docker.io/jenkins/inbound-agent:4.13.3-1-alpine-jdk11 linux/amd64

docker.io/jenkins/inbound-agent:4.13.3-1-alpine-jdk11 - Trivy安全扫描结果扫描时间: 2025-01-23 15:40

全部漏洞信息

低危漏洞:5

中危漏洞:43

高危漏洞:33

严重漏洞:11

系统OS: alpine 3.16.2 扫描引擎: Trivy 扫描时间: 2025-01-23 15:40

docker.io/jenkins/inbound-agent:4.13.3-1-alpine-jdk11 (alpine 3.16.2) (alpine)

低危漏洞:5

中危漏洞:43

高危漏洞:32

严重漏洞:11

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
git	CVE-2022-23521	严重	2.36.2-r0	2.36.4-r0	git: gitattributes parsing integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23521 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-01-17 23:15 修改: 2023-12-27 10:15
git	CVE-2022-41903	严重	2.36.2-r0	2.36.4-r0	git: Heap overflow in `git archive`, `git log --format` leading to RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41903 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-01-17 23:15 修改: 2023-12-27 10:15
libcurl	CVE-2022-32221	严重	7.83.1-r3	7.83.1-r4	curl: POST following PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-32221 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2022-12-05 22:15 修改: 2024-03-27 15:00
libcurl	CVE-2023-23914	严重	7.83.1-r3	7.83.1-r6	curl: HSTS ignored on multiple requests 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23914 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
libcurl	CVE-2023-38545	严重	7.83.1-r3	8.4.0-r0	curl: heap based buffer overflow in the SOCKS5 proxy handshake 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38545 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-10-18 04:15 修改: 2024-10-17 22:35
openssh-client-common	CVE-2023-28531	严重	9.0_p1-r2	9.0_p1-r3	openssh: smartcard keys to ssh-agent without the intended per-hop destination constraints. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28531 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-17 04:15 修改: 2024-02-12 03:15
openssh-client-common	CVE-2023-38408	严重	9.0_p1-r2	9.0_p1-r4	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-20 03:15 修改: 2024-10-15 19:35
openssh-client-default	CVE-2023-28531	严重	9.0_p1-r2	9.0_p1-r3	openssh: smartcard keys to ssh-agent without the intended per-hop destination constraints. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28531 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-17 04:15 修改: 2024-02-12 03:15
openssh-client-default	CVE-2023-38408	严重	9.0_p1-r2	9.0_p1-r4	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-20 03:15 修改: 2024-10-15 19:35
openssh-keygen	CVE-2023-28531	严重	9.0_p1-r2	9.0_p1-r3	openssh: smartcard keys to ssh-agent without the intended per-hop destination constraints. 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28531 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-17 04:15 修改: 2024-02-12 03:15
openssh-keygen	CVE-2023-38408	严重	9.0_p1-r2	9.0_p1-r4	openssh: Remote code execution in ssh-agent PKCS#11 support 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38408 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-20 03:15 修改: 2024-10-15 19:35
libcrypto1.1	CVE-2023-0215	高危	1.1.1q-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libcrypto1.1	CVE-2023-0286	高危	1.1.1q-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0464	高危	1.1.1q-r0	1.1.1t-r1	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
expat	CVE-2023-52425	高危	2.4.8-r0	2.6.0-r0	expat: parsing large tokens can trigger a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52425 镜像层: sha256:d86ac4b0af5ad6ed65b6fed6865c3408b57b4b04470ed4ee3e24cc20f44b363b 发布日期: 2024-02-04 20:15 修改: 2024-08-26 20:35
expat	CVE-2024-28757	高危	2.4.8-r0	2.6.2-r0	expat: XML Entity Expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757 镜像层: sha256:d86ac4b0af5ad6ed65b6fed6865c3408b57b4b04470ed4ee3e24cc20f44b363b 发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
expat	CVE-2022-40674	高危	2.4.8-r0	2.4.9-r0	expat: a use-after-free in the doContent function in xmlparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40674 镜像层: sha256:d86ac4b0af5ad6ed65b6fed6865c3408b57b4b04470ed4ee3e24cc20f44b363b 发布日期: 2022-09-14 11:15 修改: 2023-11-07 03:52
libcurl	CVE-2022-42915	高危	7.83.1-r3	7.83.1-r4	curl: HTTP proxy double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42915 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2022-10-29 20:15 修改: 2024-03-27 14:59
libcurl	CVE-2022-42916	高危	7.83.1-r3	7.83.1-r4	curl: HSTS bypass via IDN 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-42916 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2022-10-29 02:15 修改: 2024-03-27 14:59
libcurl	CVE-2022-43551	高危	7.83.1-r3	7.83.1-r5	curl: HSTS bypass via IDN 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43551 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2022-12-23 15:15 修改: 2024-03-27 14:58
libcurl	CVE-2023-27533	高危	7.83.1-r3	8.0.1-r0	curl: TELNET option IAC injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27533 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27534	高危	7.83.1-r3	8.0.1-r0	curl: SFTP path ~ resolving discrepancy 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27534 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-28319	高危	7.83.1-r3	8.1.0-r0	curl: use after free in SSH sha256 fingerprint check 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28319 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
libcurl	CVE-2023-38039	高危	7.83.1-r3	8.3.0-r0	curl: out of heap memory issue due to missing limit on header quantity 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38039 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-09-15 04:15 修改: 2024-04-01 15:45
libssl1.1	CVE-2022-4450	高危	1.1.1q-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0215	高危	1.1.1q-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
libssl1.1	CVE-2023-0286	高危	1.1.1q-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0464	高危	1.1.1q-r0	1.1.1t-r1	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
ncurses-libs	CVE-2023-29491	高危	6.3_p20220521-r0	6.3_p20220521-r1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
ncurses-terminfo-base	CVE-2023-29491	高危	6.3_p20220521-r0	6.3_p20220521-r1	ncurses: Local users can trigger security-relevant memory corruption via malformed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29491 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-04-14 01:15 修改: 2024-01-31 03:15
nghttp2-libs	CVE-2023-35945	高危	1.47.0-r0	1.47.0-r1	envoy: HTTP/2 memory leak in nghttp2 codec 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-35945 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-13 21:15 修改: 2023-10-24 17:26
nghttp2-libs	CVE-2023-44487	高危	1.47.0-r0	1.47.0-r2	HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-44487 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-10-10 14:15 修改: 2024-12-20 17:40
expat	CVE-2022-43680	高危	2.4.8-r0	2.5.0-r0	expat: use-after free caused by overeager destruction of a shared DTD in XML_ExternalEntityParserCreate 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43680 镜像层: sha256:d86ac4b0af5ad6ed65b6fed6865c3408b57b4b04470ed4ee3e24cc20f44b363b 发布日期: 2022-10-24 14:15 修改: 2024-01-21 02:08
git	CVE-2022-39260	高危	2.36.2-r0	2.36.3-r0	git: git shell function that splits command arguments can lead to arbitrary heap writes. 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39260 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2022-10-19 12:15 修改: 2023-12-27 10:15
git	CVE-2023-23946	高危	2.36.2-r0	2.36.5-r0	git: git apply: a path outside the working tree can be overwritten with crafted input 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23946 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
git	CVE-2023-25652	高危	2.36.2-r0	2.36.6-r0	git: by feeding specially crafted input to `git apply --reject`, a path outside the working tree can be overwritten with partially controlled contents 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25652 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15
git	CVE-2023-29007	高危	2.36.2-r0	2.36.6-r0	git: arbitrary configuration injection when renaming or deleting a section from a configuration file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29007 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-04-25 21:15 修改: 2024-06-26 10:15
libcrypto1.1	CVE-2022-4450	高危	1.1.1q-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2022-4450	高危	1.1.1q-r0	1.1.1t-r0	openssl: double free after calling PEM_read_bio_ex 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4450 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0215	高危	1.1.1q-r0	1.1.1t-r0	openssl: use-after-free following BIO_new_NDEF 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0215 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-08 20:15 修改: 2024-06-21 19:15
openssl	CVE-2023-0286	高危	1.1.1q-r0	1.1.1t-r0	openssl: X.400 address type confusion in X.509 GeneralName 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0286 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0464	高危	1.1.1q-r0	1.1.1t-r1	openssl: Denial of service by excessive resource usage in verifying X509 policy constraints 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0464 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-22 17:15 修改: 2024-06-21 19:15
pcre2	CVE-2022-41409	高危	10.40-r0	10.42-r0	pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libcurl	CVE-2023-46218	中危	7.83.1-r3	8.5.0-r0	curl: information disclosure by exploiting a mixed case flaw 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46218 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-07 01:15 修改: 2024-01-25 14:15
libcurl	CVE-2023-46219	中危	7.83.1-r3	8.5.0-r0	curl: excessively long file name may lead to unknown HSTS status 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46219 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-12 02:15 修改: 2024-01-19 16:15
busybox	CVE-2023-42366	中危	1.35.0-r17	1.35.0-r18	busybox: A heap-buffer-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-11-27 23:15 修改: 2024-12-06 14:15
expat	CVE-2023-52426	中危	2.4.8-r0	2.6.0-r0	expat: recursive XML entity expansion vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426 镜像层: sha256:d86ac4b0af5ad6ed65b6fed6865c3408b57b4b04470ed4ee3e24cc20f44b363b 发布日期: 2024-02-04 20:15 修改: 2024-03-07 17:15
git	CVE-2022-39253	中危	2.36.2-r0	2.36.3-r0	git: exposure of sensitive information to a malicious actor 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-39253 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2022-10-19 11:15 修改: 2024-06-10 18:15
git	CVE-2023-22490	中危	2.36.2-r0	2.36.5-r0	git: data exfiltration with maliciously crafted repository 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22490 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-14 20:15 修改: 2023-12-27 10:15
libssl1.1	CVE-2022-4304	中危	1.1.1q-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-0465	中危	1.1.1q-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-2650	中危	1.1.1q-r0	1.1.1u-r0	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
libssl1.1	CVE-2023-3446	中危	1.1.1q-r0	1.1.1u-r2	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2023-3817	中危	1.1.1q-r0	1.1.1v-r0	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2023-5678	中危	1.1.1q-r0	1.1.1w-r1	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libcrypto1.1	CVE-2022-4304	中危	1.1.1q-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-0465	中危	1.1.1q-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-2650	中危	1.1.1q-r0	1.1.1u-r0	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
libcrypto1.1	CVE-2023-3446	中危	1.1.1q-r0	1.1.1u-r2	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
libcrypto1.1	CVE-2023-3817	中危	1.1.1q-r0	1.1.1v-r0	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
libcrypto1.1	CVE-2023-5678	中危	1.1.1q-r0	1.1.1w-r1	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssh-client-common	CVE-2023-48795	中危	9.0_p1-r2	9.0_p1-r5	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 16:15 修改: 2024-12-02 14:54
openssh-client-common	CVE-2023-51384	中危	9.0_p1-r2	9.0_p1-r5	openssh: destination constraints only apply to first PKCS#11 key 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51384 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 19:15 修改: 2024-05-16 20:05
openssh-client-common	CVE-2023-51385	中危	9.0_p1-r2	9.0_p1-r5	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 19:15 修改: 2024-03-13 21:15
libcurl	CVE-2022-43552	中危	7.83.1-r3	7.83.1-r5	curl: Use-after-free triggered by an HTTP proxy deny response 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-43552 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-09 20:15 修改: 2024-10-27 15:35
libcurl	CVE-2023-23915	中危	7.83.1-r3	7.83.1-r6	curl: HSTS amnesia with --parallel 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23915 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:55
openssh-client-default	CVE-2023-48795	中危	9.0_p1-r2	9.0_p1-r5	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 16:15 修改: 2024-12-02 14:54
openssh-client-default	CVE-2023-51384	中危	9.0_p1-r2	9.0_p1-r5	openssh: destination constraints only apply to first PKCS#11 key 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51384 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 19:15 修改: 2024-05-16 20:05
openssh-client-default	CVE-2023-51385	中危	9.0_p1-r2	9.0_p1-r5	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 19:15 修改: 2024-03-13 21:15
libcurl	CVE-2023-23916	中危	7.83.1-r3	7.83.1-r6	curl: HTTP multi-header compression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-23916 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-23 20:15 修改: 2024-03-27 14:54
libcurl	CVE-2023-27535	中危	7.83.1-r3	8.0.1-r0	curl: FTP too eager connection reuse 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27535 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:47
openssh-keygen	CVE-2023-48795	中危	9.0_p1-r2	9.0_p1-r5	ssh: Prefix truncation attack on Binary Packet Protocol (BPP) 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-48795 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 16:15 修改: 2024-12-02 14:54
openssh-keygen	CVE-2023-51384	中危	9.0_p1-r2	9.0_p1-r5	openssh: destination constraints only apply to first PKCS#11 key 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51384 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 19:15 修改: 2024-05-16 20:05
openssh-keygen	CVE-2023-51385	中危	9.0_p1-r2	9.0_p1-r5	openssh: potential command injection via shell metacharacters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51385 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-12-18 19:15 修改: 2024-03-13 21:15
libcurl	CVE-2023-27536	中危	7.83.1-r3	8.0.1-r0	curl: GSS delegation too eager connection re-use 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27536 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-27537	中危	7.83.1-r3	8.0.1-r0	curl: HSTS double-free 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27537 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-27538	中危	7.83.1-r3	8.0.1-r0	curl: SSH connection too eager reuse still 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27538 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-30 20:15 修改: 2024-03-27 14:46
libcurl	CVE-2023-28320	中危	7.83.1-r3	8.1.0-r0	curl: siglongjmp race condition may lead to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
openssl	CVE-2022-4304	中危	1.1.1q-r0	1.1.1t-r0	openssl: timing attack in RSA Decryption implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4304 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-02-08 20:15 修改: 2024-02-04 09:15
openssl	CVE-2023-0465	中危	1.1.1q-r0	1.1.1t-r2	openssl: Invalid certificate policies in leaf certificates are silently ignored 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0465 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-03-28 15:15 修改: 2024-02-04 09:15
openssl	CVE-2023-2650	中危	1.1.1q-r0	1.1.1u-r0	openssl: Possible DoS translating ASN.1 object identifiers 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2650 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-05-30 14:15 修改: 2024-02-04 09:15
openssl	CVE-2023-3446	中危	1.1.1q-r0	1.1.1u-r2	openssl: Excessive time spent checking DH keys and parameters 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3446 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-19 12:15 修改: 2024-10-14 15:15
openssl	CVE-2023-3817	中危	1.1.1q-r0	1.1.1v-r0	OpenSSL: Excessive time spent checking DH q parameter value 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3817 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-07-31 16:15 修改: 2024-10-14 15:15
openssl	CVE-2023-5678	中危	1.1.1q-r0	1.1.1w-r1	openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libcurl	CVE-2023-28321	中危	7.83.1-r3	8.1.0-r0	curl: IDN wildcard match may lead to Improper Cerificate Validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28321 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-05-26 21:15 修改: 2025-01-15 16:15
ssl_client	CVE-2023-42366	中危	1.35.0-r17	1.35.0-r18	busybox: A heap-buffer-overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366 镜像层: sha256:994393dc58e7931862558d06e46aa2bb17487044f670f310dffe1d24e4d1eec7 发布日期: 2023-11-27 23:15 修改: 2024-12-06 14:15
libcurl	CVE-2023-28322	低危	7.83.1-r3	8.1.0-r0	curl: more POST-after-PUT confusion 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28322 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-05-26 21:15 修改: 2023-12-22 16:15
libcurl	CVE-2023-38546	低危	7.83.1-r3	8.4.0-r0	curl: cookie injection with none file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-38546 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-10-18 04:15 修改: 2024-07-09 14:15
libproc	CVE-2023-4016	低危	3.3.17-r1	3.3.17-r2	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
procps	CVE-2023-4016	低危	3.3.17-r1	3.3.17-r2	procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
git	CVE-2023-25815	低危	2.36.2-r0	2.36.6-r0	git: malicious placement of crafted messages when git was compiled with runtime prefix 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25815 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2023-04-25 20:15 修改: 2024-06-26 10:15

Java (jar)

低危漏洞:0

中危漏洞:0

高危漏洞:1

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
org.jenkins-ci.main:remoting	CVE-2024-43044	高危	4.13.3	3206.3208, 3248.3250, 3256.3258	jenkins: Arbitrary file read vulnerability through agent connections can lead to RCE 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43044 镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562 发布日期: 2024-08-07 14:15 修改: 2024-08-16 17:19

软件包

漏洞

安全状态

安装版本

修复版本

漏洞信息

org.jenkins-ci.main:remoting

CVE-2024-43044

高危

4.13.3

3206.3208, 3248.3250, 3256.3258

jenkins: Arbitrary file read vulnerability through agent connections can lead to RCE

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43044

镜像层: sha256:0589b9ef7543e6fe115826a70e59460413459893a5126f7ccc323bc1fd597562

发布日期: 2024-08-07 14:15 修改: 2024-08-16 17:19