docker.io/jenkins/inbound-agent:4.13-2-alpine-jdk11 linux/amd64

docker.io/jenkins/inbound-agent:4.13-2-alpine-jdk11 - Trivy安全扫描结果扫描时间: 2025-01-23 15:03

全部漏洞信息

低危漏洞:6

中危漏洞:39

高危漏洞:39

严重漏洞:9

系统OS: alpine 3.15.4 扫描引擎: Trivy 扫描时间: 2025-01-23 15:03

docker.io/jenkins/inbound-agent:4.13-2-alpine-jdk11 (alpine 3.15.4) (alpine)

低危漏洞:6

中危漏洞:39

高危漏洞:38

严重漏洞:9

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
git	CVE-2022-23521	严重	2.34.2-r0	2.34.6-r0	git: gitattributes parsing integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23521 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-01-17 23:15 修改: 2023-12-27 10:15
git	CVE-2022-41903	严重	2.34.2-r0	2.34.6-r0	git: Heap overflow in `git archive`, `git log --format` leading to RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41903 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-01-17 23:15 修改: 2023-12-27 10:15
libcurl	CVE-2022-32207	严重	7.80.0-r0	7.80.0-r2	curl: Unpreserved file permissions 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32207 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-32221	严重	7.80.0-r0	7.80.0-r4	curl: POST following PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32221 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-12-05 22:15 修改: 2024-03-27 15:00
libcurl	CVE-2023-23914	严重	7.80.0-r0	7.80.0-r6	curl: HSTS ignored on multiple requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
libcurl	CVE-2023-38545	严重	7.80.0-r0	8.4.0-r0	curl: heap based buffer overflow in the SOCKS5 proxy handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-10-18 04:15 修改: 2024-10-17 22:35
pcre2	CVE-2022-1586	严重	10.39-r0	10.40-r0	pcre2: Out-of-bounds read in compile_xclass_matchingpath in pcre2_jit_compile.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1586 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-05-16 21:15 修改: 2023-11-07 03:42
pcre2	CVE-2022-1587	严重	10.39-r0	10.40-r0	pcre2: Out-of-bounds read in get_recurse_data_length in pcre2_jit_compile.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1587 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-05-16 21:15 修改: 2023-11-07 03:42
zlib	CVE-2022-37434	严重	1.2.12-r0	1.2.12-r2	zlib: heap-based buffer over-read and overflow in inflate() in inflate.c via a large gzip header extra field 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37434 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2022-08-05 07:15 修改: 2023-07-19 00:56
libcrypto1.1	CVE-2022-4450	高危	1.1.1n-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0215	高危	1.1.1n-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libcrypto1.1	CVE-2023-0286	高危	1.1.1n-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0464	高危	1.1.1n-r0	1.1.1t-r2	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
expat	CVE-2022-40674	高危	2.4.7-r0	2.4.9-r0	expat: a use-after-free in the doContent function in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52
expat	CVE-2022-43680	高危	2.4.7-r0	2.5.0-r0	expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08
git	CVE-2022-29187	高危	2.34.2-r0	2.34.4-r0	git: Bypass of safe.directory protections 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29187 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-07-12 21:15 修改: 2024-01-14 10:15
git	CVE-2022-39260	高危	2.34.2-r0	2.34.5-r0	git: git shell function that splits command arguments can lead to arbitrary heap writes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39260 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-10-19 12:15 修改: 2023-12-27 10:15
libcurl	CVE-2022-22576	高危	7.80.0-r0	7.80.0-r1	curl: OAUTH2 bearer bypass in connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-22576 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-05-26 17:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27775	高危	7.80.0-r0	7.80.0-r1	curl: bad local IPv6 connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27775 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27780	高危	7.80.0-r0	7.80.0-r2	curl: percent-encoded path separator in URL host 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27780 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-06-02 14:15 修改: 2024-08-07 19:35
libcurl	CVE-2022-27781	高危	7.80.0-r0	7.80.0-r2	curl: CERTINFO never-ending busy-loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27781 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-27782	高危	7.80.0-r0	7.80.0-r2	curl: TLS and SSH connection too eager reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27782 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-42915	高危	7.80.0-r0	7.80.0-r4	curl: HTTP proxy double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42915 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-10-29 20:15 修改: 2024-03-27 14:59
libcurl	CVE-2022-42916	高危	7.80.0-r0	7.80.0-r4	curl: HSTS bypass via IDN 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42916 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-10-29 02:15 修改: 2024-03-27 14:59
libcurl	CVE-2022-43551	高危	7.80.0-r0	7.80.0-r5	curl: HSTS bypass via IDN 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58
libcurl	CVE-2023-27533	高危	7.80.0-r0	8.0.1-r0	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27534	高危	7.80.0-r0	8.0.1-r0	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-28319	高危	7.80.0-r0	8.1.0-r0	curl: use after free in SSH sha256 fingerprint check 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28319 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libcurl	CVE-2023-38039	高危	7.80.0-r0	8.3.0-r0	curl: out of heap memory issue due to missing limit on header quantity 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38039 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-09-15 04:15 修改: 2024-04-01 15:45
libssl1.1	CVE-2022-4450	高危	1.1.1n-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0215	高危	1.1.1n-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0286	高危	1.1.1n-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0464	高危	1.1.1n-r0	1.1.1t-r2	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
ncurses-libs	CVE-2022-29458	高危	6.3_p20211120-r0	6.3_p20211120-r1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-libs	CVE-2023-29491	高危	6.3_p20211120-r0	6.3_p20211120-r2	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-terminfo-base	CVE-2022-29458	高危	6.3_p20211120-r0	6.3_p20211120-r1	ncurses: segfaulting OOB read 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-29458 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-04-18 21:15 修改: 2023-11-07 03:46
ncurses-terminfo-base	CVE-2023-29491	高危	6.3_p20211120-r0	6.3_p20211120-r2	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
nghttp2-libs	CVE-2023-35945	高危	1.46.0-r0	1.46.0-r1	envoy: HTTP/2 memory leak in nghttp2 codec 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-35945 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-07-13 21:15 修改: 2023-10-24 17:26
nghttp2-libs	CVE-2023-44487	高危	1.46.0-r0	1.46.0-r2	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-10-10 14:15 修改: 2024-12-20 17:40
openssl	CVE-2022-4450	高危	1.1.1n-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0215	高危	1.1.1n-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0286	高危	1.1.1n-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0464	高危	1.1.1n-r0	1.1.1t-r2	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
git	CVE-2023-23946	高危	2.34.2-r0	2.34.7-r0	git: git apply: a path outside the working tree can be overwritten with crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23946 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git	CVE-2023-25652	高危	2.34.2-r0	2.34.8-r0	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25652 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
pcre2	CVE-2022-41409	高危	10.39-r0	10.42-r0	pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
git	CVE-2023-29007	高危	2.34.2-r0	2.34.8-r0	git: arbitrary configuration injection when renaming or deleting a section from a configuration file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29007 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-04-25 21:15 修改: 2024-06-26 10:15
libcurl	CVE-2023-27536	中危	7.80.0-r0	8.0.1-r0	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-27537	中危	7.80.0-r0	8.0.1-r0	curl: HSTS double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27537 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-27538	中危	7.80.0-r0	8.0.1-r0	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-28320	中危	7.80.0-r0	8.1.0-r0	curl: siglongjmp race condition may lead to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libcurl	CVE-2023-28321	中危	7.80.0-r0	8.1.0-r0	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libcurl	CVE-2023-46218	中危	7.80.0-r0	8.5.0-r0	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl	CVE-2023-46219	中危	7.80.0-r0	8.5.0-r0	curl: excessively long file name may lead to unknown HSTS status 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46219 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-12-12 02:15 修改: 2024-01-19 16:15
libcrypto1.1	CVE-2023-3817	中危	1.1.1n-r0	1.1.1v-r0	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
libcrypto1.1	CVE-2023-5678	中危	1.1.1n-r0	1.1.1w-r1	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
git	CVE-2022-39253	中危	2.34.2-r0	2.34.5-r0	git: exposure of sensitive information to a malicious actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39253 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-10-19 11:15 修改: 2024-06-10 18:15
git	CVE-2023-22490	中危	2.34.2-r0	2.34.7-r0	git: data exfiltration with maliciously crafted repository 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22490 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
libssl1.1	CVE-2022-2097	中危	1.1.1n-r0	1.1.1q-r0	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2022-4304	中危	1.1.1n-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0465	中危	1.1.1n-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-2650	中危	1.1.1n-r0	1.1.1u-r0	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-3446	中危	1.1.1n-r0	1.1.1u-r2	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2023-3817	中危	1.1.1n-r0	1.1.1v-r0	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2023-5678	中危	1.1.1n-r0	1.1.1w-r1	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libcrypto1.1	CVE-2022-2097	中危	1.1.1n-r0	1.1.1q-r0	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
libcrypto1.1	CVE-2022-4304	中危	1.1.1n-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0465	中危	1.1.1n-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-2650	中危	1.1.1n-r0	1.1.1u-r0	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-3446	中危	1.1.1n-r0	1.1.1u-r2	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:4fc242d58285699eca05db3cc7c7122a2b8e014d9481f323bd9277baacfa0628 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
libcurl	CVE-2022-27774	中危	7.80.0-r0	7.80.0-r1	curl: credential leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27774 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-27776	中危	7.80.0-r0	7.80.0-r1	curl: auth/cookie leak on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27776 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-06-02 14:15 修改: 2024-03-27 15:02
libcurl	CVE-2022-32205	中危	7.80.0-r0	7.80.0-r2	curl: Set-Cookie denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32205 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:01
libcurl	CVE-2022-32206	中危	7.80.0-r0	7.80.0-r2	curl: HTTP compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32206 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
libcurl	CVE-2022-32208	中危	7.80.0-r0	7.80.0-r2	curl: FTP-KRB bad message verification 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32208 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-07-07 13:15 修改: 2024-03-27 15:00
openssl	CVE-2022-2097	中危	1.1.1n-r0	1.1.1q-r0	openssl: AES OCB fails to encrypt some bytes 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2097 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-07-05 11:15 修改: 2024-06-21 19:15
openssl	CVE-2022-4304	中危	1.1.1n-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0465	中危	1.1.1n-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-2650	中危	1.1.1n-r0	1.1.1u-r0	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl	CVE-2023-3446	中危	1.1.1n-r0	1.1.1u-r2	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl	CVE-2023-3817	中危	1.1.1n-r0	1.1.1v-r0	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl	CVE-2023-5678	中危	1.1.1n-r0	1.1.1w-r1	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libcurl	CVE-2022-43552	中危	7.80.0-r0	7.80.0-r5	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libcurl	CVE-2023-23915	中危	7.80.0-r0	7.80.0-r6	curl: HSTS amnesia with --parallel 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
libcurl	CVE-2023-23916	中危	7.80.0-r0	7.80.0-r6	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27535	中危	7.80.0-r0	8.0.1-r0	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
libcurl	CVE-2023-28322	低危	7.80.0-r0	8.1.0-r0	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl	CVE-2023-38546	低危	7.80.0-r0	8.4.0-r0	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
libproc	CVE-2023-4016	低危	3.3.17-r0	3.3.17-r1	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
git	CVE-2023-25815	低危	2.34.2-r0	2.34.8-r0	git: malicious placement of crafted messages when git was compiled with runtime prefix 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25815 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
procps	CVE-2023-4016	低危	3.3.17-r0	3.3.17-r1	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libcurl	CVE-2022-35252	低危	7.80.0-r0	7.80.0-r3	curl: Incorrect handling of control code characters in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35252 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2022-09-23 14:15 修改: 2024-03-27 15:00

Java (jar)

低危漏洞:0

中危漏洞:0

高危漏洞:1

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
org.jenkins-ci.main:remoting	CVE-2024-43044	高危	4.13	3206.3208, 3248.3250, 3256.3258	jenkins: Arbitrary file read vulnerability through agent connections can lead to RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43044 镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839 发布日期: 2024-08-07 14:15 修改: 2024-08-16 17:19

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

org.jenkins-ci.main:remoting

CVE-2024-43044

高危

4.13

3206.3208, 3248.3250, 3256.3258

jenkins: Arbitrary file read vulnerability through agent connections can lead to RCE

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43044

镜像层: sha256:97dd949c23c6637f74e482220132010d94f832c88376130ae483748bb7a36839

发布日期: 2024-08-07 14:15 修改: 2024-08-16 17:19