CVE-2022-1271	高危	5.2.2-1.2+b1	5.2.2-1.2+deb9u1	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libmount1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libncursesw5	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libnettle6	CVE-2021-20305	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Out of bounds memory access in signature verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20305 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-04-05 22:15 修改: 2023-11-07 03:29
libnettle6	CVE-2021-3580	高危	3.3-1+b2	3.3-1+deb9u1	nettle: Remote crash in RSA decryption via manipulated ciphertext 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3580 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-05 21:15 修改: 2024-01-16 15:15
libnghttp2-14	CVE-2018-1000168	高危	1.18.1-1	1.18.1-1+deb9u2	nghttp2: Null pointer dereference when too large ALTSVC frame is received 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000168 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-05-08 15:29 修改: 2022-08-16 13:01
libnghttp2-14	CVE-2019-9511	高危	1.18.1-1	1.18.1-1+deb9u1	HTTP/2: large amount of data requests leads to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9511 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-08-13 21:15 修改: 2023-11-07 03:13
libnghttp2-14	CVE-2019-9513	高危	1.18.1-1	1.18.1-1+deb9u1	HTTP/2: flood using PRIORITY frames results in excessive resource consumption 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9513 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-08-13 21:15 修改: 2023-11-07 03:13
libnghttp2-14	CVE-2020-11080	高危	1.18.1-1	1.18.1-1+deb9u2	nghttp2: overly large SETTINGS frames can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11080 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-06-03 23:15 修改: 2023-11-07 03:14
libp11-kit0	CVE-2020-29361	高危	0.23.3-2	0.23.3-2+deb9u1	p11-kit: integer overflow when allocating memory for arrays or attributes and object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29361 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-16 14:15 修改: 2023-11-07 03:21
libsasl2-2	CVE-2019-19906	高危	2.1.27~101-g0780600+dfsg-3	2.1.27~101-g0780600+dfsg-3+deb9u1	cyrus-sasl: denial of service in _sasl_add_string function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19906 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-19 18:15 修改: 2023-11-07 03:07
libsasl2-2	CVE-2022-24407	高危	2.1.27~101-g0780600+dfsg-3	2.1.27~101-g0780600+dfsg-3+deb9u2	cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
libsasl2-modules-db	CVE-2019-19906	高危	2.1.27~101-g0780600+dfsg-3	2.1.27~101-g0780600+dfsg-3+deb9u1	cyrus-sasl: denial of service in _sasl_add_string function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19906 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-19 18:15 修改: 2023-11-07 03:07
libsasl2-modules-db	CVE-2022-24407	高危	2.1.27~101-g0780600+dfsg-3	2.1.27~101-g0780600+dfsg-3+deb9u2	cyrus-sasl: failure to properly escape SQL input allows an attacker to execute arbitrary SQL commands 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24407 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-02-24 15:15 修改: 2023-11-07 03:44
libsmartcols1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
e2fslibs	CVE-2022-1304	高危	1.43.4-2		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
libsqlite3-0	CVE-2018-20346	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20346 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-21 21:29 修改: 2023-11-07 02:56
libsqlite3-0	CVE-2018-20506	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Multiple flaws in sqlite which can be triggered via corrupted internal databases (Magellan) 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20506 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-04-03 18:29 修改: 2021-07-31 08:15
libsqlite3-0	CVE-2018-8740	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: NULL pointer dereference with databases with schema corrupted with CREATE TABLE AS allows for denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-8740 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-17 00:29 修改: 2023-11-07 03:01
libsqlite3-0	CVE-2019-20218	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u3	sqlite: selectExpander in select.c proceeds with WITH stack unwinding even after a parsing error 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20218 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-01-02 14:16 修改: 2022-10-07 17:56
libsqlite3-0	CVE-2019-5827	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: out-of-bounds access due to the use of 32-bit memory allocator interfaces 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5827 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-06-27 17:15 修改: 2023-11-07 03:12
libsqlite3-0	CVE-2019-9936	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: heap-based buffer over-read in function fts5HashEntrySort in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9936 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
libsqlite3-0	CVE-2019-9937	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: null-pointer dereference in function fts5ChunkIterate in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9937 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
libsqlite3-0	CVE-2020-11655	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: malformed window-function query leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11655 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-04-09 03:15 修改: 2022-04-08 10:34
libsqlite3-0	CVE-2020-13630	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Use-after-free in fts3EvalNextRow in ext/fts3/fts3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13630 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libsqlite3-0	CVE-2020-13871	高危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: use-after-free in resetAccumulator in select.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13871 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-06-06 16:15 修改: 2023-11-07 03:16
libss2	CVE-2022-1304	高危	1.43.4-2		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
e2fsprogs	CVE-2022-1304	高危	1.43.4-2		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
gcc-6-base	CVE-2018-12886	高危	6.3.0-18+deb9u1		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
gnupg	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
gnupg-agent	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
gpgv	CVE-2018-1000858	高危	2.1.18-8~deb9u4		gnupg2: Cross site request forgery in dirmngr resulting in an information disclosure or denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000858 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-12-20 17:29 修改: 2019-02-13 16:43
libssh2-1	CVE-2019-13115	高危	1.7.0-1	1.7.0-1+deb9u2	libssh2: integer overflow in kex_method_diffie_hellman_group_exchange_sha256_key_exchange in kex.c leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13115 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-07-16 18:15 修改: 2023-11-07 03:03
libssh2-1	CVE-2019-17498	高危	1.7.0-1	1.7.0-1+deb9u2	libssh2: integer overflow in SSH_MSG_DISCONNECT logic in packet.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17498 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-10-21 22:15 修改: 2023-11-07 03:06
libssh2-1	CVE-2019-3855	高危	1.7.0-1	1.7.0-1+deb9u1	libssh2: Integer overflow in transport read resulting in out of bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3855 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-21 21:29 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3856	高危	1.7.0-1	1.7.0-1+deb9u1	libssh2: Integer overflow in keyboard interactive handling resulting in out of bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3856 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-25 19:29 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3857	高危	1.7.0-1	1.7.0-1+deb9u1	libssh2: Integer overflow in SSH packet processing channel resulting in out of bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3857 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-25 19:29 修改: 2023-11-07 03:10
libssh2-1	CVE-2019-3863	高危	1.7.0-1	1.7.0-1+deb9u1	libssh2: Integer overflow in user authenticate keyboard interactive allows out-of-bounds writes 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3863 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-25 18:29 修改: 2023-11-07 03:10
libssl1.0.2	CVE-2021-23840	高危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u4	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2021-3712	高危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u6	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2022-0778	高危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u7	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
gzip	CVE-2022-1271	高危	1.6-5+b1	1.6-5+deb9u1	gzip: arbitrary-file-write vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1271 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-08-31 16:15 修改: 2024-08-26 10:47
libssl1.1	CVE-2019-1543	高危	1.1.0j-1~deb9u1	1.1.0k-1~deb9u1	openssl: ChaCha20-Poly1305 with long nonces 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1543 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-06 21:29 修改: 2023-11-07 03:08
libssl1.1	CVE-2021-23840	高危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u3	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-3712	高危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u4	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-0778	高危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u5	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
libstdc++6	CVE-2018-12886	高危	6.3.0-18+deb9u1		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libsystemd0	CVE-2018-15686	高危	232-25+deb9u9	232-25+deb9u10	systemd: line splitting via fgets() allows for state injection during daemon-reexec 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15686 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-10-26 14:29 修改: 2023-11-07 02:53
libsystemd0	CVE-2019-3842	高危	232-25+deb9u9	232-25+deb9u11	systemd: Spoofing of XDG_SEAT allows for actions to be checked against "allow_active" instead of "allow_any" 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3842 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-04-09 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2019-3843	高危	232-25+deb9u9		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2019-3844	高危	232-25+deb9u9		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2020-1712	高危	232-25+deb9u9	232-25+deb9u14	systemd: use-after-free when asynchronous polkit queries are performed 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1712 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-03-31 17:15 修改: 2023-11-07 03:19
libtinfo5	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
libudev1	CVE-2018-15686	高危	232-25+deb9u9	232-25+deb9u10	systemd: line splitting via fgets() allows for state injection during daemon-reexec 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-15686 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-10-26 14:29 修改: 2023-11-07 02:53
libudev1	CVE-2019-3842	高危	232-25+deb9u9	232-25+deb9u11	systemd: Spoofing of XDG_SEAT allows for actions to be checked against "allow_active" instead of "allow_any" 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3842 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-04-09 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2019-3843	高危	232-25+deb9u9		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2019-3844	高危	232-25+deb9u9		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2020-1712	高危	232-25+deb9u9	232-25+deb9u14	systemd: use-after-free when asynchronous polkit queries are performed 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1712 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-03-31 17:15 修改: 2023-11-07 03:19
libuuid1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
libblkid1	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
login	CVE-2017-20002	高危	1:4.4-4.1	1:4.4-4.1+deb9u1	The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20002 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-03-17 06:15 修改: 2021-06-07 14:58
mount	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
ncurses-base	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-bin	CVE-2022-29458	高危	6.0+20161126-1+deb9u2		ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
curl	CVE-2019-5436	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u10	curl: TFTP receive heap buffer overflow in tftp_receive_packet() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5436 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-05-28 19:29 修改: 2023-11-07 03:11
openssl	CVE-2019-1543	高危	1.1.0j-1~deb9u1	1.1.0k-1~deb9u1	openssl: ChaCha20-Poly1305 with long nonces 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1543 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-03-06 21:29 修改: 2023-11-07 03:08
openssl	CVE-2021-23840	高危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u3	openssl: integer overflow in CipherUpdate 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23840 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl	CVE-2021-3712	高危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u4	openssl: Read buffer overruns processing ASN.1 strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3712 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-24 15:15 修改: 2024-06-21 19:15
openssl	CVE-2022-0778	高危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u5	openssl: Infinite loop in BN_mod_sqrt() reachable when parsing certificates 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0778 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-03-15 17:15 修改: 2024-06-21 19:15
libcomerr2	CVE-2022-1304	高危	1.43.4-2		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-04-14 21:15 修改: 2024-11-22 12:15
passwd	CVE-2017-20002	高危	1:4.4-4.1	1:4.4-4.1+deb9u1	The Debian shadow package before 1:4.5-1 for Shadow incorrectly lists ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20002 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-03-17 06:15 修改: 2021-06-07 14:58
perl-base	CVE-2020-10543	高危	5.24.1-3+deb9u5	5.24.1-3+deb9u7	perl: heap-based buffer overflow in regular expression compiler leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10543 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base	CVE-2020-10878	高危	5.24.1-3+deb9u5	5.24.1-3+deb9u7	perl: corruption of intermediate language state of compiled regular expression due to integer overflow leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10878 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-06-05 14:15 修改: 2023-11-07 03:14
perl-base	CVE-2020-12723	高危	5.24.1-3+deb9u5	5.24.1-3+deb9u7	perl: corruption of intermediate language state of compiled regular expression due to recursive S_study_chunk() calls leads to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-12723 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-06-05 15:15 修改: 2023-11-07 03:15
perl-base	CVE-2020-16156	高危	5.24.1-3+deb9u5		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
util-linux	CVE-2016-2779	高危	2.29.2-1+deb9u1		util-linux: runuser tty hijack via TIOCSTI ioctl 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2779 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2019-01-04 14:14
curl	CVE-2020-8177	高危	7.52.1-5+deb9u9	7.52.1-5+deb9u11	curl: Incorrect argument check can allow remote servers to overwrite local files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8177 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-03-27 16:04
zlib1g	CVE-2018-25032	高危	1:1.2.8.dfsg-5	1:1.2.8.dfsg-5+deb9u1	zlib: A flaw found in zlib when compressing (not decompressing) certain inputs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-25032 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-03-25 09:15 修改: 2023-11-07 02:56
libkrb5support0	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libkrb5support0	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5support0	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libkrb5support0	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
libcurl3	CVE-2021-22947	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
e2fsprogs	CVE-2019-5094	中危	1.43.4-2	1.43.4-2+deb9u1	e2fsprogs: Crafted ext4 partition leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5094 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-09-24 22:15 修改: 2023-11-07 03:11
e2fsprogs	CVE-2019-5188	中危	1.43.4-2	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libnettle6	CVE-2018-16869	中危	3.3-1+b2		nettle: Leaky data conversion exposing a manager oracle 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
libssl1.0.2	CVE-2019-1547	中危	1.0.2r-1~deb9u1	1.0.2t-1~deb9u1	openssl: side-channel weak encryption vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1547 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-10 17:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2019-1551	中危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u1	openssl: Integer overflow in RSAZ modular exponentiation on x86_64 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
libssl1.0.2	CVE-2020-1971	中危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u3	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.0.2	CVE-2021-23841	中危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u4	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libcomerr2	CVE-2019-5094	中危	1.43.4-2	1.43.4-2+deb9u1	e2fsprogs: Crafted ext4 partition leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5094 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-09-24 22:15 修改: 2023-11-07 03:11
libcomerr2	CVE-2019-5188	中危	1.43.4-2	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libgcrypt20	CVE-2019-13627	中危	1.7.6-2+deb9u3		libgcrypt: ECDSA timing attack allowing private key leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13627 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-09-25 15:15 修改: 2021-07-21 11:39
libgcrypt20	CVE-2021-40528	中危	1.7.6-2+deb9u3	1.7.6-2+deb9u4	libgcrypt: ElGamal implementation allows plaintext recovery 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-40528 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-09-06 19:15 修改: 2023-11-07 03:38
apt	CVE-2020-3810	中危	1.4.9	1.4.10	Missing input validation in the ar/tar implementations of APT before v ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3810 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-05-15 14:15 修改: 2023-11-07 03:23
libssl1.1	CVE-2019-1547	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u1	openssl: side-channel weak encryption vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1547 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-10 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2019-1551	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u5	openssl: Integer overflow in RSAZ modular exponentiation on x86_64 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
libssl1.1	CVE-2020-1971	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u2	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-23841	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u3	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2021-4160	中危	1.1.0j-1~deb9u1		openssl: Carry propagation bug in the MIPS32 and MIPS64 squaring procedure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4160 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-01-28 22:15 修改: 2024-06-21 19:15
libp11-kit0	CVE-2020-29362	中危	0.23.3-2	0.23.3-2+deb9u1	p11-kit: out-of-bounds read in p11_rpc_buffer_get_byte_array function in rpc-message.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-29362 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-16 14:15 修改: 2021-01-11 16:50
libpcre3	CVE-2020-14155	中危	2:8.39-3		pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
apt	CVE-2020-27350	中危	1.4.9	1.4.11	APT had several integer overflows and underflows while parsing .deb pa ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libgnutls30	CVE-2018-16868	中危	3.5.8-5+deb9u4		gnutls: Bleichenbacher-like side channel leakage in PKCS#1 v1.5 verification and padding oracle verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16868 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-03 14:29 修改: 2022-11-30 21:20
libgnutls30	CVE-2021-4209	中危	3.5.8-5+deb9u4		GnuTLS: Null pointer dereference in MD_UPDATE 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4209 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-08-24 16:15 修改: 2022-10-27 16:57
curl	CVE-2021-22876	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u14	curl: Leak of authentication credentials in URL via automatic Referer 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libsystemd0	CVE-2018-1049	中危	232-25+deb9u9	232-25+deb9u10	systemd: automount: access to automounted volumes can lock up 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1049 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-02-16 21:29 修改: 2022-01-31 18:26
libsystemd0	CVE-2021-33910	中危	232-25+deb9u9	232-25+deb9u13	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libsystemd0	CVE-2021-3997	中危	232-25+deb9u9		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libgssapi-krb5-2	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libgssapi-krb5-2	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libgssapi-krb5-2	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libgssapi-krb5-2	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
e2fslibs	CVE-2019-5094	中危	1.43.4-2	1.43.4-2+deb9u1	e2fsprogs: Crafted ext4 partition leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5094 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-09-24 22:15 修改: 2023-11-07 03:11
e2fslibs	CVE-2019-5188	中危	1.43.4-2	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
libudev1	CVE-2018-1049	中危	232-25+deb9u9	232-25+deb9u10	systemd: automount: access to automounted volumes can lock up 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1049 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-02-16 21:29 修改: 2022-01-31 18:26
libudev1	CVE-2021-33910	中危	232-25+deb9u9	232-25+deb9u13	systemd: uncontrolled allocation on the stack in function unit_name_path_escape leads to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33910 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-20 19:15 修改: 2023-11-07 03:35
libudev1	CVE-2021-3997	中危	232-25+deb9u9		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libhogweed4	CVE-2018-16869	中危	3.3-1+b2		nettle: Leaky data conversion exposing a manager oracle 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16869 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-03 14:29 修改: 2023-02-03 14:25
libapt-pkg5.0	CVE-2020-27350	中危	1.4.9	1.4.11	APT had several integer overflows and underflows while parsing .deb pa ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27350 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-12-10 04:15 修改: 2022-10-29 02:41
libapt-pkg5.0	CVE-2020-3810	中危	1.4.9	1.4.10	Missing input validation in the ar/tar implementations of APT before v ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-3810 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-05-15 14:15 修改: 2023-11-07 03:23
libk5crypto3	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libk5crypto3	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libk5crypto3	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libsqlite3-0	CVE-2019-16168	中危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16168 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-09 17:15 修改: 2023-11-07 03:05
libsqlite3-0	CVE-2019-19645	中危	3.16.2-5+deb9u1		sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14
libsqlite3-0	CVE-2020-13434	中危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: integer overflow in sqlite3_str_vappendf function in printf.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13434 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-05-24 22:15 修改: 2023-11-07 03:16
libsqlite3-0	CVE-2020-13631	中危	3.16.2-5+deb9u1		sqlite: Virtual table can be renamed into the name of one of its shadow tables 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libsqlite3-0	CVE-2020-13632	中危	3.16.2-5+deb9u1	3.16.2-5+deb9u2	sqlite: NULL pointer dereference in ext/fts3/fts3_snippet.c via a crafted matchinfo() query 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13632 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
openssl	CVE-2019-1547	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u1	openssl: side-channel weak encryption vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1547 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-10 17:15 修改: 2024-06-21 19:15
openssl	CVE-2019-1551	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u5	openssl: Integer overflow in RSAZ modular exponentiation on x86_64 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1551 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-06 18:15 修改: 2023-11-07 03:08
openssl	CVE-2020-1971	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u2	openssl: EDIPARTYNAME NULL pointer de-reference 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1971 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-08 16:15 修改: 2024-06-21 19:15
openssl	CVE-2021-23841	中危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u3	openssl: NULL pointer dereference in X509_issuer_and_serial_hash() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23841 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-02-16 17:15 修改: 2024-06-21 19:15
openssl	CVE-2021-4160	中危	1.1.0j-1~deb9u1		openssl: Carry propagation bug in the MIPS32 and MIPS64 squaring procedure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4160 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-01-28 22:15 修改: 2024-06-21 19:15
libk5crypto3	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
libss2	CVE-2019-5094	中危	1.43.4-2	1.43.4-2+deb9u1	e2fsprogs: Crafted ext4 partition leads to out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5094 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-09-24 22:15 修改: 2023-11-07 03:11
libss2	CVE-2019-5188	中危	1.43.4-2	1.43.4-2+deb9u2	e2fsprogs: Out-of-bounds write in e2fsck/rehash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5188 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-01-08 16:15 修改: 2023-11-07 03:11
curl	CVE-2021-22947	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u16	curl: Server responses received before STARTTLS processed after TLS handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22947 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-09-29 20:15 修改: 2024-03-27 15:03
libkrb5-3	CVE-2018-20217	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: Reachable assertion in the KDC using S4U2Self requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20217 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-12-26 21:29 修改: 2023-11-07 02:56
libkrb5-3	CVE-2018-5710	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null pointer deference in strlen function in plugins/kdb/ldap/libkdb_ldap/ldap_principal2.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5710 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
tar	CVE-2018-20482	中危	1.29b-1.1	1.29b-1.1+deb9u1	tar: Infinite read loop in sparse_dump_region function in sparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20482 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-12-26 18:29 修改: 2021-11-30 19:52
libkrb5-3	CVE-2018-5729	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: null dereference in kadmind or DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5729 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:52
libkrb5-3	CVE-2021-37750	中危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: NULL pointer dereference in process_tgs_req() in kdc/do_tgs_req.c via a FAST inner body that lacks server field 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37750 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-23 05:15 修改: 2023-11-07 03:37
wget	CVE-2021-31879	中危	1.18-5+deb9u2		wget: authorization header disclosure on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-04-29 05:15 修改: 2022-05-13 20:52
libcurl3	CVE-2021-22876	中危	7.52.1-5+deb9u9	7.52.1-5+deb9u14	curl: Leak of authentication credentials in URL via automatic Referer 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22876 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-04-01 18:15 修改: 2024-03-27 15:47
libldap-common	CVE-2019-13057	低危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u3	openldap: Information disclosure issue in slapd component 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13057 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-07-26 13:15 修改: 2022-06-13 18:38
libldap-common	CVE-2019-13565	低危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u3	openldap: ACL restrictions bypass due to sasl_ssf value being set permanently 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13565 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-07-26 13:15 修改: 2023-11-07 03:03
gnupg	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
liblz4-1	CVE-2019-17543	低危	0.0~r131-2+b1		lz4: heap-based buffer overflow in LZ4_write32 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
curl	CVE-2021-22898	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
gnupg-agent	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
libmount1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libsystemd0	CVE-2018-16888	低危	232-25+deb9u9		systemd: kills privileged process if unprivileged PIDFile was tampered 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16888 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-01-14 22:29 修改: 2023-11-07 02:53
libsystemd0	CVE-2018-6954	低危	232-25+deb9u9		systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00
gnupg-agent	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libtinfo5	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
libtinfo5	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libtinfo5	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libncursesw5	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
libncursesw5	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
libncursesw5	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libk5crypto3	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libk5crypto3	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
curl	CVE-2021-22924	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
gpgv	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
gpgv	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libudev1	CVE-2018-16888	低危	232-25+deb9u9		systemd: kills privileged process if unprivileged PIDFile was tampered 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16888 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-01-14 22:29 修改: 2023-11-07 02:53
libudev1	CVE-2018-6954	低危	232-25+deb9u9		systemd: Mishandled symlinks in systemd-tmpfiles allows local users to obtain ownership of arbitrary files 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6954 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-02-13 20:29 修改: 2023-11-07 03:00
bsdutils	CVE-2021-37600	低危	1:2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libuuid1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libldap-2.4-2	CVE-2019-13057	低危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u3	openldap: Information disclosure issue in slapd component 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13057 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-07-26 13:15 修改: 2022-06-13 18:38
libldap-2.4-2	CVE-2019-13565	低危	2.4.44+dfsg-5+deb9u2	2.4.44+dfsg-5+deb9u3	openldap: ACL restrictions bypass due to sasl_ssf value being set permanently 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13565 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-07-26 13:15 修改: 2023-11-07 03:03
login	CVE-2018-7169	低危	1:4.4-4.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
dirmngr	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
mount	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libkrb5-3	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
ncurses-base	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-base	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-base	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
libkrb5-3	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
ncurses-bin	CVE-2018-19211	低危	6.0+20161126-1+deb9u2		ncurses: Null pointer dereference at function _nc_parse_entry in parse_entry.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-19211 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-11-12 19:29 修改: 2019-04-23 13:15
ncurses-bin	CVE-2019-17594	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the _nc_find_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17594 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-10 15:13
ncurses-bin	CVE-2019-17595	低危	6.0+20161126-1+deb9u2		ncurses: heap-based buffer overflow in the fmt_entry function in tinfo/comp_hash.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17595 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2019-10-14 21:15 修改: 2021-02-08 20:52
dirmngr	CVE-2019-14855	低危	2.1.18-8~deb9u4		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
coreutils	CVE-2016-2781	低危	8.26-3		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libblkid1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libsepol1	CVE-2021-36084	低危	2.6-2		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36085	低危	2.6-2		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36086	低危	2.6-2		libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libssl1.0.2	CVE-2019-1563	低危	1.0.2r-1~deb9u1	1.0.2t-1~deb9u1	openssl: information disclosure in PKCS7_dataDecode and CMS_decrypt_set1_pkey 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1563 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-10 17:15 修改: 2023-11-07 03:08
libssl1.0.2	CVE-2020-1968	低危	1.0.2r-1~deb9u1	1.0.2u-1~deb9u2	openssl: Information exposure when DH secret are reused across multiple TLS connections 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1968 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-09-09 14:15 修改: 2022-11-21 19:48
libsepol1	CVE-2021-36087	低危	2.6-2		libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libcurl3	CVE-2020-8284	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: FTP PASV command response can cause curl to connect to arbitrary host 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
openssl	CVE-2019-1563	低危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u1	openssl: information disclosure in PKCS7_dataDecode and CMS_decrypt_set1_pkey 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1563 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-10 17:15 修改: 2023-11-07 03:08
libsmartcols1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libgssapi-krb5-2	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
passwd	CVE-2018-7169	低危	1:4.4-4.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
libkrb5support0	CVE-2017-11462	低危	1.15-1+deb9u1		krb5: Automatic sec context deletion could lead to double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11462 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-09-13 16:29 修改: 2023-11-07 02:38
libkrb5support0	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libgssapi-krb5-2	CVE-2018-5730	低危	1.15-1+deb9u1	1.15-1+deb9u3	krb5: DN container check bypass by supplying special crafted data 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5730 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-06 20:29 修改: 2024-05-23 17:53
libcurl3	CVE-2021-22898	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: TELNET stack contents disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22898 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-06-11 16:15 修改: 2024-03-27 15:47
libcurl3	CVE-2021-22924	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u15	curl: Bad connection reuse due to flawed path name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22924 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
curl	CVE-2020-8284	低危	7.52.1-5+deb9u9	7.52.1-5+deb9u13	curl: FTP PASV command response can cause curl to connect to arbitrary host 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8284 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-14 20:15 修改: 2024-04-08 22:50
util-linux	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
libssl1.1	CVE-2019-1563	低危	1.1.0j-1~deb9u1	1.1.0l-1~deb9u1	openssl: information disclosure in PKCS7_dataDecode and CMS_decrypt_set1_pkey 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1563 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-09-10 17:15 修改: 2023-11-07 03:08
gnupg	CVE-2018-9234	低危	2.1.18-8~deb9u4		GnuPG: Unenforced configuration allows for apparently valid certifications actually signed by signing subkeys 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-9234 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-04-04 00:29 修改: 2019-02-27 19:37
libfdisk1	CVE-2021-37600	低危	2.29.2-1+deb9u1		util-linux: integer overflow can lead to buffer overflow in get_sem_elements() in sys-utils/ipcutils.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37600 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 2021-07-30 14:15 修改: 2024-08-04 02:15
tzdata	DLA-2509-1	未知	2018i-0+deb9u1	2020e-0+deb9u1	tzdata - new upstream version 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2542-1	未知	2018i-0+deb9u1	2021a-0+deb9u1	tzdata - new upstream version 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2797-1	未知	2018i-0+deb9u1	2021a-0+deb9u2	tzdata - new upstream version 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2963-1	未知	2018i-0+deb9u1	2021a-0+deb9u3	tzdata - new timezone database 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-3051-1	未知	2018i-0+deb9u1	2021a-0+deb9u4	tzdata - new timezone database 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
debian-archive-keyring	DLA-2948-1	未知	2017.5	2017.5+deb9u2	debian-archive-keyring - security update 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libssl1.0.2	DLA-2761-1	未知	1.0.2r-1~deb9u1	1.0.2u-1~deb9u5	openssl1.0 - security update 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ca-certificates	DLA-2593-1	未知	20161130+nmu1+deb9u1	20200601~deb9u2	ca-certificates - whitelist Symantec CA 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libgnutls30	DLA-2759-1	未知	3.5.8-5+deb9u4	3.5.8-5+deb9u6	gnutls28 - security update 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tzdata	DLA-2424-1	未知	2018i-0+deb9u1	2020d-0+deb9u1	tzdata - new upstream version 漏洞详情: 镜像层: sha256:6744ca1b11903f4db4d5e26145f6dd20f9a6d321a7f725f1a0a7a45a4174c579 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

Node.js (node-pkg)

低危漏洞:39

中危漏洞:121

高危漏洞:196

严重漏洞:33

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
deep-extend	CVE-2018-3750	严重	0.4.2	0.5.1	nodejs-deep-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3750 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-07-03 21:29 修改: 2018-08-23 13:12
deep-extend	CVE-2018-3750	严重	0.4.2	0.5.1	nodejs-deep-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3750 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-07-03 21:29 修改: 2018-08-23 13:12
deep-extend	CVE-2018-3750	严重	0.4.2	0.5.1	nodejs-deep-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3750 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-07-03 21:29 修改: 2018-08-23 13:12
https-proxy-agent	CVE-2018-3739	严重	2.0.0	2.2.0	nodejs-https-proxy-agent: Unsanitized options passed to Buffer() allow for denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3739 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:40
json-schema	CVE-2021-3918	严重	0.2.2	0.4.0	nodejs-json-schema: Prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3918 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-13 09:15 修改: 2023-02-03 19:15
json-schema	CVE-2021-3918	严重	0.2.2	0.4.0	nodejs-json-schema: Prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3918 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-13 09:15 修改: 2023-02-03 19:15
json-schema	CVE-2021-3918	严重	0.2.3	0.4.0	nodejs-json-schema: Prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3918 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-13 09:15 修改: 2023-02-03 19:15
json-schema	CVE-2021-3918	严重	0.2.3	0.4.0	nodejs-json-schema: Prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3918 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-13 09:15 修改: 2023-02-03 19:15
json-schema	CVE-2021-3918	严重	0.2.3	0.4.0	nodejs-json-schema: Prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3918 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-11-13 09:15 修改: 2023-02-03 19:15
lodash	CVE-2019-10744	严重	3.10.1	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	3.10.1	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	4.17.11	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	4.17.11	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	4.17.11	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	4.17.11	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	4.17.11	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
lodash	CVE-2019-10744	严重	4.17.4	4.17.12	nodejs-lodash: prototype pollution in defaultsDeep function leading to modifying properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10744 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-26 00:15 修改: 2024-01-21 02:45
minimist	CVE-2021-44906	严重	0.0.10	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	0.0.8	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	0.0.8	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	0.0.8	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	0.0.8	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	0.0.8	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	1.2.0	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	1.2.0	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
mixin-deep	CVE-2019-10746	严重	1.3.1	1.3.2, 2.0.1	nodejs-mixin-deep: prototype pollution in function mixin-deep 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10746 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-08-23 17:15 修改: 2023-11-07 03:02
mixin-deep	CVE-2019-10746	严重	1.3.1	1.3.2, 2.0.1	nodejs-mixin-deep: prototype pollution in function mixin-deep 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10746 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-08-23 17:15 修改: 2023-11-07 03:02
open	GHSA-28xh-wpgr-7fm8	严重	0.0.5	6.0.0	Command Injection in open 漏洞详情: https://github.com/advisories/GHSA-28xh-wpgr-7fm8 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
open	NSWG-ECO-433	严重	0.0.5	>=6.0.0	Command Injection - Generic 漏洞详情: https://hackerone.com/reports/319473 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
set-value	CVE-2019-10747	严重	0.4.3	2.0.1, 3.0.1	nodejs-set-value: prototype pollution in function set-value 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10747 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-08-23 17:15 修改: 2023-11-07 03:02
set-value	CVE-2019-10747	严重	0.4.3	2.0.1, 3.0.1	nodejs-set-value: prototype pollution in function set-value 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10747 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-08-23 17:15 修改: 2023-11-07 03:02
set-value	CVE-2019-10747	严重	2.0.0	2.0.1, 3.0.1	nodejs-set-value: prototype pollution in function set-value 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10747 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-08-23 17:15 修改: 2023-11-07 03:02
set-value	CVE-2019-10747	严重	2.0.0	2.0.1, 3.0.1	nodejs-set-value: prototype pollution in function set-value 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10747 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-08-23 17:15 修改: 2023-11-07 03:02
fstream	CVE-2019-13173	高危	1.0.10	1.0.12	nodejs-fstream: File overwrite in fstream.DirWriter() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13173 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-07-02 20:15 修改: 2020-08-24 17:37
fstream	CVE-2019-13173	高危	1.0.11	1.0.12	nodejs-fstream: File overwrite in fstream.DirWriter() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13173 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-02 20:15 修改: 2020-08-24 17:37
fstream	CVE-2019-13173	高危	1.0.8	1.0.12	nodejs-fstream: File overwrite in fstream.DirWriter() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13173 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-02 20:15 修改: 2020-08-24 17:37
hawk	CVE-2022-29167	高危	3.1.3	9.0.1	hawk: REDoS in hawk.utils.parseHost() when parsing Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29167 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-05-05 23:15 修改: 2023-07-21 16:42
hawk	CVE-2022-29167	高危	3.1.3	9.0.1	hawk: REDoS in hawk.utils.parseHost() when parsing Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29167 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-05-05 23:15 修改: 2023-07-21 16:42
hawk	CVE-2022-29167	高危	3.1.3	9.0.1	hawk: REDoS in hawk.utils.parseHost() when parsing Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29167 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-05-05 23:15 修改: 2023-07-21 16:42
hawk	CVE-2022-29167	高危	3.1.3	9.0.1	hawk: REDoS in hawk.utils.parseHost() when parsing Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29167 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-05-05 23:15 修改: 2023-07-21 16:42
hawk	CVE-2022-29167	高危	3.1.3	9.0.1	hawk: REDoS in hawk.utils.parseHost() when parsing Host header 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29167 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-05-05 23:15 修改: 2023-07-21 16:42
hoek	CVE-2020-36604	高危	2.16.3		hapi/hoek: Prototype Pollution in @hapi/hoek 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36604 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-09-23 06:15 修改: 2023-11-07 03:22
hoek	CVE-2020-36604	高危	2.16.3		hapi/hoek: Prototype Pollution in @hapi/hoek 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36604 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-09-23 06:15 修改: 2023-11-07 03:22
hoek	CVE-2020-36604	高危	2.16.3		hapi/hoek: Prototype Pollution in @hapi/hoek 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36604 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-09-23 06:15 修改: 2023-11-07 03:22
hoek	CVE-2020-36604	高危	2.16.3		hapi/hoek: Prototype Pollution in @hapi/hoek 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36604 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-09-23 06:15 修改: 2023-11-07 03:22
hoek	CVE-2020-36604	高危	2.16.3		hapi/hoek: Prototype Pollution in @hapi/hoek 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36604 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-09-23 06:15 修改: 2023-11-07 03:22
http-cache-semantics	CVE-2022-25881	高危	3.7.3	4.1.1	http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-31 05:15 修改: 2023-11-07 03:44
http-proxy-agent	GHSA-8w57-jfpm-945m	高危	2.0.0	2.1.0	Denial of Service in http-proxy-agent 漏洞详情: https://github.com/advisories/GHSA-8w57-jfpm-945m 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
http-proxy-agent	NSWG-ECO-402	高危	2.0.0	>=2.1.0	Denial of Service 漏洞详情: https://hackerone.com/reports/321631 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
body-parser	CVE-2024-45590	高危	1.14.2	1.20.3	body-parser: Denial of Service Vulnerability in body-parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
https-proxy-agent	NSWG-ECO-388	高危	2.0.0	>=2.2.0	Denial of Service 漏洞详情: https://hackerone.com/reports/319532 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ini	CVE-2020-7788	高危	1.3.4	1.3.6	nodejs-ini: Prototype pollution via malicious INI file 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7788 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-11 11:15 修改: 2022-12-02 19:40
ini	CVE-2020-7788	高危	1.3.4	1.3.6	nodejs-ini: Prototype pollution via malicious INI file 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7788 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-11 11:15 修改: 2022-12-02 19:40
ini	CVE-2020-7788	高危	1.3.4	1.3.6	nodejs-ini: Prototype pollution via malicious INI file 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7788 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-11 11:15 修改: 2022-12-02 19:40
ini	CVE-2020-7788	高危	1.3.4	1.3.6	nodejs-ini: Prototype pollution via malicious INI file 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7788 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-11 11:15 修改: 2022-12-02 19:40
ip	CVE-2024-29415	高危	1.1.5		node-ip: Incomplete fix for CVE-2023-42282 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
js-yaml	GHSA-8j8c-7jfh-h6hx	高危	3.12.2	3.13.1	Code Injection in js-yaml 漏洞详情: https://github.com/advisories/GHSA-8j8c-7jfh-h6hx 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	CVE-2017-18077	高危	1.1.2	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.3	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.3	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.3	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.3	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
kind-of	CVE-2019-20149	高危	6.0.2	6.0.3	nodejs-kind-of: ctorName in index.js allows external user input to overwrite certain internal attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20149 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-30 19:15 修改: 2020-08-24 17:37
kind-of	CVE-2019-20149	高危	6.0.2	6.0.3	nodejs-kind-of: ctorName in index.js allows external user input to overwrite certain internal attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20149 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-30 19:15 修改: 2020-08-24 17:37
kind-of	CVE-2019-20149	高危	6.0.2	6.0.3	nodejs-kind-of: ctorName in index.js allows external user input to overwrite certain internal attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20149 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-30 19:15 修改: 2020-08-24 17:37
kind-of	CVE-2019-20149	高危	6.0.2	6.0.3	nodejs-kind-of: ctorName in index.js allows external user input to overwrite certain internal attributes 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20149 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-30 19:15 修改: 2020-08-24 17:37
brace-expansion	CVE-2017-18077	高危	1.1.6	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.6	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
lodash	CVE-2018-16487	高危	3.10.1	>=4.17.11	lodash: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16487 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2020-09-18 16:38
lodash	CVE-2018-16487	高危	3.10.1	>=4.17.11	lodash: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16487 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2020-09-18 16:38
lodash	CVE-2020-8203	高危	3.10.1	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2020-8203	高危	3.10.1	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2021-23337	高危	3.10.1	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
lodash	CVE-2021-23337	高危	3.10.1	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
brace-expansion	CVE-2017-18077	高危	1.1.6	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.6	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.6	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
brace-expansion	CVE-2017-18077	高危	1.1.6	1.1.7	nodejs-brace-expansion: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18077 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-01-27 12:29 修改: 2018-02-15 18:14
braces	CVE-2024-4068	高危	1.8.5	3.0.3	braces: fails to limit the number of characters it can handle 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-07-03 02:07
lodash	CVE-2020-8203	高危	4.17.11	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2020-8203	高危	4.17.11	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2020-8203	高危	4.17.11	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2020-8203	高危	4.17.11	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2020-8203	高危	4.17.11	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2021-23337	高危	4.17.11	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
lodash	CVE-2021-23337	高危	4.17.11	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
lodash	CVE-2021-23337	高危	4.17.11	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
lodash	CVE-2021-23337	高危	4.17.11	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
lodash	CVE-2021-23337	高危	4.17.11	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
braces	CVE-2024-4068	高危	1.8.5	3.0.3	braces: fails to limit the number of characters it can handle 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-07-03 02:07
lodash	CVE-2018-16487	高危	4.17.4	>=4.17.11	lodash: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16487 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2020-09-18 16:38
lodash	CVE-2020-8203	高危	4.17.4	4.17.19	nodejs-lodash: prototype pollution in zipObjectDeep function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8203 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 17:15 修改: 2024-01-21 02:37
lodash	CVE-2021-23337	高危	4.17.4	4.17.21	nodejs-lodash: command injection via template 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23337 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 13:15 修改: 2022-09-13 21:25
mime	CVE-2017-16138	高危	1.3.4	2.0.3, 1.4.1	nodejs-mime: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16138 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
minimatch	CVE-2016-10540	高危	1.0.0	3.0.2	Minimatch is a minimal matching utility that works by converting glob ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10540 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
minimatch	CVE-2022-3517	高危	1.0.0	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	NSWG-ECO-118	高危	1.0.0	>=3.0.2	Regular Expression Denial of Service 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimatch	CVE-2016-10540	高危	2.0.10	3.0.2	Minimatch is a minimal matching utility that works by converting glob ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10540 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
minimatch	CVE-2022-3517	高危	2.0.10	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	NSWG-ECO-118	高危	2.0.10	>=3.0.2	Regular Expression Denial of Service 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimatch	CVE-2016-10540	高危	3.0.0	3.0.2	Minimatch is a minimal matching utility that works by converting glob ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10540 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
minimatch	CVE-2016-10540	高危	3.0.0	3.0.2	Minimatch is a minimal matching utility that works by converting glob ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10540 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
minimatch	CVE-2016-10540	高危	3.0.0	3.0.2	Minimatch is a minimal matching utility that works by converting glob ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10540 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
minimatch	CVE-2016-10540	高危	3.0.0	3.0.2	Minimatch is a minimal matching utility that works by converting glob ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-10540 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-05-31 20:29 修改: 2019-10-09 23:16
minimatch	CVE-2022-3517	高危	3.0.0	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.0	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.0	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.0	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	NSWG-ECO-118	高危	3.0.0	>=3.0.2	Regular Expression Denial of Service 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimatch	NSWG-ECO-118	高危	3.0.0	>=3.0.2	Regular Expression Denial of Service 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimatch	NSWG-ECO-118	高危	3.0.0	>=3.0.2	Regular Expression Denial of Service 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimatch	NSWG-ECO-118	高危	3.0.0	>=3.0.2	Regular Expression Denial of Service 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimatch	CVE-2022-3517	高危	3.0.3	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.3	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.3	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.3	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.3	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.3	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
braces	CVE-2024-4068	高危	2.3.2	3.0.3	braces: fails to limit the number of characters it can handle 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-07-03 02:07
braces	CVE-2024-4068	高危	2.3.2	3.0.3	braces: fails to limit the number of characters it can handle 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-07-03 02:07
debug	CVE-2017-20165	高危	2.2.0	3.1.0, 2.6.9	A vulnerability classified as problematic has been found in debug-js d ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
debug	CVE-2017-20165	高危	2.2.0	3.1.0, 2.6.9	A vulnerability classified as problematic has been found in debug-js d ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
debug	CVE-2017-20165	高危	2.2.0	3.1.0, 2.6.9	A vulnerability classified as problematic has been found in debug-js d ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
debug	CVE-2017-20165	高危	2.2.0	3.1.0, 2.6.9	A vulnerability classified as problematic has been found in debug-js d ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
debug	CVE-2017-20165	高危	2.6.8	3.1.0, 2.6.9	A vulnerability classified as problematic has been found in debug-js d ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
debug	CVE-2017-20165	高危	2.6.8	3.1.0, 2.6.9	A vulnerability classified as problematic has been found in debug-js d ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20165 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-09 10:15 修改: 2024-05-17 01:17
decode-uri-component	CVE-2022-38900	高危	0.2.0	0.2.1	decode-uri-component: improper input validation resulting in DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-28 13:15 修改: 2023-11-07 03:50
decode-uri-component	CVE-2022-38900	高危	0.2.0	0.2.1	decode-uri-component: improper input validation resulting in DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-28 13:15 修改: 2023-11-07 03:50
moment	CVE-2017-18214	高危	2.13.0	2.19.3	nodejs-moment: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18214 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-03-04 21:29 修改: 2022-02-14 18:03
moment	CVE-2022-24785	高危	2.13.0	2.29.2	Moment.js: Path traversal in moment.locale 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24785 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-04-04 17:15 修改: 2023-11-07 03:44
npm	CVE-2018-7408	高危	2.15.12	5.7.1	Incorrect Permission Assignment for Critical Resource in NPM 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7408 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-02-22 18:29 修改: 2019-10-03 00:03
npm	CVE-2019-16775	高危	2.15.12	6.13.3	npm: Symlink reference outside of node_modules folder through the bin field upon installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16775 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16776	高危	2.15.12	6.13.3	npm: Arbitrary file write via constructed entry in the package.json bin field 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16776 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16777	高危	2.15.12	6.13.4	npm: Global node_modules Binary Overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16777 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2018-7408	高危	3.10.10	5.7.1	Incorrect Permission Assignment for Critical Resource in NPM 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7408 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-02-22 18:29 修改: 2019-10-03 00:03
npm	CVE-2019-16775	高危	3.10.10	6.13.3	npm: Symlink reference outside of node_modules folder through the bin field upon installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16775 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16776	高危	3.10.10	6.13.3	npm: Arbitrary file write via constructed entry in the package.json bin field 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16776 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16777	高危	3.10.10	6.13.4	npm: Global node_modules Binary Overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16777 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2018-7408	高危	3.9.2	5.7.1	Incorrect Permission Assignment for Critical Resource in NPM 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7408 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-02-22 18:29 修改: 2019-10-03 00:03
npm	CVE-2019-16775	高危	3.9.2	6.13.3	npm: Symlink reference outside of node_modules folder through the bin field upon installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16775 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16776	高危	3.9.2	6.13.3	npm: Arbitrary file write via constructed entry in the package.json bin field 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16776 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16777	高危	3.9.2	6.13.4	npm: Global node_modules Binary Overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16777 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2018-7408	高危	5.1.0	5.7.1	Incorrect Permission Assignment for Critical Resource in NPM 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7408 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-02-22 18:29 修改: 2019-10-03 00:03
npm	CVE-2019-16775	高危	5.1.0	6.13.3	npm: Symlink reference outside of node_modules folder through the bin field upon installation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16775 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16776	高危	5.1.0	6.13.3	npm: Arbitrary file write via constructed entry in the package.json bin field 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16776 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm	CVE-2019-16777	高危	5.1.0	6.13.4	npm: Global node_modules Binary Overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-16777 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-12-13 01:15 修改: 2023-11-07 03:05
npm-user-validate	CVE-2020-7754	高危	0.1.2	1.0.1	nodejs-npm-user-validate: improper input validation when validating user emails leads to ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7754 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-10-27 15:15 修改: 2020-10-27 17:31
npm-user-validate	CVE-2020-7754	高危	0.1.5	1.0.1	nodejs-npm-user-validate: improper input validation when validating user emails leads to ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7754 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-10-27 15:15 修改: 2020-10-27 17:31
npm-user-validate	CVE-2020-7754	高危	0.1.5	1.0.1	nodejs-npm-user-validate: improper input validation when validating user emails leads to ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7754 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-10-27 15:15 修改: 2020-10-27 17:31
npm-user-validate	CVE-2020-7754	高危	1.0.0	1.0.1	nodejs-npm-user-validate: improper input validation when validating user emails leads to ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7754 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-10-27 15:15 修改: 2020-10-27 17:31
nth-check	CVE-2021-3803	高危	1.0.2	2.0.1	nodejs-nth-check: inefficient regular expression complexity 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3803 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-17 07:15 修改: 2023-07-10 18:52
object-path	CVE-2020-15256	高危	0.9.2	0.11.5	object-path: Prototype pollution could result in DoS or RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15256 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-10-19 22:15 修改: 2021-11-18 16:20
object-path	CVE-2021-3805	高危	0.9.2	0.11.8	nodejs-object-path: prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3805 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-17 06:15 修改: 2023-01-30 18:24
ansi-regex	CVE-2021-3807	高危	3.0.0	6.0.1, 5.0.1, 4.1.1, 3.0.1	nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
ansi-regex	CVE-2021-3807	高危	3.0.0	6.0.1, 5.0.1, 4.1.1, 3.0.1	nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
qs	CVE-2017-1000048	高危	5.1.0	6.0.4, 6.1.2, 6.2.3, 6.3.2	nodejs-qs: Prototype override protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
qs	CVE-2022-24999	高危	5.1.0	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2017-1000048	高危	5.2.0	6.0.4, 6.1.2, 6.2.3, 6.3.2	nodejs-qs: Prototype override protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
qs	CVE-2022-24999	高危	5.2.0	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2017-1000048	高危	6.1.0	6.0.4, 6.1.2, 6.2.3, 6.3.2	nodejs-qs: Prototype override protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
qs	CVE-2022-24999	高危	6.1.0	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2022-24999	高危	6.1.2	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2017-1000048	高危	6.2.1	6.0.4, 6.1.2, 6.2.3, 6.3.2	nodejs-qs: Prototype override protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
qs	CVE-2017-1000048	高危	6.2.1	6.0.4, 6.1.2, 6.2.3, 6.3.2	nodejs-qs: Prototype override protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-1000048 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-07-17 13:18 修改: 2017-12-31 02:29
qs	CVE-2022-24999	高危	6.2.1	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2022-24999	高危	6.2.1	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2022-24999	高危	6.4.0	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
semver	CVE-2022-25883	高危	4.3.6	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	4.3.6	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.1.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.1.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.1.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.3.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.3.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.3.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.3.0	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
async	CVE-2021-43138	高危	2.6.2	3.2.2, 2.6.4	async: Prototype Pollution in async 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-43138 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-04-06 17:15 修改: 2024-06-21 19:15
dot-prop	CVE-2020-8116	高危	4.1.1	4.2.1, 5.1.1	nodejs-dot-prop: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8116 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-02-04 20:15 修改: 2022-08-05 19:32
set-value	CVE-2021-23440	高危	0.4.3	4.0.1, 2.0.1, 3.0.3	nodejs-set-value: type confusion allows bypass of CVE-2019-10747 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23440 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-12 13:15 修改: 2022-03-29 16:39
set-value	CVE-2021-23440	高危	0.4.3	4.0.1, 2.0.1, 3.0.3	nodejs-set-value: type confusion allows bypass of CVE-2019-10747 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23440 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-12 13:15 修改: 2022-03-29 16:39
fresh	CVE-2017-16119	高危	0.3.0	0.5.2	nodejs-fresh: Regular expression denial of service when parsing crafted user input 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16119 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
fstream	CVE-2019-13173	高危	1.0.10	1.0.12	nodejs-fstream: File overwrite in fstream.DirWriter() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13173 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-02 20:15 修改: 2020-08-24 17:37
set-value	CVE-2021-23440	高危	2.0.0	4.0.1, 2.0.1, 3.0.3	nodejs-set-value: type confusion allows bypass of CVE-2019-10747 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23440 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-12 13:15 修改: 2022-03-29 16:39
set-value	CVE-2021-23440	高危	2.0.0	4.0.1, 2.0.1, 3.0.3	nodejs-set-value: type confusion allows bypass of CVE-2019-10747 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23440 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-09-12 13:15 修改: 2022-03-29 16:39
sshpk	CVE-2018-3737	高危	1.10.1	1.13.2	nodejs-sshpk: ReDoS when parsing crafted invalid public keys in lib/formats/ssh.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3737 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-06-07 02:29 修改: 2023-01-30 16:06
sshpk	NSWG-ECO-401	高危	1.10.1	>=1.13.2	Denial of Service 漏洞详情: https://hackerone.com/reports/319593 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
sshpk	CVE-2018-3737	高危	1.13.1	1.13.2	nodejs-sshpk: ReDoS when parsing crafted invalid public keys in lib/formats/ssh.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3737 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-01-30 16:06
sshpk	NSWG-ECO-401	高危	1.13.1	>=1.13.2	Denial of Service 漏洞详情: https://hackerone.com/reports/319593 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
sshpk	CVE-2018-3737	高危	1.7.4	1.13.2	nodejs-sshpk: ReDoS when parsing crafted invalid public keys in lib/formats/ssh.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3737 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-01-30 16:06
sshpk	NSWG-ECO-401	高危	1.7.4	>=1.13.2	Denial of Service 漏洞详情: https://hackerone.com/reports/319593 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
sshpk	CVE-2018-3737	高危	1.9.2	1.13.2	nodejs-sshpk: ReDoS when parsing crafted invalid public keys in lib/formats/ssh.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3737 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-01-30 16:06
sshpk	NSWG-ECO-401	高危	1.9.2	>=1.13.2	Denial of Service 漏洞详情: https://hackerone.com/reports/319593 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
static-eval	GHSA-x9hc-rw35-f44h	高危	0.1.1	2.0.2	Sandbox Breakout / Arbitrary Code Execution in static-eval 漏洞详情: https://github.com/advisories/GHSA-x9hc-rw35-f44h 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2018-20834	高危	2.2.1	4.4.2, 2.2.2	nodejs-tar: Arbitrary file overwrites when extracting tarballs containing a hard-link 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20834 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-04-30 19:29 修改: 2019-09-04 20:15
tar	CVE-2018-20834	高危	2.2.1	4.4.2, 2.2.2	nodejs-tar: Arbitrary file overwrites when extracting tarballs containing a hard-link 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20834 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-04-30 19:29 修改: 2019-09-04 20:15
tar	CVE-2018-20834	高危	2.2.1	4.4.2, 2.2.2	nodejs-tar: Arbitrary file overwrites when extracting tarballs containing a hard-link 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20834 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-04-30 19:29 修改: 2019-09-04 20:15
tar	CVE-2018-20834	高危	2.2.1	4.4.2, 2.2.2	nodejs-tar: Arbitrary file overwrites when extracting tarballs containing a hard-link 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20834 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-04-30 19:29 修改: 2019-09-04 20:15
tar	CVE-2021-32804	高危	2.2.1	3.2.2, 4.4.14, 5.0.6, 6.1.1	nodejs-tar: Insufficient absolute path sanitization allowing arbitrary file creation and overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32804 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-03 19:15 修改: 2022-04-25 19:12
tar	CVE-2021-32804	高危	2.2.1	3.2.2, 4.4.14, 5.0.6, 6.1.1	nodejs-tar: Insufficient absolute path sanitization allowing arbitrary file creation and overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32804 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-03 19:15 修改: 2022-04-25 19:12
tar	CVE-2021-32804	高危	2.2.1	3.2.2, 4.4.14, 5.0.6, 6.1.1	nodejs-tar: Insufficient absolute path sanitization allowing arbitrary file creation and overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32804 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-03 19:15 修改: 2022-04-25 19:12
tar	CVE-2021-32804	高危	2.2.1	3.2.2, 4.4.14, 5.0.6, 6.1.1	nodejs-tar: Insufficient absolute path sanitization allowing arbitrary file creation and overwrite 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32804 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-03 19:15 修改: 2022-04-25 19:12
tar	CVE-2021-37713	高危	2.2.1	4.4.18, 5.0.10, 6.1.9	nodejs-tar: Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37713 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-31 17:15 修改: 2022-04-25 18:40
tar	CVE-2021-37713	高危	2.2.1	4.4.18, 5.0.10, 6.1.9	nodejs-tar: Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37713 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-31 17:15 修改: 2022-04-25 18:40
tar	CVE-2021-37713	高危	2.2.1	4.4.18, 5.0.10, 6.1.9	nodejs-tar: Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37713 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-31 17:15 修改: 2022-04-25 18:40
tar	CVE-2021-37713	高危	2.2.1	4.4.18, 5.0.10, 6.1.9	nodejs-tar: Arbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-37713 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-08-31 17:15 修改: 2022-04-25 18:40
tar-fs	CVE-2018-20835	高危	1.15.3	1.16.2	Improper Input Validation in tar-fs 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20835 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-04-30 19:29 修改: 2019-05-03 14:49
tough-cookie	CVE-2016-1000232	高危	2.2.2	>=2.3.0	nodejs-tough-cookie: regular expression DoS via Cookie header with many semicolons 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1000232 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-09-05 17:29 修改: 2018-10-31 15:02
tough-cookie	CVE-2016-1000232	高危	2.2.2	>=2.3.0	nodejs-tough-cookie: regular expression DoS via Cookie header with many semicolons 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-1000232 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-09-05 17:29 修改: 2018-10-31 15:02
tough-cookie	CVE-2017-15010	高危	2.2.2	2.3.3	nodejs-tough-cookie: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15010 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-10-04 01:29 修改: 2023-11-07 02:39
tough-cookie	CVE-2017-15010	高危	2.2.2	2.3.3	nodejs-tough-cookie: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15010 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-10-04 01:29 修改: 2023-11-07 02:39
tough-cookie	CVE-2017-15010	高危	2.3.1	2.3.3	nodejs-tough-cookie: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15010 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-10-04 01:29 修改: 2023-11-07 02:39
tough-cookie	CVE-2017-15010	高危	2.3.1	2.3.3	nodejs-tough-cookie: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15010 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2017-10-04 01:29 修改: 2023-11-07 02:39
tough-cookie	CVE-2017-15010	高危	2.3.2	2.3.3	nodejs-tough-cookie: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15010 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2017-10-04 01:29 修改: 2023-11-07 02:39
urijs	CVE-2021-27516	高危	1.18.0	1.19.6	nodejs-urijs: mishandling certain uses of backslash may lead to confidentiality compromise 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-27516 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-22 00:15 修改: 2022-11-29 15:01
urijs	CVE-2022-1243	高危	1.18.0	1.19.11	Incorrect protocol extraction via \r, \n and \t characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1243 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-04-05 15:15 修改: 2023-07-24 13:46
websocket-extensions	CVE-2020-7662	高危	0.1.3	0.1.4	npmjs-websocket-extensions: ReDoS vulnerability in Sec-WebSocket-Extensions parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7662 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-06-02 19:15 修改: 2020-12-23 18:22
y18n	CVE-2020-7774	高危	3.2.1	3.2.2, 4.0.1, 5.0.5	nodejs-y18n: prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7774 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-11-17 13:15 修改: 2022-12-02 19:40
y18n	CVE-2020-7774	高危	3.2.1	3.2.2, 4.0.1, 5.0.5	nodejs-y18n: prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7774 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-11-17 13:15 修改: 2022-12-02 19:40
y18n	CVE-2020-7774	高危	3.2.1	3.2.2, 4.0.1, 5.0.5	nodejs-y18n: prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7774 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-11-17 13:15 修改: 2022-12-02 19:40
yarn	CVE-2019-10773	高危	1.12.3	1.22.0	nodejs-yarn: Install functionality can be abused to generate arbitrary symlinks 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10773 镜像层: sha256:55dc2d56d90da21b7a1d832ce8ab6a68b2533a9a835c4adb999863dec334e74b 发布日期: 2019-12-16 20:15 修改: 2023-11-07 03:02
yarn	CVE-2019-5448	高危	1.12.3	1.17.3	Yarn before 1.17.3 is vulnerable to Missing Encryption of Sensitive Da ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-5448 镜像层: sha256:55dc2d56d90da21b7a1d832ce8ab6a68b2533a9a835c4adb999863dec334e74b 发布日期: 2019-07-30 21:15 修改: 2021-11-03 18:27
yarn	CVE-2020-8131	高危	1.12.3	1.22.0	yarn: Arbitrary filesystem write via tar expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8131 镜像层: sha256:55dc2d56d90da21b7a1d832ce8ab6a68b2533a9a835c4adb999863dec334e74b 发布日期: 2020-02-24 15:15 修改: 2020-03-24 14:47
yarn	CVE-2021-4435	高危	1.12.3	1.22.13	yarn: untrusted search path 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-4435 镜像层: sha256:55dc2d56d90da21b7a1d832ce8ab6a68b2533a9a835c4adb999863dec334e74b 发布日期: 2024-02-04 20:15 修改: 2024-02-13 00:38
is-my-json-valid	CVE-2018-1107	中危	2.15.0	2.17.2, 1.4.1	nodejs-is-my-json-valid: ReDoS when validating JSON fields with email format 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1107 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-03-30 02:15 修改: 2021-04-02 15:16
brace-expansion	NSWG-ECO-338	中危	1.1.3	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
js-yaml	GHSA-2pr6-76vf-7546	中危	3.12.2	3.13.0	Denial of Service in js-yaml 漏洞详情: https://github.com/advisories/GHSA-2pr6-76vf-7546 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	NSWG-ECO-338	中危	1.1.3	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
nunjucks	CVE-2023-2142	中危	2.5.2	3.2.4	Nunjucks autoescape bypass leads to cross site scripting 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2142 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	NSWG-ECO-338	中危	1.1.3	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gitbook	CVE-2017-16019	中危	3.2.1	3.2.2	Cross-Site Scripting in gitbook 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16019 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-04 19:29 修改: 2019-10-09 23:24
object-path	CVE-2021-23434	中危	0.9.2	0.11.6	object-path: Type confusion vulnerability can lead to a bypass of CVE-2020-15256 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23434 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-08-27 17:15 修改: 2023-01-30 18:24
got	CVE-2022-33987	中危	6.7.1	12.1.0, 11.8.5	nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33987 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-06-18 21:15 修改: 2022-06-28 16:15
concat-stream	GHSA-g74r-ffvr-5q9f	中危	1.5.1	1.5.2, 1.4.11, 1.3.2	Memory Exposure in concat-stream 漏洞详情: https://github.com/advisories/GHSA-g74r-ffvr-5q9f 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
path-parse	CVE-2021-23343	中危	1.0.6	1.0.7	nodejs-path-parse: ReDoS via splitDeviceRe, splitTailRe and splitPathRe 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23343 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-05-04 09:15 修改: 2023-11-07 03:30
path-parse	CVE-2021-23343	中危	1.0.6	1.0.7	nodejs-path-parse: ReDoS via splitDeviceRe, splitTailRe and splitPathRe 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23343 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-05-04 09:15 修改: 2023-11-07 03:30
jsonpointer	CVE-2021-23807	中危	2.0.0	5.0.0	nodejs-jsonpointer: type confusion vulnerability can lead to a bypass of a previous prototype pollution fix when the pointer components are arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23807 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-03 18:15 修改: 2021-11-05 18:08
jsonpointer	CVE-2021-23807	中危	2.0.0	5.0.0	nodejs-jsonpointer: type confusion vulnerability can lead to a bypass of a previous prototype pollution fix when the pointer components are arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23807 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-03 18:15 修改: 2021-11-05 18:08
jsonpointer	CVE-2021-23807	中危	4.0.0	5.0.0	nodejs-jsonpointer: type confusion vulnerability can lead to a bypass of a previous prototype pollution fix when the pointer components are arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23807 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-11-03 18:15 修改: 2021-11-05 18:08
jsonpointer	CVE-2021-23807	中危	4.0.1	5.0.0	nodejs-jsonpointer: type confusion vulnerability can lead to a bypass of a previous prototype pollution fix when the pointer components are arrays 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23807 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-11-03 18:15 修改: 2021-11-05 18:08
concat-stream	NSWG-ECO-392	中危	1.5.1	>=1.5.2, >=1.4.11 <1.5.0, >=1.3.2 <1.4.0	Memory Exposure 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	NSWG-ECO-338	中危	1.1.3	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ajv	CVE-2020-15366	中危	4.11.8	6.12.3	nodejs-ajv: prototype pollution via crafted JSON schema in ajv.validate function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15366 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-15 20:15 修改: 2024-06-21 19:15
bl	CVE-2020-8244	中危	1.1.2	1.2.3, 2.2.1, 3.0.1, 4.0.3	nodejs-bl: buffer over-read vulnerability leads to corrupted BufferList which can result in uninitialized memory being leaked 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8244 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-08-30 15:15 修改: 2022-05-24 17:31
highlight.js	CVE-2020-26237	中危	9.2.0	9.18.2, 10.1.2	nodejs-highlight-js: prototype pollution via a crafted HTML code block 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26237 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-11-24 23:15 修改: 2022-10-19 13:49
highlight.js	GHSA-7wwv-vh3v-89cq	中危	9.2.0	10.4.1	ReDOS vulnerabities: multiple grammars 漏洞详情: https://github.com/advisories/GHSA-7wwv-vh3v-89cq 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	NSWG-ECO-338	中危	1.1.2	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bl	CVE-2020-8244	中危	1.1.2	1.2.3, 2.2.1, 3.0.1, 4.0.3	nodejs-bl: buffer over-read vulnerability leads to corrupted BufferList which can result in uninitialized memory being leaked 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8244 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-08-30 15:15 修改: 2022-05-24 17:31
request	CVE-2023-28155	中危	2.72.0		The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
request	CVE-2023-28155	中危	2.72.0		The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
request	CVE-2023-28155	中危	2.74.0		The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
request	CVE-2023-28155	中危	2.75.0		The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
request	CVE-2023-28155	中危	2.81.0		The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
bl	CVE-2020-8244	中危	1.1.2	1.2.3, 2.2.1, 3.0.1, 4.0.3	nodejs-bl: buffer over-read vulnerability leads to corrupted BufferList which can result in uninitialized memory being leaked 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8244 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-08-30 15:15 修改: 2022-05-24 17:31
bl	CVE-2020-8244	中危	1.1.2	1.2.3, 2.2.1, 3.0.1, 4.0.3	nodejs-bl: buffer over-read vulnerability leads to corrupted BufferList which can result in uninitialized memory being leaked 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8244 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-08-30 15:15 修改: 2022-05-24 17:31
brace-expansion	NSWG-ECO-338	中危	1.1.6	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
hosted-git-info	CVE-2021-23362	中危	2.1.4	2.8.9, 3.0.8	nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23362 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-23 17:15 修改: 2023-08-08 14:22
lodash	CVE-2019-1010266	中危	3.10.1	4.17.11	lodash: uncontrolled resource consumption in Data handler causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010266 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-17 21:15 修改: 2020-09-30 13:40
lodash	CVE-2019-1010266	中危	3.10.1	4.17.11	lodash: uncontrolled resource consumption in Data handler causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010266 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-17 21:15 修改: 2020-09-30 13:40
lodash	CVE-2020-28500	中危	3.10.1	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
lodash	CVE-2020-28500	中危	3.10.1	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
hosted-git-info	CVE-2021-23362	中危	2.1.5	2.8.9, 3.0.8	nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23362 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-23 17:15 修改: 2023-08-08 14:22
hosted-git-info	CVE-2021-23362	中危	2.1.5	2.8.9, 3.0.8	nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23362 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2021-03-23 17:15 修改: 2023-08-08 14:22
hosted-git-info	CVE-2021-23362	中危	2.5.0	2.8.9, 3.0.8	nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23362 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-23 17:15 修改: 2023-08-08 14:22
minimist	CVE-2020-7598	中危	0.0.10	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
hosted-git-info	CVE-2021-23362	中危	2.7.1	2.8.9, 3.0.8	nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23362 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-23 17:15 修改: 2023-08-08 14:22
hosted-git-info	CVE-2021-23362	中危	2.7.1	2.8.9, 3.0.8	nodejs-hosted-git-info: Regular Expression denial of service via shortcutMatch in fromUrl() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23362 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-23 17:15 修改: 2023-08-08 14:22
brace-expansion	NSWG-ECO-338	中危	1.1.6	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	NSWG-ECO-338	中危	1.1.6	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
brace-expansion	NSWG-ECO-338	中危	1.1.6	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimist	CVE-2020-7598	中危	0.0.8	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
minimist	CVE-2020-7598	中危	0.0.8	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
minimist	CVE-2020-7598	中危	0.0.8	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
minimist	CVE-2020-7598	中危	0.0.8	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
minimist	CVE-2020-7598	中危	0.0.8	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
http-proxy-agent	CVE-2019-10196	中危	2.0.0	2.1.0	nodejs-http-proxy-agent: Denial of Service and data leak due to improper buffer sanitization 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-10196 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-19 20:15 修改: 2021-03-25 19:21
brace-expansion	NSWG-ECO-338	中危	1.1.6	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
minimist	CVE-2020-7598	中危	1.2.0	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
ssri	CVE-2018-7651	中危	4.1.6	5.2.2	index.js in the ssri module before 5.2.2 for Node.js is prone to a reg ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7651 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-03-04 01:29 修改: 2018-03-27 14:46
minimist	CVE-2020-7598	中危	1.2.0	0.2.1, 1.2.3	nodejs-minimist: prototype pollution allows adding or modifying properties of Object.prototype using a constructor or __proto__ payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7598 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-11 23:15 修改: 2022-04-22 19:02
static-eval	CVE-2017-16226	中危	0.1.1	2.0.0	Sandbox Breakout / Arbitrary Code Execution in static-eval 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16226 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2019-10-09 23:24
stringstream	CVE-2018-21270	中危	0.0.5	0.0.6	nodejs-stringstream: out-of-bounds read leading to uninitialized memory exposure 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-21270 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-03 21:15 修改: 2021-02-16 14:35
stringstream	CVE-2018-21270	中危	0.0.5	0.0.6	nodejs-stringstream: out-of-bounds read leading to uninitialized memory exposure 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-21270 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-03 21:15 修改: 2021-02-16 14:35
stringstream	CVE-2018-21270	中危	0.0.5	0.0.6	nodejs-stringstream: out-of-bounds read leading to uninitialized memory exposure 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-21270 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-03 21:15 修改: 2021-02-16 14:35
stringstream	CVE-2018-21270	中危	0.0.5	0.0.6	nodejs-stringstream: out-of-bounds read leading to uninitialized memory exposure 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-21270 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-12-03 21:15 修改: 2021-02-16 14:35
stringstream	NSWG-ECO-422	中危	0.0.5	>=0.0.6	Out-of-bounds Read 漏洞详情: https://hackerone.com/reports/321670 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
stringstream	NSWG-ECO-422	中危	0.0.5	>=0.0.6	Out-of-bounds Read 漏洞详情: https://hackerone.com/reports/321670 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
stringstream	NSWG-ECO-422	中危	0.0.5	>=0.0.6	Out-of-bounds Read 漏洞详情: https://hackerone.com/reports/321670 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
stringstream	NSWG-ECO-422	中危	0.0.5	>=0.0.6	Out-of-bounds Read 漏洞详情: https://hackerone.com/reports/321670 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
extend	CVE-2018-16492	中危	3.0.0	3.0.2, 2.0.2	nodejs-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16492 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2019-10-09 23:36
https-proxy-agent	GHSA-pc5p-h8pf-mvwp	中危	2.0.0	2.2.3	Machine-In-The-Middle in https-proxy-agent 漏洞详情: https://github.com/advisories/GHSA-pc5p-h8pf-mvwp 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
https-proxy-agent	NSWG-ECO-505	中危	2.0.0	>=2.2.3	Man-in-the-Middle 漏洞详情: https://hackerone.com/reports/541502 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
extend	CVE-2018-16492	中危	3.0.0	3.0.2, 2.0.2	nodejs-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16492 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2019-10-09 23:36
ms	CVE-2017-20162	中危	0.7.1	2.0.0	Vercel ms Inefficient Regular Expression Complexity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20162 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-05 12:15 修改: 2024-05-17 01:17
ms	CVE-2017-20162	中危	0.7.1	2.0.0	Vercel ms Inefficient Regular Expression Complexity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20162 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-05 12:15 修改: 2024-05-17 01:17
ms	CVE-2017-20162	中危	0.7.1	2.0.0	Vercel ms Inefficient Regular Expression Complexity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20162 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-01-05 12:15 修改: 2024-05-17 01:17
ms	CVE-2017-20162	中危	0.7.1	2.0.0	Vercel ms Inefficient Regular Expression Complexity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-20162 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2023-01-05 12:15 修改: 2024-05-17 01:17
node.extend	CVE-2018-16491	中危	1.0.8	^1.1.7, >= 2.0.1	nodejs-extend: Prototype pollution in Object.prototype 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16491 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2019-10-09 23:36
extend	CVE-2018-16492	中危	3.0.0	3.0.2, 2.0.2	nodejs-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16492 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2019-02-01 18:29 修改: 2019-10-09 23:36
lodash	CVE-2020-28500	中危	4.17.11	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
lodash	CVE-2020-28500	中危	4.17.11	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
tar	CVE-2024-28863	中危	2.2.1	6.2.1	node-tar: denial of service while parsing a tar file due to lack of folders depth validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
tar	CVE-2024-28863	中危	2.2.1	6.2.1	node-tar: denial of service while parsing a tar file due to lack of folders depth validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
tar	CVE-2024-28863	中危	2.2.1	6.2.1	node-tar: denial of service while parsing a tar file due to lack of folders depth validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
tar	CVE-2024-28863	中危	2.2.1	6.2.1	node-tar: denial of service while parsing a tar file due to lack of folders depth validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
lodash	CVE-2020-28500	中危	4.17.11	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
npm	CVE-2020-15095	中危	2.15.12	6.14.6	npm: sensitive information exposure through logs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15095 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-07 19:15 修改: 2023-11-07 03:17
lodash	CVE-2020-28500	中危	4.17.11	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
lodash	CVE-2020-28500	中危	4.17.11	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
extend	CVE-2018-16492	中危	3.0.1	3.0.2, 2.0.2	nodejs-extend: Prototype pollution can allow attackers to modify object properties 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-16492 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-02-01 18:29 修改: 2019-10-09 23:36
tough-cookie	CVE-2023-26136	中危	2.2.2	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
tough-cookie	CVE-2023-26136	中危	2.2.2	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
brace-expansion	NSWG-ECO-338	中危	1.1.6	>=1.1.7	ReDoS 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
npm	CVE-2020-15095	中危	3.10.10	6.14.6	npm: sensitive information exposure through logs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15095 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-07-07 19:15 修改: 2023-11-07 03:17
tough-cookie	CVE-2023-26136	中危	2.3.1	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
tough-cookie	CVE-2023-26136	中危	2.3.1	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
bl	CVE-2020-8244	中危	1.2.1	1.2.3, 2.2.1, 3.0.1, 4.0.3	nodejs-bl: buffer over-read vulnerability leads to corrupted BufferList which can result in uninitialized memory being leaked 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-8244 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-08-30 15:15 修改: 2022-05-24 17:31
tough-cookie	CVE-2023-26136	中危	2.3.2	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
tough-cookie	CVE-2023-26136	中危	2.5.0	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
tunnel-agent	GHSA-xc7v-wxcw-j472	中危	0.4.2	0.6.0	Memory Exposure in tunnel-agent 漏洞详情: https://github.com/advisories/GHSA-xc7v-wxcw-j472 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	NSWG-ECO-393	中危	0.4.2	>=0.6.0	Memory Exposure 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	GHSA-xc7v-wxcw-j472	中危	0.4.3	0.6.0	Memory Exposure in tunnel-agent 漏洞详情: https://github.com/advisories/GHSA-xc7v-wxcw-j472 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	GHSA-xc7v-wxcw-j472	中危	0.4.3	0.6.0	Memory Exposure in tunnel-agent 漏洞详情: https://github.com/advisories/GHSA-xc7v-wxcw-j472 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	GHSA-xc7v-wxcw-j472	中危	0.4.3	0.6.0	Memory Exposure in tunnel-agent 漏洞详情: https://github.com/advisories/GHSA-xc7v-wxcw-j472 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	NSWG-ECO-393	中危	0.4.3	>=0.6.0	Memory Exposure 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	NSWG-ECO-393	中危	0.4.3	>=0.6.0	Memory Exposure 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tunnel-agent	NSWG-ECO-393	中危	0.4.3	>=0.6.0	Memory Exposure 漏洞详情: 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
is-my-json-valid	CVE-2018-1107	中危	2.13.1	2.17.2, 1.4.1	nodejs-is-my-json-valid: ReDoS when validating JSON fields with email format 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1107 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-30 02:15 修改: 2021-04-02 15:16
lodash	CVE-2019-1010266	中危	4.17.4	4.17.11	lodash: uncontrolled resource consumption in Data handler causing denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010266 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2019-07-17 21:15 修改: 2020-09-30 13:40
urijs	CVE-2020-26291	中危	1.18.0	1.19.4	urijs: Hostname spoofing via backslashes in URL 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-26291 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-12-31 00:15 修改: 2022-11-29 15:00
urijs	CVE-2021-3647	中危	1.18.0	1.19.7	URIjs Vulnerable to Hostname spoofing via backslashes in URL 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3647 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-07-16 11:15 修改: 2021-07-28 20:04
urijs	CVE-2022-0613	中危	1.18.0	1.19.8	urijs: Authorization Bypass Through User-Controlled Key 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0613 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-02-16 09:15 修改: 2023-11-07 03:41
urijs	CVE-2022-0868	中危	1.18.0	1.19.10	Open Redirect in urijs 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0868 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-06 16:15 修改: 2022-03-11 16:55
urijs	CVE-2022-1233	中危	1.18.0	1.19.11	URL Confusion When Scheme Not Supplied in medialize/uri.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1233 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-04-04 20:15 修改: 2022-11-29 14:42
urijs	CVE-2022-24723	中危	1.18.0	1.19.9	urijs: Leading white space bypasses protocol validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24723 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2022-03-03 21:15 修改: 2023-07-03 20:35
lodash	CVE-2020-28500	中危	4.17.4	4.17.21	nodejs-lodash: ReDoS via the toNumber, trim and trimEnd functions 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-28500 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-02-15 11:15 修改: 2022-09-13 21:18
npm	CVE-2020-15095	中危	3.9.2	6.14.6	npm: sensitive information exposure through logs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15095 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-07 19:15 修改: 2023-11-07 03:17
micromatch	CVE-2024-4067	中危	2.3.11	4.0.8	micromatch: vulnerable to Regular Expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-08-28 00:15
micromatch	CVE-2024-4067	中危	2.3.11	4.0.8	micromatch: vulnerable to Regular Expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-08-28 00:15
yargs-parser	CVE-2020-7608	中危	2.4.1	13.1.2, 15.0.1, 18.1.1, 5.0.1	nodejs-yargs-parser: prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7608 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-03-16 20:15 修改: 2022-11-15 16:40
micromatch	CVE-2024-4067	中危	3.1.10	4.0.8	micromatch: vulnerable to Regular Expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-08-28 00:15
micromatch	CVE-2024-4067	中危	3.1.10	4.0.8	micromatch: vulnerable to Regular Expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-05-14 15:42 修改: 2024-08-28 00:15
npm	CVE-2020-15095	中危	5.1.0	6.14.6	npm: sensitive information exposure through logs 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15095 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-07-07 19:15 修改: 2023-11-07 03:17
is-my-json-valid	CVE-2018-1107	中危	2.13.1	2.17.2, 1.4.1	nodejs-is-my-json-valid: ReDoS when validating JSON fields with email format 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1107 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-30 02:15 修改: 2021-04-02 15:16
yarn	CVE-2019-15608	中危	1.12.3	1.19.0	yarn: TOCTOU vulnerability leads to cache pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15608 镜像层: sha256:55dc2d56d90da21b7a1d832ce8ab6a68b2533a9a835c4adb999863dec334e74b 发布日期: 2020-03-15 18:15 修改: 2020-03-21 01:15
debug	CVE-2017-16137	低危	2.2.0	2.6.9, 3.1.0, 3.2.7, 4.3.1	nodejs-debug: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
chownr	CVE-2017-18869	低危	1.0.1	1.1.0	nodejs-chownr: TOCTOU vulnerability in `chownr` function in chownr.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18869 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-06-15 15:15 修改: 2020-06-17 19:51
chownr	CVE-2017-18869	低危	1.0.1	1.1.0	nodejs-chownr: TOCTOU vulnerability in `chownr` function in chownr.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18869 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2020-06-15 15:15 修改: 2020-06-17 19:51
debug	CVE-2017-16137	低危	2.6.8	2.6.9, 3.1.0, 3.2.7, 4.3.1	nodejs-debug: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
debug	CVE-2017-16137	低危	2.6.8	2.6.9, 3.1.0, 3.2.7, 4.3.1	nodejs-debug: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
clean-css	GHSA-wxhq-pm8v-cw75	低危	1.1.7	4.1.11	Regular Expression Denial of Service in clean-css 漏洞详情: https://github.com/advisories/GHSA-wxhq-pm8v-cw75 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
gitbook	NSWG-ECO-159	低危	3.2.1	>=3.2.2	Cross Site Scripting 漏洞详情: 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
braces	GHSA-g95f-p29q-9xw4	低危	1.8.5	2.3.1	Regular Expression Denial of Service in braces 漏洞详情: https://github.com/advisories/GHSA-g95f-p29q-9xw4 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
braces	GHSA-g95f-p29q-9xw4	低危	1.8.5	2.3.1	Regular Expression Denial of Service in braces 漏洞详情: https://github.com/advisories/GHSA-g95f-p29q-9xw4 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
braces	CVE-2018-1109	低危	1.8.5	2.3.1	nodejs-braces: Regular Expression Denial of Service (ReDoS) in lib/parsers.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1109 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-30 02:15 修改: 2023-11-07 02:55
braces	CVE-2018-1109	低危	1.8.5	2.3.1	nodejs-braces: Regular Expression Denial of Service (ReDoS) in lib/parsers.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1109 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2021-03-30 02:15 修改: 2023-11-07 02:55
deep-extend	NSWG-ECO-408	低危	0.4.2	>=0.5.1	deep-extend prototype pollution 漏洞详情: https://hackerone.com/reports/311333 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
deep-extend	NSWG-ECO-408	低危	0.4.2	>=0.5.1	deep-extend prototype pollution 漏洞详情: https://hackerone.com/reports/311333 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
deep-extend	NSWG-ECO-408	低危	0.4.2	>=0.5.1	deep-extend prototype pollution 漏洞详情: https://hackerone.com/reports/311333 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
chownr	CVE-2017-18869	低危	1.0.1	1.1.0	nodejs-chownr: TOCTOU vulnerability in `chownr` function in chownr.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18869 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-06-15 15:15 修改: 2020-06-17 19:51
lodash	CVE-2018-3721	低危	4.17.4	>=4.17.5	lodash: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3721 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2024-02-16 16:54
es5-ext	CVE-2024-27088	低危	0.10.11	0.10.63	es5-ext contains ECMAScript 5 extensions. Passing functions with very ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27088 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-02-26 17:15 修改: 2024-02-26 22:10
es5-ext	CVE-2024-27088	低危	0.10.12	0.10.63	es5-ext contains ECMAScript 5 extensions. Passing functions with very ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27088 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2024-02-26 17:15 修改: 2024-02-26 22:10
ip	CVE-2023-42282	低危	1.1.5	2.0.1, 1.1.9	nodejs-ip: arbitrary code execution via the isPublic() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
es5-ext	CVE-2024-27088	低危	0.10.48	0.10.63	es5-ext contains ECMAScript 5 extensions. Passing functions with very ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27088 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-02-26 17:15 修改: 2024-02-26 22:10
chownr	CVE-2017-18869	低危	1.0.1	1.1.0	nodejs-chownr: TOCTOU vulnerability in `chownr` function in chownr.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18869 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2020-06-15 15:15 修改: 2020-06-17 19:51
lodash	CVE-2018-3721	低危	3.10.1	>=4.17.5	lodash: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3721 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2024-02-16 16:54
lodash	CVE-2018-3721	低危	3.10.1	>=4.17.5	lodash: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3721 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2024-02-16 16:54
is-my-json-valid	NSWG-ECO-375	低危	2.13.1	>=1.4.1 <2.0.0, >=2.17.2	Regular Expression Denial of Service (ReDoS) 漏洞详情: https://hackerone.com/reports/317548 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
is-my-json-valid	NSWG-ECO-375	低危	2.13.1	>=1.4.1 <2.0.0, >=2.17.2	Regular Expression Denial of Service (ReDoS) 漏洞详情: https://hackerone.com/reports/317548 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
debug	CVE-2017-16137	低危	2.2.0	2.6.9, 3.1.0, 3.2.7, 4.3.1	nodejs-debug: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
is-my-json-valid	NSWG-ECO-375	低危	2.15.0	>=1.4.1 <2.0.0, >=2.17.2	Regular Expression Denial of Service (ReDoS) 漏洞详情: https://hackerone.com/reports/317548 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
hoek	CVE-2018-3728	低危	2.16.3	>=5.0.3 >=4.2.1	hoek: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3728 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-03-30 19:29 修改: 2019-10-09 23:40
hoek	CVE-2018-3728	低危	2.16.3	>=5.0.3 >=4.2.1	hoek: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3728 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-03-30 19:29 修改: 2019-10-09 23:40
npm-user-validate	GHSA-xgh6-85xh-479p	低危	0.1.2	1.0.1	Regular Expression Denial of Service in npm-user-validate 漏洞详情: https://github.com/advisories/GHSA-xgh6-85xh-479p 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
hoek	CVE-2018-3728	低危	2.16.3	>=5.0.3 >=4.2.1	hoek: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3728 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-03-30 19:29 修改: 2019-10-09 23:40
hoek	CVE-2018-3728	低危	2.16.3	>=5.0.3 >=4.2.1	hoek: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3728 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-03-30 19:29 修改: 2019-10-09 23:40
npm-user-validate	GHSA-xgh6-85xh-479p	低危	0.1.5	1.0.1	Regular Expression Denial of Service in npm-user-validate 漏洞详情: https://github.com/advisories/GHSA-xgh6-85xh-479p 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
send	CVE-2024-43799	低危	0.13.2	0.19.0	send: Code Execution Vulnerability in Send Library 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
npm-user-validate	GHSA-xgh6-85xh-479p	低危	0.1.5	1.0.1	Regular Expression Denial of Service in npm-user-validate 漏洞详情: https://github.com/advisories/GHSA-xgh6-85xh-479p 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
hoek	CVE-2018-3728	低危	2.16.3	>=5.0.3 >=4.2.1	hoek: Prototype pollution in utilities function 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-3728 镜像层: sha256:bf4e6b5026dd130e089a53d4299b9e36222678f0049fa3e6764e6cdedc20b252 发布日期: 2018-03-30 19:29 修改: 2019-10-09 23:40
npm-user-validate	GHSA-xgh6-85xh-479p	低危	1.0.0	1.0.1	Regular Expression Denial of Service in npm-user-validate 漏洞详情: https://github.com/advisories/GHSA-xgh6-85xh-479p 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
debug	CVE-2017-16137	低危	2.2.0	2.6.9, 3.1.0, 3.2.7, 4.3.1	nodejs-debug: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40
debug	CVE-2017-16137	低危	2.2.0	2.6.9, 3.1.0, 3.2.7, 4.3.1	nodejs-debug: Regular expression Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16137 镜像层: sha256:1ed8191f3d67a029500c32f1c2d6b60f302947cd850dbd9607f3643f222a6d29 发布日期: 2018-06-07 02:29 修改: 2023-11-07 02:40