docker.io/fogforest/yesplaymusic:latest linux/amd64

docker.io/fogforest/yesplaymusic:latest - Trivy安全扫描结果扫描时间: 2024-11-23 20:49

全部漏洞信息

低危漏洞:6

中危漏洞:27

高危漏洞:28

严重漏洞:5

系统OS: alpine 3.14.6 扫描引擎: Trivy 扫描时间: 2024-11-23 20:49

docker.io/fogforest/yesplaymusic:latest (alpine 3.14.6) (alpine)

低危漏洞:2

中危漏洞:26

高危漏洞:25

严重漏洞:5

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
curl	CVE-2022-32207	严重	7.79.1-r1	7.79.1-r2	curl: Unpreserved file permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32207 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl	CVE-2023-23914	严重	7.79.1-r1	7.79.1-r5	curl: HSTS ignored on multiple requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
libcurl	CVE-2022-32207	严重	7.79.1-r1	7.79.1-r2	curl: Unpreserved file permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32207 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2023-23914	严重	7.79.1-r1	7.79.1-r5	curl: HSTS ignored on multiple requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
zlib	CVE-2022-37434	严重	1.2.12-r0	1.2.12-r2	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
curl	CVE-2023-27533	高危	7.79.1-r1	8.0.1-r0	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
curl	CVE-2023-27534	高危	7.79.1-r1	8.0.1-r0	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
freetype	CVE-2022-27405	高危	2.10.4-r2	2.10.4-r3	FreeType: Segmentation violation via FNT_Size_Request 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27405 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
freetype	CVE-2022-27406	高危	2.10.4-r2	2.10.4-r3	Freetype: Segmentation violation via FT_Request_Size 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27406 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-04-22 14:15 修改: 2024-02-29 01:34
libcrypto1.1	CVE-2022-4450	高危	1.1.1n-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0215	高危	1.1.1n-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libcrypto1.1	CVE-2023-0286	高危	1.1.1n-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0464	高危	1.1.1n-r0	1.1.1t-r1	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
curl	CVE-2022-27781	高危	7.79.1-r1	7.79.1-r2	curl: CERTINFO never-ending busy-loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
curl	CVE-2022-27782	高危	7.79.1-r1	7.79.1-r2	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-27781	高危	7.79.1-r1	7.79.1-r2	curl: CERTINFO never-ending busy-loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-27782	高危	7.79.1-r1	7.79.1-r2	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-43551	高危	7.79.1-r1	7.79.1-r4	curl: HSTS bypass via IDN 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58
libcurl	CVE-2023-27533	高危	7.79.1-r1	8.0.1-r0	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27534	高危	7.79.1-r1	8.0.1-r0	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libssl1.1	CVE-2022-4450	高危	1.1.1n-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0215	高危	1.1.1n-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0286	高危	1.1.1n-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0464	高危	1.1.1n-r0	1.1.1t-r1	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
libxml2	CVE-2022-2309	高危	2.9.14-r0	2.9.14-r1	lxml: NULL Pointer Dereference in lxml 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2309 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-05 10:15 修改: 2023-11-07 03:46
libxml2	CVE-2022-40303	高危	2.9.14-r0	2.9.14-r2	libxml2: integer overflows with XML_PARSE_HUGE 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40303 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-11-23 00:15 修改: 2023-11-07 03:52
libxml2	CVE-2022-40304	高危	2.9.14-r0	2.9.14-r2	libxml2: dict corruption caused by entity reference cycles 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40304 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-11-23 18:15 修改: 2023-11-07 03:52
ncurses-libs	CVE-2022-29458	高危	6.2_p20210612-r0	6.2_p20210612-r1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-terminfo-base	CVE-2022-29458	高危	6.2_p20210612-r0	6.2_p20210612-r1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
curl	CVE-2022-43551	高危	7.79.1-r1	7.79.1-r4	curl: HSTS bypass via IDN 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58
curl	CVE-2022-32205	中危	7.79.1-r1	7.79.1-r2	curl: Set-Cookie denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32205 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:01
curl	CVE-2022-32206	中危	7.79.1-r1	7.79.1-r2	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
curl	CVE-2022-32208	中危	7.79.1-r1	7.79.1-r2	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-32205	中危	7.79.1-r1	7.79.1-r2	curl: Set-Cookie denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32205 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-32206	中危	7.79.1-r1	7.79.1-r2	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-32208	中危	7.79.1-r1	7.79.1-r2	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-43552	中危	7.79.1-r1	7.79.1-r4	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libcurl	CVE-2023-23915	中危	7.79.1-r1	7.79.1-r5	curl: HSTS amnesia with --parallel 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
libcurl	CVE-2023-23916	中危	7.79.1-r1	7.79.1-r5	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27535	中危	7.79.1-r1	8.0.1-r0	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libcurl	CVE-2023-27536	中危	7.79.1-r1	8.0.1-r0	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-27537	中危	7.79.1-r1	8.0.1-r0	curl: HSTS double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27537 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-27538	中危	7.79.1-r1	8.0.1-r0	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
curl	CVE-2022-43552	中危	7.79.1-r1	7.79.1-r4	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
curl	CVE-2023-23915	中危	7.79.1-r1	7.79.1-r5	curl: HSTS amnesia with --parallel 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
curl	CVE-2023-23916	中危	7.79.1-r1	7.79.1-r5	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcrypto1.1	CVE-2022-2097	中危	1.1.1n-r0	1.1.1q-r0	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-2097	中危	1.1.1n-r0	1.1.1q-r0	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-4304	中危	1.1.1n-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0465	中危	1.1.1n-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2022-4304	中危	1.1.1n-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0465	中危	1.1.1n-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:b541d28bf3b491aeb424c61353c8c92476ecc2cd603a6c09ee5c2708f1a4b258 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
curl	CVE-2023-27535	中危	7.79.1-r1	8.0.1-r0	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
curl	CVE-2023-27536	中危	7.79.1-r1	8.0.1-r0	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
curl	CVE-2023-27537	中危	7.79.1-r1	8.0.1-r0	curl: HSTS double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27537 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
curl	CVE-2023-27538	中危	7.79.1-r1	8.0.1-r0	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2022-35252	低危	7.79.1-r1	7.79.1-r3	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00
curl	CVE-2022-35252	低危	7.79.1-r1	7.79.1-r3	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:73e72459bfe3d9fd81413680ef4e6061dde9c3592d9ffce1c0b4100f7684f881 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00

Node.js (node-pkg)

低危漏洞:4

中危漏洞:1

高危漏洞:3

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
axios	CVE-2024-39338	高危	1.6.8	1.7.4	axios: axios: Server-Side Request Forgery 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39338 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-08-12 13:38 修改: 2024-08-23 18:35
body-parser	CVE-2024-45590	高危	1.20.2	1.20.3	body-parser: Denial of Service Vulnerability in body-parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
path-to-regexp	CVE-2024-45296	高危	0.1.7	1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0	path-to-regexp: Backtracking regular expressions cause ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
express	CVE-2024-29041	中危	4.19.1	4.19.2, 5.0.0-beta.3	express: cause malformed URLs to be evaluated 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29041 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-03-25 21:15 修改: 2024-03-26 12:55
express	CVE-2024-43796	低危	4.19.1	4.20.0, 5.0.0	express: Improper Input Handling in Express Redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43796 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:07
cookie	CVE-2024-47764	低危	0.6.0	0.7.0	cookie: cookie accepts cookie name, path, and domain with out of bounds characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48
send	CVE-2024-43799	低危	0.18.0	0.19.0	send: Code Execution Vulnerability in Send Library 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
serve-static	CVE-2024-43800	低危	1.15.0	1.16.0, 2.1.0	serve-static: Improper Sanitization in serve-static 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43800 镜像层: sha256:bb2aa39e1e49b4595fdb55c8b456a3eb8b6abdbefddc082dfc49930ef11661f3 发布日期: 2024-09-10 15:15 修改: 2024-09-20 17:36