docker.io/joplin/server:3.7.1 linux/amd64

docker.io/joplin/server:3.7.1 - Trivy安全扫描结果 扫描时间: 2026-07-07 11:54
全部漏洞信息
低危漏洞:151 中危漏洞:363 高危漏洞:426 严重漏洞:53

系统OS: debian 12.13 扫描引擎: Trivy 扫描时间: 2026-07-07 11:54

docker.io/joplin/server:3.7.1 (debian 12.13) (debian)
低危漏洞:77 中危漏洞:81 高危漏洞:12 严重漏洞:5
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libgnutls30 CVE-2026-33845 严重 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via DTLS zero-length fragment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33845

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-30 18:16 修改: 2026-07-02 12:17

libgnutls30 CVE-2026-42010 严重 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Authentication Bypass via NUL Character in Username

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42010

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-07 12:16 修改: 2026-06-30 03:19

perl-base CVE-2026-42496 严重 5.36.0-7+deb12u3 perl-archive-tar: perl-archive-tar: Path traversal via crafted symlinks allows arbitrary file access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42496

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 02:16 修改: 2026-06-30 03:19

perl-base CVE-2026-8376 严重 5.36.0-7+deb12u3 perl: Perl: Heap buffer overflow when compiling regular expressions on 32-bit builds

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8376

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 00:16 修改: 2026-06-17 11:03

zlib1g CVE-2023-45853 严重 1:1.2.13.dfsg-1 zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-10-14 02:15 修改: 2026-06-17 06:29

libgnutls30 CVE-2026-33846 高危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33846

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-04 10:15 修改: 2026-07-02 12:17

libgnutls30 CVE-2026-3833 高危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: GnuTLS: Policy bypass due to case-sensitive nameConstraints comparison

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3833

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-30 18:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42009 高危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Denial of Service via DTLS packet reordering vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42009

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-18 13:16 修改: 2026-07-02 12:17

libtinfo6 CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

ncurses-base CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

ncurses-bin CVE-2025-69720 高危 6.4-4 ncurses: ncurses: Buffer overflow vulnerability may lead to arbitrary code execution.

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69720

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-19 15:16 修改: 2026-06-17 10:00

libcap2 CVE-2026-4878 高危 1:2.66-4+deb12u2+b2 1:2.66-4+deb12u3 libcap: libcap: Privilege escalation via TOCTOU race condition in cap_set_file()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4878

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-09 16:16 修改: 2026-07-02 12:17

gzip CVE-2026-41992 高危 1.12-1 GNU gzip contains a global buffer overflow vulnerability in the LZH de ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41992

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02

perl-base CVE-2026-42497 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Arbitrary file modification via crafted hardlinks during archive extraction

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42497

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 02:16 修改: 2026-06-17 10:47

perl-base CVE-2026-48962 高危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Arbitrary code execution via attacker-controlled output glob

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48962

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-27 04:16 修改: 2026-06-30 03:20

perl-base CVE-2026-9538 高危 5.36.0-7+deb12u3 perl-Archive-Tar: perl-Archive-Tar: Denial of Service via crafted tar header with large entry size

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9538

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 02:16 修改: 2026-06-17 11:05

libacl1 CVE-2026-54369 高危 2.3.1-3 acl: Symlink traversal privilege escalation via libacl functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54369

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 14:16 修改: 2026-07-02 12:17

libc-bin CVE-2026-4437 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libc-bin CVE-2026-5435 中危 2.36-9+deb12u13 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc-bin CVE-2026-5450 中危 2.36-9+deb12u13 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

libc-bin CVE-2026-5928 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

libc-bin CVE-2026-6238 中危 2.36-9+deb12u13 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

libc6 CVE-2026-0915 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11

libc6 CVE-2026-4046 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

libc6 CVE-2026-4437 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Incorrect DNS response parsing via crafted DNS server response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4437

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libc6 CVE-2026-5435 中危 2.36-9+deb12u13 glibc: glibc: Out-of-bounds write via TSIG record processing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5435

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-28 13:19 修改: 2026-06-17 10:59

libc6 CVE-2026-5450 中危 2.36-9+deb12u13 glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5450

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

libc6 CVE-2026-5928 中危 2.36-9+deb12u13 glibc: glibc: Information disclosure or denial of service via ungetwc function with specific wide character encodings

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5928

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-20 21:16 修改: 2026-06-17 10:59

libc6 CVE-2026-6238 中危 2.36-9+deb12u13 glibc: glibc: Application crash or uninitialized memory read via crafted DNS response

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6238

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-28 19:37 修改: 2026-06-19 21:17

bsdutils CVE-2026-3184 中危 1:2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libgcrypt20 CVE-2026-41989 中危 1.10.1-3 1.10.1-3+deb12u1 Libgcrypt: Libgcrypt: Denial of Service and buffer overflow via crafted ECDH ciphertext

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41989

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-23 05:16 修改: 2026-06-17 10:47

dpkg CVE-2026-2219 中危 1.21.22 1.21.23 It was discovered that dpkg-deb (a component of dpkg, the Debian packa ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2219

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-07 09:16 修改: 2026-06-17 10:30

gpgv CVE-2025-30258 中危 2.2.40-1.1+deb12u2 gnupg: verification DoS due to a malicious subkey in the keyring

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-30258

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-03-19 20:15 修改: 2026-06-17 09:08

gpgv CVE-2025-68972 中危 2.2.40-1.1+deb12u2 gnupg: GnuPG: Signature bypass via form feed character in signed messages

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68972

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-27 23:15 修改: 2026-06-17 09:59

bsdutils CVE-2026-13595 中危 1:2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

gzip CVE-2026-41991 中危 1.12-1 gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41991

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 12:16 修改: 2026-07-01 14:02

libgnutls30 CVE-2026-42011 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Security bypass due to incorrect name constraint handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42011

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-07 15:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42012 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to improper handling of URI and SRV SANs

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42012

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42013 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Certificate validation bypass due to oversized Subject Alternative Name

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42013

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42014 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Use-after-free in gnutls_pkcs11_token_set_pin

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42014

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-16 02:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-42015 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Memory corruption due to off-by-one error in PKCS#12 bag handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42015

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:19

libgnutls30 CVE-2026-5260 中危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via heap overread in RSA key exchange

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5260

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-26 22:16 修改: 2026-06-30 03:21

liblzma5 CVE-2026-34743 中危 5.4.1-1 xz: XZ Utils: Denial of Service via buffer overflow in index decoding

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34743

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-02 19:21 修改: 2026-06-17 10:39

libmount1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libmount1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libmount1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libp11-kit0 CVE-2026-13757 中危 0.24.1-2 p11-kit: Stack exhaustion via unbounded recursion in RPC attribute parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13757

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 19:16 修改: 2026-07-01 15:16

libpam-modules CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam-modules CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libpam-modules-bin CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam-modules-bin CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libpam-runtime CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam-runtime CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libpam0g CVE-2024-10041 中危 1.5.2-6+deb12u2 pam: libpam: Libpam vulnerable to read hashed password

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-10-23 14:15 修改: 2026-06-30 00:16

libpam0g CVE-2026-54411 中危 1.5.2-6+deb12u2 linux-pam: Plaintext password recovery via timing discrepancy in pam_userdb module

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54411

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-14 18:17 修改: 2026-06-17 10:58

libsmartcols1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libsmartcols1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libsmartcols1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libsystemd0 CVE-2026-29111 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29

libsystemd0 CVE-2026-40225 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libsystemd0 CVE-2026-40226 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libsystemd0 CVE-2026-4105 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55

bsdutils CVE-2026-27456 中危 1:2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libtinfo6 CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libudev1 CVE-2026-29111 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29111

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-23 22:16 修改: 2026-06-17 10:29

libudev1 CVE-2026-40225 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: udev in systemd: Privilege escalation via malicious hardware devices and unsanitized kernel output

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40225

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libudev1 CVE-2026-40226 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd nspawn: Escape-to-host action via crafted config file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40226

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libudev1 CVE-2026-4105 中危 252.39-1~deb12u1 252.39-1~deb12u2 systemd: systemd: Privilege escalation via improper access control in RegisterMachine D-Bus method

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4105

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-13 19:55 修改: 2026-06-17 10:55

libuuid1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libuuid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libuuid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

mount CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

mount CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

mount CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libacl1 CVE-2026-54370 中危 2.3.1-3 acl: TOCTOU Symlink Traversal via getfacl/setfacl

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54370

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 14:16 修改: 2026-06-29 19:22

ncurses-base CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libattr1 CVE-2026-54371 中危 1:2.5.1-4 attr: Symlink Traversal Privilege Escalation via getfattr and setfattr

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54371

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 14:16 修改: 2026-07-03 13:17

ncurses-bin CVE-2023-50495 中危 6.4-4 ncurses: segmentation fault via _nc_wrap_entry()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-12-12 15:15 修改: 2026-06-17 06:39

libblkid1 CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

libblkid1 CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

libblkid1 CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libbz2-1.0 CVE-2026-42250 中危 1.0.8-5+b1 bzip2: bzip2: Denial of Service in bzip2recover via a specially crafted file

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42250

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-28 14:16 修改: 2026-06-17 10:47

libc-bin CVE-2026-0915 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Information disclosure via zero-valued network query

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0915

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-15 22:16 修改: 2026-06-17 10:11

perl-base CVE-2025-15649 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: Denial of Service via malformed DOS date in zip header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15649

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-27 04:16 修改: 2026-06-17 08:38

perl-base CVE-2026-12087 中危 5.36.0-7+deb12u3 perl-Socket: perl-Socket: Information Disclosure due to Out-of-Bounds Read

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12087

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-15 22:16 修改: 2026-06-17 10:14

perl-base CVE-2026-48959 中危 5.36.0-7+deb12u3 perl-IO-Compress: perl-IO-Compress: CPU exhaustion via per-byte read loop in fastForward

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48959

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl-base CVE-2026-48961 中危 5.36.0-7+deb12u3 perl-IO-Compress: IO::Compress: Denial of Service in zipdetails CLI tool via malformed Info-ZIP Unix Extra Field

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48961

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-27 04:16 修改: 2026-06-17 10:55

perl-base CVE-2026-7010 中危 5.36.0-7+deb12u3 HTTP::Tiny versions before 0.093 for Perl do not validate CRLF in HTTP ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-7010

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-05-11 22:22 修改: 2026-06-17 11:01

sed CVE-2026-5958 中危 4.9-1 4.9-1+deb12u1 sed: GNU sed TOCTOU race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5958

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-20 12:16 修改: 2026-06-17 10:59

tar CVE-2026-5704 中危 1.34+dfsg-1.2+deb12u1 tar: tar: Hidden file injection via crafted archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5704

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-06 16:16 修改: 2026-06-17 10:59

util-linux CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

util-linux CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

util-linux CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

util-linux-extra CVE-2026-13595 中危 2.38.1-5+deb12u3 util-linux: util-linux: heap use-after-free in libblkid nested partition probing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-13595

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-29 09:16 修改: 2026-06-30 03:17

util-linux-extra CVE-2026-27456 中危 2.38.1-5+deb12u3 util-linux: TOCTOU in the mount program when setting up loop devices

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27456

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 22:16 修改: 2026-06-17 10:27

util-linux-extra CVE-2026-3184 中危 2.38.1-5+deb12u3 util-linux: util-linux: Access control bypass due to improper hostname canonicalization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3184

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-03 19:17 修改: 2026-06-17 10:43

libc-bin CVE-2026-4046 中危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Denial of Service via iconv() function with specific character sets

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4046

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-30 18:16 修改: 2026-06-17 10:55

zlib1g CVE-2026-27171 中危 1:1.2.13.dfsg-1 zlib: zlib: Denial of Service via infinite loop in CRC32 combine functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27171

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-02-18 04:16 修改: 2026-06-17 10:26

libc6 CVE-2019-1010024 低危 2.36-9+deb12u13 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libsmartcols1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libsmartcols1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libstdc++6 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

libc6 CVE-2019-1010025 低危 2.36-9+deb12u13 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc6 CVE-2019-9192 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43

libc6 CVE-2025-15281 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37

libc6 CVE-2026-0861 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11

libsystemd0 CVE-2013-4392 低危 252.39-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13

libsystemd0 CVE-2023-31437 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libsystemd0 CVE-2023-31438 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libsystemd0 CVE-2023-31439 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libsystemd0 CVE-2026-40228 低危 252.39-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

libtasn1-6 CVE-2025-13151 低危 4.19.0-2+deb12u1 libtasn1: libtasn1: Denial of Service via stack-based buffer overflow in asn1_expend_octet_string

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13151

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-07 22:15 修改: 2026-06-17 08:33

libc6 CVE-2026-4438 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

gpgv CVE-2022-3219 低危 2.2.40-1.1+deb12u2 gnupg: denial of service issue (resource consumption) using compressed packets

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-02-23 20:15 修改: 2026-06-17 04:59

libtinfo6 CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

libgcc-s1 CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

gpgv CVE-2026-57062 低危 2.2.40-1.1+deb12u2 GnuPG: Incorrect cryptographic message parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-57062

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-23 18:18 修改: 2026-06-25 20:16

libgcrypt20 CVE-2018-6829 低危 1.10.1-3 libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2018-02-07 23:29 修改: 2026-06-17 02:02

libgcrypt20 CVE-2024-2236 低危 1.10.1-3 libgcrypt: vulnerable to Marvin Attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-03-06 22:15 修改: 2026-06-17 07:24

libudev1 CVE-2013-4392 低危 252.39-1~deb12u1 systemd: TOCTOU race condition when updating file permissions and SELinux security contexts

漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2013-10-28 22:55 修改: 2026-04-29 01:13

libudev1 CVE-2023-31437 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify a seale ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libudev1 CVE-2023-31438 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can truncate a sea ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libudev1 CVE-2023-31439 低危 252.39-1~deb12u1 An issue was discovered in systemd 253. An attacker can modify the con ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-06-13 17:15 修改: 2026-06-17 05:56

libudev1 CVE-2026-40228 低危 252.39-1~deb12u1 systemd: systemd-journald: Unintended output to user terminals via logger command

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-40228

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:44

bsdutils CVE-2025-14104 低危 1:2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

coreutils CVE-2016-2781 低危 9.1-1 coreutils: Non-privileged session can escape to the parent session in chroot

漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2017-02-07 15:59 修改: 2026-06-17 00:44

coreutils CVE-2017-18018 低危 9.1-1 coreutils: race condition vulnerability in chown and chgrp

漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2018-01-04 04:29 修改: 2026-06-17 01:12

libuuid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libuuid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

login CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u2 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35

login CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

login TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u2 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

coreutils CVE-2025-5278 低危 9.1-1 coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5278

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-05-27 21:15 修改: 2026-07-01 11:16

libapt-pkg6.0 CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30

libc-bin CVE-2010-4756 低危 2.36-9+deb12u13 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13

mount CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

mount CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libc-bin CVE-2018-20796 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53

libc-bin CVE-2019-1010022 低危 2.36-9+deb12u13 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

ncurses-base CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

libc-bin CVE-2019-1010023 低危 2.36-9+deb12u13 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc-bin CVE-2019-1010024 低危 2.36-9+deb12u13 glibc: ASLR bypass using cache of thread stack and heap

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

ncurses-bin CVE-2025-6141 低危 6.4-4 gnu-ncurses: ncurses Stack Buffer Overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6141

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-06-16 22:16 修改: 2026-06-17 10:01

passwd CVE-2007-5686 低危 1:4.13+dfsg1-1+deb12u2 initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2007-10-28 17:08 修改: 2026-04-23 00:35

passwd CVE-2024-56433 低危 1:4.13+dfsg1-1+deb12u2 shadow-utils: Default subordinate ID configuration in /etc/login.defs could lead to compromise

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-56433

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2024-12-26 09:15 修改: 2026-06-17 08:12

passwd TEMP-0628843-DBAD28 低危 1:4.13+dfsg1-1+deb12u2 [more related to CVE-2005-4890]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libc-bin CVE-2019-1010025 低危 2.36-9+deb12u13 glibc: information disclosure of heap addresses of pthread_created thread

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libgnutls30 CVE-2011-3389 低危 3.7.9-2+deb12u6 HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST)

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2011-09-06 19:55 修改: 2026-04-29 01:13

libgnutls30 CVE-2026-5419 低危 3.7.9-2+deb12u6 3.7.9-2+deb12u7 gnutls: gnutls: Information disclosure via timing side-channel in PKCS#7 padding removal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5419

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-06-01 21:16 修改: 2026-06-29 12:16

libc-bin CVE-2019-9192 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-02-26 18:29 修改: 2026-06-17 02:43

libc-bin CVE-2025-15281 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15281

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-20 14:16 修改: 2026-06-17 08:37

libc-bin CVE-2026-0861 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: Integer overflow in memalign leads to heap corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0861

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-01-14 21:15 修改: 2026-06-17 10:11

libc-bin CVE-2026-4438 低危 2.36-9+deb12u13 2.36-9+deb12u14 glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4438

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2026-03-20 20:16 修改: 2026-06-17 10:56

libmount1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libmount1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

bash TEMP-0841856-B18BAF 低危 5.2.15-2+b10 [Privilege escalation possible to other user than root]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

perl-base CVE-2011-4116 低危 5.36.0-7+deb12u3 perl: File:: Temp insecure temporary file handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2020-01-31 18:15 修改: 2025-08-04 19:04

perl-base CVE-2023-31486 低危 5.36.0-7+deb12u3 http-tiny: perl: insecure TLS cert default

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2023-04-29 00:15 修改: 2026-06-17 05:57

dpkg CVE-2025-6297 低危 1.21.22 1.21.23 It was discovered that dpkg-deb does not properly sanitize directory p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6297

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-07-01 17:15 修改: 2026-06-17 10:01

sysvinit-utils TEMP-0517018-A83CE6 低危 3.06-4 [sysvinit: no-root option in expert installer exposes locally exploitable security flaw]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

gcc-12-base CVE-2022-27943 低危 12.2.0-14+deb12u1 binutils: libiberty/rust-demangle.c in GNU GCC 11.2 allows stack exhaustion in demangle_const

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-27943

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-03-26 13:15 修改: 2026-06-17 04:37

tar CVE-2005-2541 低危 1.34+dfsg-1.2+deb12u1 tar: does not properly warn the user when extracting setuid or setgid files

漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2005-08-10 04:00 修改: 2026-04-16 00:27

tar TEMP-0290435-0B57B5 低危 1.34+dfsg-1.2+deb12u1 [tar's rmt command may have undesired side effects]

漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

apt CVE-2011-3374 低危 2.6.1 It was found that apt-key in apt, all versions, do not correctly valid ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-11-26 00:15 修改: 2024-11-21 01:30

libblkid1 CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libblkid1 CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

util-linux CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

util-linux CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

bsdutils CVE-2022-0563 低危 1:2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

libc6 CVE-2010-4756 低危 2.36-9+deb12u13 glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2011-03-02 20:00 修改: 2026-04-29 01:13

libc6 CVE-2018-20796 低危 2.36-9+deb12u13 glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-02-26 02:29 修改: 2026-06-17 01:53

util-linux-extra CVE-2022-0563 低危 2.38.1-5+deb12u3 util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2022-02-21 19:15 修改: 2026-06-17 04:20

util-linux-extra CVE-2025-14104 低危 2.38.1-5+deb12u3 util-linux: util-linux: Heap buffer overread in setpwnam() when processing 256-byte usernames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14104

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2025-12-05 17:16 修改: 2026-06-30 00:16

libc6 CVE-2019-1010022 低危 2.36-9+deb12u13 glibc: stack guard protection bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libc6 CVE-2019-1010023 低危 2.36-9+deb12u13 glibc: running ldd on malicious ELF leads to code execution because of wrong size computation

漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 2019-07-15 04:15 修改: 2026-06-17 02:09

libblkid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

bsdutils CVE-2026-53615 未知 1:2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libsmartcols1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libsmartcols1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

bsdutils CVE-2026-53613 未知 1:2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

util-linux CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

util-linux CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libblkid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libmount1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libmount1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

mount CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

mount CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

util-linux-extra CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

util-linux-extra CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libuuid1 CVE-2026-53613 未知 2.38.1-5+deb12u3 [Local Privilege Escalation via TOCTOU in mount(8) - Target Path Redirection]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53613

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

libuuid1 CVE-2026-53615 未知 2.38.1-5+deb12u3 [Integer Overflow or Wraparound in libblkid/src/partitions/dos.c]

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53615

镜像层: sha256:5d0ffcca6050b9c12db964453426d0c2bf06c4a53fb7754feeda08f53a3cf424

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

Node.js (node-pkg)
低危漏洞:74 中危漏洞:282 高危漏洞:414 严重漏洞:48
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

@babel/traverse CVE-2023-45133 严重 7.22.5 7.23.2, 8.0.0-alpha.4 babel: arbitrary code execution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45133

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-12 17:15 修改: 2026-06-17 06:28

cipher-base CVE-2025-9287 严重 1.0.4 1.0.5 cipher-base: Cipher-base hash manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9287

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-08-20 22:15 修改: 2026-06-17 10:08

cipher-base CVE-2025-9287 严重 1.0.4 1.0.5 cipher-base: Cipher-base hash manipulation

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9287

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-08-20 22:15 修改: 2026-06-17 10:08

elliptic GHSA-vjh7-7g9h-fjfh 严重 6.5.4 6.6.1 Elliptic's private key extraction in ECDSA upon signing a malformed input (e.g. a string)

漏洞详情: https://github.com/advisories/GHSA-vjh7-7g9h-fjfh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-02-12 19:47 修改: 2025-02-12 19:47

elliptic GHSA-vjh7-7g9h-fjfh 严重 6.5.4 6.6.1 Elliptic's private key extraction in ECDSA upon signing a malformed input (e.g. a string)

漏洞详情: https://github.com/advisories/GHSA-vjh7-7g9h-fjfh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-02-12 19:47 修改: 2025-02-12 19:47

fast-xml-parser CVE-2026-25896 严重 5.2.5 5.3.5, 4.5.4 fast-xml-parser: fast-xml-parser: Cross-Site Scripting (XSS) due to improper DOCTYPE entity handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25896

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 21:19 修改: 2026-06-30 03:17

form-data CVE-2025-7783 严重 2.3.3 2.5.4, 3.0.4, 4.0.4 form-data: Unsafe random function in form-data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7783

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-07-18 17:15 修改: 2026-06-17 10:05

form-data CVE-2025-7783 严重 2.3.3 2.5.4, 3.0.4, 4.0.4 form-data: Unsafe random function in form-data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7783

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-07-18 17:15 修改: 2026-06-17 10:05

form-data CVE-2025-7783 严重 2.3.3 2.5.4, 3.0.4, 4.0.4 form-data: Unsafe random function in form-data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7783

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-07-18 17:15 修改: 2026-06-17 10:05

form-data CVE-2025-7783 严重 3.0.1 2.5.4, 3.0.4, 4.0.4 form-data: Unsafe random function in form-data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7783

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-07-18 17:15 修改: 2026-06-17 10:05

form-data CVE-2025-7783 严重 3.0.1 2.5.4, 3.0.4, 4.0.4 form-data: Unsafe random function in form-data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7783

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-07-18 17:15 修改: 2026-06-17 10:05

form-data CVE-2025-7783 严重 4.0.0 2.5.4, 3.0.4, 4.0.4 form-data: Unsafe random function in form-data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7783

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-07-18 17:15 修改: 2026-06-17 10:05

handlebars CVE-2026-33937 严重 4.7.7 4.7.9 handlebars.js: Handlebars: Remote Code Execution via crafted Abstract Syntax Tree object in compile()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33937

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33937 严重 4.7.7 4.7.9 handlebars.js: Handlebars: Remote Code Execution via crafted Abstract Syntax Tree object in compile()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33937

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33937 严重 4.7.8 4.7.9 handlebars.js: Handlebars: Remote Code Execution via crafted Abstract Syntax Tree object in compile()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33937

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33937 严重 4.7.8 4.7.9 handlebars.js: Handlebars: Remote Code Execution via crafted Abstract Syntax Tree object in compile()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33937

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33937 严重 4.7.8 4.7.9 handlebars.js: Handlebars: Remote Code Execution via crafted Abstract Syntax Tree object in compile()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33937

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

minimist CVE-2021-44906 严重 1.2.5 1.2.6, 0.2.4 minimist: prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-03-17 16:15 修改: 2026-06-17 04:12

pbkdf2 CVE-2025-6545 严重 3.1.2 3.1.3 pbkdf2: pbkdf2 silently returns predictable key material

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6545

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-23 19:15 修改: 2026-06-17 10:02

pbkdf2 CVE-2025-6545 严重 3.1.2 3.1.3 pbkdf2: pbkdf2 silently returns predictable key material

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6545

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-23 19:15 修改: 2026-06-17 10:02

pbkdf2 CVE-2025-6547 严重 3.1.2 3.1.3 pbkdf2: pbkdf2 silently returns static keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6547

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-23 19:15 修改: 2026-06-17 10:02

pbkdf2 CVE-2025-6547 严重 3.1.2 3.1.3 pbkdf2: pbkdf2 silently returns static keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-6547

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-23 19:15 修改: 2026-06-17 10:02

sha.js CVE-2025-9288 严重 2.4.11 2.4.12 sha.js: Missing type checks leading to hash rewind and passing on crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9288

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-08-20 22:15 修改: 2026-06-17 10:08

sha.js CVE-2025-9288 严重 2.4.11 2.4.12 sha.js: Missing type checks leading to hash rewind and passing on crafted data

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-9288

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-08-20 22:15 修改: 2026-06-17 10:08

shell-quote CVE-2026-9277 严重 1.7.3 1.8.4 shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9277

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-22 14:16 修改: 2026-07-02 12:17

shell-quote CVE-2026-9277 严重 1.7.3 1.8.4 shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9277

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-22 14:16 修改: 2026-07-02 12:17

shell-quote CVE-2026-9277 严重 1.7.3 1.8.4 shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9277

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-22 14:16 修改: 2026-07-02 12:17

shell-quote CVE-2026-9277 严重 1.8.1 1.8.4 shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9277

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-22 14:16 修改: 2026-07-02 12:17

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

d3-color GHSA-36jr-mh4h-2g58 高危 3.0.1 3.1.0 d3-color vulnerable to ReDoS

漏洞详情: https://github.com/advisories/GHSA-36jr-mh4h-2g58

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-09-29 14:12 修改: 2022-09-29 14:12

decode-uri-component CVE-2022-38900 高危 0.2.0 0.2.1 decode-uri-component: improper input validation resulting in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-11-28 13:15 修改: 2026-06-17 04:57

decode-uri-component CVE-2022-38900 高危 0.2.0 0.2.1 decode-uri-component: improper input validation resulting in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-11-28 13:15 修改: 2026-06-17 04:57

@isaacs/brace-expansion CVE-2026-25547 高危 5.0.0 5.0.1 brace-expansion: brace-expansion: Denial of Service via unbounded brace range expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25547

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-04 22:16 修改: 2026-06-17 10:24

@koa/cors CVE-2023-49803 高危 3.4.3 5.0.0 Overly permissive origin policy

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49803

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-12-11 23:15 修改: 2026-06-17 06:36

fast-xml-parser CVE-2026-33036 高危 4.1.2 5.5.6, 4.5.5 fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33036

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 06:16 修改: 2026-06-17 10:36

fast-xml-parser CVE-2026-33036 高危 4.1.2 5.5.6, 4.5.5 fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33036

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 06:16 修改: 2026-06-17 10:36

@xmldom/xmldom CVE-2026-34601 高危 0.8.10 0.8.12, 0.9.9 xmldom: xmldom: XML structure injection via CDATA terminator

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34601

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-02 18:16 修改: 2026-06-30 03:18

fast-xml-parser CVE-2026-25128 高危 5.2.5 5.3.4 fast-xml-parser: fast-xml-parser has RangeError DoS Numeric Entities Bug

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25128

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-30 16:16 修改: 2026-06-17 10:24

fast-xml-parser CVE-2026-26278 高危 5.2.5 4.5.4, 5.3.6 fast-xml-parser: fast-xml-parser: Denial of Service via unlimited XML entity expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26278

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-19 20:25 修改: 2026-06-30 03:17

fast-xml-parser CVE-2026-33036 高危 5.2.5 5.5.6, 4.5.5 fast-xml-parser: fast-xml-parser: Denial of Service via XML entity expansion bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33036

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 06:16 修改: 2026-06-17 10:36

flatted CVE-2026-32141 高危 3.2.4 3.4.0 flatted: flatted: Unbounded recursion DoS in parse() revive phase

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32141

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-12 18:16 修改: 2026-07-02 12:17

flatted CVE-2026-32141 高危 3.2.4 3.4.0 flatted: flatted: Unbounded recursion DoS in parse() revive phase

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32141

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-12 18:16 修改: 2026-07-02 12:17

flatted CVE-2026-32141 高危 3.2.4 3.4.0 flatted: flatted: Unbounded recursion DoS in parse() revive phase

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32141

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-12 18:16 修改: 2026-07-02 12:17

flatted CVE-2026-32141 高危 3.2.4 3.4.0 flatted: flatted: Unbounded recursion DoS in parse() revive phase

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-32141

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-12 18:16 修改: 2026-07-02 12:17

flatted CVE-2026-33228 高危 3.2.4 3.4.2 flatted: Flatted: Prototype pollution vulnerability allows arbitrary code execution via crafted JSON.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33228

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 23:16 修改: 2026-07-02 12:17

flatted CVE-2026-33228 高危 3.2.4 3.4.2 flatted: Flatted: Prototype pollution vulnerability allows arbitrary code execution via crafted JSON.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33228

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 23:16 修改: 2026-07-02 12:17

flatted CVE-2026-33228 高危 3.2.4 3.4.2 flatted: Flatted: Prototype pollution vulnerability allows arbitrary code execution via crafted JSON.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33228

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 23:16 修改: 2026-07-02 12:17

flatted CVE-2026-33228 高危 3.2.4 3.4.2 flatted: Flatted: Prototype pollution vulnerability allows arbitrary code execution via crafted JSON.

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33228

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-20 23:16 修改: 2026-07-02 12:17

follow-redirects CVE-2022-0155 高危 1.14.5 1.14.7 follow-redirects: Exposure of Private Personal Information to an Unauthorized Actor

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0155

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-01-10 20:15 修改: 2026-06-17 04:20

@xmldom/xmldom CVE-2026-41672 高危 0.8.10 0.8.13, 0.9.10 xmldom: @xmldom/xmldom: xmldom: Arbitrary XML Node Injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 04:16 修改: 2026-06-30 03:19

@xmldom/xmldom CVE-2026-41673 高危 0.8.10 0.8.13, 0.9.10 @xmldom/xmldom: xmldom: xmldom: Denial of Service via deeply nested XML documents

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41673

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 04:16 修改: 2026-07-01 13:17

@xmldom/xmldom CVE-2026-41674 高危 0.8.10 0.8.13, 0.9.10 xmldom: xmldom: Arbitrary XML markup injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41674

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 04:16 修改: 2026-06-30 03:19

form-data CVE-2026-12143 高危 2.3.3 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

form-data CVE-2026-12143 高危 2.3.3 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

form-data CVE-2026-12143 高危 2.3.3 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

@xmldom/xmldom CVE-2026-41675 高危 0.8.10 0.8.13, 0.9.10 xmldom: xmldom: Arbitrary XML node injection via crafted processing instructions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41675

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 04:16 修改: 2026-06-30 03:19

ansi-regex CVE-2021-3807 高危 3.0.0 6.0.1, 5.0.1, 4.1.1, 3.0.1 nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2021-09-17 07:15 修改: 2026-06-17 04:05

form-data CVE-2026-12143 高危 3.0.1 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

form-data CVE-2026-12143 高危 3.0.1 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

braces CVE-2024-4068 高危 2.3.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

form-data CVE-2026-12143 高危 4.0.0 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

form-data CVE-2026-12143 高危 4.0.4 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

form-data CVE-2026-12143 高危 4.0.4 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

form-data CVE-2026-12143 高危 4.0.5 2.5.6, 3.0.5, 4.0.6 form-data: form-data: Form field override via CRLF injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-12143

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-12 19:16 修改: 2026-07-02 12:16

glob CVE-2025-64756 高危 10.3.1 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55

glob CVE-2025-64756 高危 10.3.1 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55

glob CVE-2025-64756 高危 10.3.1 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55

glob CVE-2025-64756 高危 10.3.1 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55

glob CVE-2025-64756 高危 10.3.1 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55

glob CVE-2025-64756 高危 10.3.1 11.1.0, 10.5.0 glob: glob: Command Injection Vulnerability via Malicious Filenames

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64756

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-17 18:15 修改: 2026-06-17 09:55

braces CVE-2024-4068 高危 2.3.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 2.3.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

handlebars CVE-2026-33938 高危 4.7.7 4.7.9 handlebars: Handlebars: Arbitrary code execution via @partial-block overwrite

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33938

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33938 高危 4.7.7 4.7.9 handlebars: Handlebars: Arbitrary code execution via @partial-block overwrite

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33938

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33939 高危 4.7.7 4.7.9 handlebars.js: Handlebars.js: Denial of Service via malformed decorator syntax in template compilation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33939

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33939 高危 4.7.7 4.7.9 handlebars.js: Handlebars.js: Denial of Service via malformed decorator syntax in template compilation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33939

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33940 高危 4.7.7 4.7.9 handlebars.js: Handlebars.js: Arbitrary code execution via crafted template context

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33940

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33940 高危 4.7.7 4.7.9 handlebars.js: Handlebars.js: Arbitrary code execution via crafted template context

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33940

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33941 高危 4.7.7 4.7.9 handlebars.js: Handlebars: Arbitrary code execution via CLI precompiler input sanitization flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33941

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33941 高危 4.7.7 4.7.9 handlebars.js: Handlebars: Arbitrary code execution via CLI precompiler input sanitization flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33941

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

braces CVE-2024-4068 高危 2.3.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 2.3.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 2.3.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

handlebars CVE-2026-33938 高危 4.7.8 4.7.9 handlebars: Handlebars: Arbitrary code execution via @partial-block overwrite

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33938

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33938 高危 4.7.8 4.7.9 handlebars: Handlebars: Arbitrary code execution via @partial-block overwrite

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33938

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33938 高危 4.7.8 4.7.9 handlebars: Handlebars: Arbitrary code execution via @partial-block overwrite

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33938

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

handlebars CVE-2026-33939 高危 4.7.8 4.7.9 handlebars.js: Handlebars.js: Denial of Service via malformed decorator syntax in template compilation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33939

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33939 高危 4.7.8 4.7.9 handlebars.js: Handlebars.js: Denial of Service via malformed decorator syntax in template compilation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33939

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33939 高危 4.7.8 4.7.9 handlebars.js: Handlebars.js: Denial of Service via malformed decorator syntax in template compilation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33939

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33940 高危 4.7.8 4.7.9 handlebars.js: Handlebars.js: Arbitrary code execution via crafted template context

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33940

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33940 高危 4.7.8 4.7.9 handlebars.js: Handlebars.js: Arbitrary code execution via crafted template context

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33940

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33940 高危 4.7.8 4.7.9 handlebars.js: Handlebars.js: Arbitrary code execution via crafted template context

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33940

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33941 高危 4.7.8 4.7.9 handlebars.js: Handlebars: Arbitrary code execution via CLI precompiler input sanitization flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33941

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33941 高危 4.7.8 4.7.9 handlebars.js: Handlebars: Arbitrary code execution via CLI precompiler input sanitization flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33941

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

handlebars CVE-2026-33941 高危 4.7.8 4.7.9 handlebars.js: Handlebars: Arbitrary code execution via CLI precompiler input sanitization flaw

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33941

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 22:16 修改: 2026-07-02 12:17

html-minifier CVE-2022-37620 高危 4.0.0 kangax html-minifier REDoS vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-37620

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-31 12:15 修改: 2026-06-17 04:55

http-cache-semantics CVE-2022-25881 高危 4.1.0 4.1.1 http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-01-31 05:15 修改: 2026-06-17 04:34

http-cache-semantics CVE-2022-25881 高危 4.1.0 4.1.1 http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-01-31 05:15 修改: 2026-06-17 04:34

http-cache-semantics CVE-2022-25881 高危 4.1.0 4.1.1 http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-01-31 05:15 修改: 2026-06-17 04:34

immutable CVE-2026-29063 高危 5.1.3 4.3.8, 5.1.5, 3.8.3 immutable-js: Immutable.js: Arbitrary code execution via Prototype Pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29063

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-06 19:16 修改: 2026-07-02 12:17

ip CVE-2024-29415 高危 1.1.5 node-ip: Incomplete fix for CVE-2023-42282

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-27 20:15 修改: 2026-06-17 07:22

ip CVE-2024-29415 高危 1.1.5 node-ip: Incomplete fix for CVE-2023-42282

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-27 20:15 修改: 2026-06-17 07:22

ip CVE-2024-29415 高危 1.1.5 node-ip: Incomplete fix for CVE-2023-42282

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-27 20:15 修改: 2026-06-17 07:22

json5 CVE-2022-46175 高危 1.0.1 2.2.2, 1.0.2 json5: Prototype Pollution in JSON5 via Parse Method

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-12-24 04:15 修改: 2026-06-17 05:11

json5 CVE-2022-46175 高危 1.0.1 2.2.2, 1.0.2 json5: Prototype Pollution in JSON5 via Parse Method

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-12-24 04:15 修改: 2026-06-17 05:11

json5 CVE-2022-46175 高危 1.0.1 2.2.2, 1.0.2 json5: Prototype Pollution in JSON5 via Parse Method

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-12-24 04:15 修改: 2026-06-17 05:11

json5 CVE-2022-46175 高危 2.2.0 2.2.2, 1.0.2 json5: Prototype Pollution in JSON5 via Parse Method

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-46175

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-12-24 04:15 修改: 2026-06-17 05:11

koa CVE-2026-27959 高危 2.16.3 3.1.2, 2.16.4 koa: Koa: Host header injection vulnerability due to malformed HTTP Host header parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27959

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-30 03:17

launch-editor CVE-2024-52011 高危 2.8.0 2.9.0 launch-editor: vite: launch-editor: Arbitrary command execution via insufficient file argument sanitization

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52011

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-01 19:16 修改: 2026-07-02 12:16

linkify-it CVE-2026-48801 高危 4.0.1 5.0.1 LinkifyIt#match scan loop has quadratic algorithmic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48801

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

linkify-it CVE-2026-48801 高危 4.0.1 5.0.1 LinkifyIt#match scan loop has quadratic algorithmic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48801

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

linkify-it CVE-2026-48801 高危 4.0.1 5.0.1 LinkifyIt#match scan loop has quadratic algorithmic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48801

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

linkify-it CVE-2026-48801 高危 4.0.1 5.0.1 LinkifyIt#match scan loop has quadratic algorithmic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48801

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

linkify-it CVE-2026-48801 高危 4.0.1 5.0.1 LinkifyIt#match scan loop has quadratic algorithmic complexity

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48801

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

lodash CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

lodash-es CVE-2026-4800 高危 4.17.21 4.18.0 lodash: lodash: Arbitrary code execution via untrusted input in template imports

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-4800

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-07-03 13:17

minimatch CVE-2026-26996 高危 10.1.1 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 10.1.1 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-27903 高危 10.1.1 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 10.1.1 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 10.1.1 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 10.1.1 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2022-3517 高危 3.0.4 3.0.5 nodejs-minimatch: ReDoS via the braceExpand function

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-10-17 20:15 修改: 2026-06-17 04:59

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.0.4 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.0.4 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 3.1.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 3.1.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-26996 高危 9.0.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 9.0.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 9.0.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 9.0.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 9.0.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-26996 高危 9.0.2 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-27903 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27903 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.2 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-26996 高危 9.0.3 10.2.1, 9.0.6, 8.0.5, 7.4.7, 6.2.1, 5.1.7, 4.2.4, 3.1.3 minimatch: minimatch: Denial of Service via specially crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26996

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 03:16 修改: 2026-06-17 10:26

minimatch CVE-2026-27903 高危 9.0.3 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.3 minimatch: minimatch: Denial of Service due to unbounded recursive backtracking via crafted glob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27903

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

minimatch CVE-2026-27904 高危 9.0.3 10.2.3, 9.0.7, 8.0.6, 7.4.8, 6.2.2, 5.1.8, 4.2.5, 3.1.4 minimatch: Minimatch: Denial of Service via catastrophic backtracking in glob expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27904

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

moment CVE-2022-24785 高危 2.29.1 2.29.2 Moment.js: Path traversal in moment.locale

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24785

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-04-04 17:15 修改: 2026-06-17 04:32

moment CVE-2022-31129 高危 2.29.1 2.29.4 moment: inefficient parsing algorithm resulting in DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-31129

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-07-06 18:15 修改: 2026-06-17 04:44

multiparty CVE-2026-8159 高危 4.2.3 4.3.0 multiparty@4.2.3 and lower versions are vulnerable to denial of servic ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8159

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 10:16 修改: 2026-06-17 11:03

multiparty CVE-2026-8161 高危 4.2.3 4.3.0 multiparty@4.2.3 and lower versions are vulnerable to denial of servic ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8161

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 10:16 修改: 2026-06-17 11:03

multiparty CVE-2026-8162 高危 4.2.3 4.3.0 multiparty@4.2.3 and lower versions are vulnerable to denial of servic ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8162

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 10:16 修改: 2026-06-17 11:03

node-forge CVE-2025-12816 高危 1.3.1 1.3.2 node-forge: node-forge: Interpretation conflict vulnerability allows bypassing cryptographic verifications

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-12816

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-25 20:15 修改: 2026-06-17 08:32

node-forge CVE-2025-66031 高危 1.3.1 1.3.2 node-forge: node-forge ASN.1 Unbounded Recursion

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66031

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-26 23:15 修改: 2026-06-17 09:56

node-forge CVE-2026-33891 高危 1.3.1 1.4.0 node-forge: node-forge: Denial of Service via infinite loop in BigInteger.modInverse()

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33891

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

node-forge CVE-2026-33894 高危 1.3.1 1.4.0 node-forge: Forge: Signature Forgery via Weak RSASSA PKCS#1 v1.5 Verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33894

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

node-forge CVE-2026-33895 高危 1.3.1 1.4.0 node-forge: Forge: Authentication bypass via forged Ed25519 cryptographic signatures

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33895

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

node-forge CVE-2026-33896 高危 1.3.1 1.4.0 node-forge: Forge (node-forge): Certificate validation bypass allows unauthorized certificate issuance

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33896

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-07-02 12:17

nodemailer CVE-2025-14874 高危 6.10.1 7.0.11 nodemailer: Nodemailer: Denial of service via crafted email address header

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14874

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-12-18 09:15 修改: 2026-06-17 08:36

nodemailer GHSA-p6gq-j5cr-w38f 高危 6.10.1 9.0.1 Nodemailer: Message-level raw option bypasses disableFileAccess/disableUrlAccess, enabling arbitrary file read and full-response SSRF in the delivered message

漏洞详情: https://github.com/advisories/GHSA-p6gq-j5cr-w38f

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-18 14:28 修改: 2026-06-18 14:28

path-to-regexp CVE-2024-45296 高危 1.8.0 1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0 path-to-regexp: Backtracking regular expressions cause ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-09-09 19:15 修改: 2026-06-17 07:53

braces CVE-2024-4068 高危 3.0.2 3.0.3 braces: fails to limit the number of characters it can handle

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

browserify-sign CVE-2023-46234 高危 4.2.1 4.2.2 browserify-sign: upper bound check issue in dsaVerify leads to a signature forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46234

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-26 15:15 修改: 2026-06-17 06:30

browserify-sign CVE-2023-46234 高危 4.2.1 4.2.2 browserify-sign: upper bound check issue in dsaVerify leads to a signature forgery attack

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-46234

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-26 15:15 修改: 2026-06-17 06:30

cached-path-relative CVE-2021-23518 高危 1.0.2 1.1.0 cached-path-relative: Prototype Pollution via the cache variable

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23518

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-01-21 20:15 修改: 2026-06-17 03:38

pdfjs-dist CVE-2024-4367 高危 3.11.174 4.2.67 Mozilla: Arbitrary JavaScript execution in PDF.js

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4367

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 18:15 修改: 2026-06-17 08:01

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33671 高危 4.0.3 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Regular Expression Denial of Service via crafted extglob patterns

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33671

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

qs CVE-2022-24999 高危 6.5.2 6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 express: "qs" prototype poisoning causes the hang of the node process

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-11-26 22:15 修改: 2026-06-17 04:32

qs CVE-2022-24999 高危 6.5.2 6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 express: "qs" prototype poisoning causes the hang of the node process

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-11-26 22:15 修改: 2026-06-17 04:32

qs CVE-2022-24999 高危 6.5.2 6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4 express: "qs" prototype poisoning causes the hang of the node process

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-11-26 22:15 修改: 2026-06-17 04:32

rollup CVE-2024-47068 高危 0.50.1 3.29.5, 4.22.4, 2.79.2 rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-09-23 16:15 修改: 2026-06-17 07:56

rollup CVE-2026-27606 高危 0.50.1 2.80.0, 3.30.0, 4.59.0 rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27606

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-25 03:16 修改: 2026-07-01 13:16

rollup CVE-2024-47068 高危 4.2.0 3.29.5, 4.22.4, 2.79.2 rollup: DOM Clobbering Gadget found in rollup bundled scripts that leads to XSS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47068

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-09-23 16:15 修改: 2026-06-17 07:56

rollup CVE-2026-27606 高危 4.2.0 2.80.0, 3.30.0, 4.59.0 rollup: Rollup: Remote Code Execution via Path Traversal Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27606

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-25 03:16 修改: 2026-07-01 13:16

samlify CVE-2026-46490 高危 2.10.2 2.13.0 samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-46490

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-08 19:16 修改: 2026-06-17 10:53

semver CVE-2022-25883 高危 5.7.1 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 5.7.1 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 6.3.0 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.5 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.5 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.5 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.5 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.5 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.7 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.7 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.8 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.8 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.8 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.8 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.8 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

semver CVE-2022-25883 高危 7.3.8 7.5.2, 6.3.1, 5.7.2 nodejs-semver: Regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-21 05:15 修改: 2026-06-17 04:34

serialize-javascript GHSA-5c6j-r48x-rmvq 高危 6.0.0 7.0.3 Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()

漏洞详情: https://github.com/advisories/GHSA-5c6j-r48x-rmvq

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-28 02:50 修改: 2026-03-02 16:17

serialize-javascript GHSA-5c6j-r48x-rmvq 高危 6.0.1 7.0.3 Serialize JavaScript is Vulnerable to RCE via RegExp.flags and Date.prototype.toISOString()

漏洞详情: https://github.com/advisories/GHSA-5c6j-r48x-rmvq

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-28 02:50 修改: 2026-03-02 16:17

cached-path-relative CVE-2021-23518 高危 1.0.2 1.1.0 cached-path-relative: Prototype Pollution via the cache variable

漏洞详情: https://avd.aquasec.com/nvd/cve-2021-23518

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-01-21 20:15 修改: 2026-06-17 03:38

@babel/plugin-transform-modules-systemjs CVE-2026-44728 高危 7.29.0 7.29.4, 8.0.0-alpha.13 Babel is a compiler for writing next generation JavaScript. From 7.12. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44728

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-26 18:16 修改: 2026-06-17 10:51

@isaacs/brace-expansion CVE-2026-25547 高危 5.0.0 5.0.1 brace-expansion: brace-expansion: Denial of Service via unbounded brace range expansion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-25547

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-04 22:16 修改: 2026-06-17 10:24

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

cross-spawn CVE-2024-21538 高危 7.0.3 7.0.5, 6.0.6 cross-spawn: regular expression denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21538

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-11-08 05:15 修改: 2026-06-17 07:09

sigstore CVE-2026-48815 高危 4.1.0 4.1.1 sigstore's `certificateOIDs` verification constraints are silently dropped and never enforced

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48815

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

tar CVE-2026-23745 高危 6.1.11 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 6.1.11 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 6.1.11 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 6.1.11 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 6.1.11 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 6.1.11 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 6.1.11 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 6.1.11 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-24842 高危 6.1.11 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 6.1.11 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 6.1.11 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 6.1.11 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-26960 高危 6.1.11 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 6.1.11 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 6.1.11 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 6.1.11 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-29786 高危 6.1.11 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 6.1.11 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 6.1.11 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 6.1.11 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-31802 高危 6.1.11 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 6.1.11 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 6.1.11 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 6.1.11 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23745 高危 7.4.3 7.5.3 node-tar: tar: node-tar: Arbitrary file overwrite and symlink poisoning via unsanitized linkpaths in archives

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23745

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-16 22:16 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-23950 高危 7.4.3 7.5.4 node-tar: tar: node-tar: Arbitrary file overwrite via Unicode path collision race condition

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-23950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-20 01:15 修改: 2026-06-30 03:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-24842 高危 7.4.3 7.5.7 node-tar: tar: node-tar: Arbitrary file creation via path traversal bypass in hardlink security check

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-28 01:16 修改: 2026-06-30 05:17

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-26960 高危 7.4.3 7.5.8 node-tar: node-tar: Arbitrary file read/write via malicious archive hardlink creation

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-26960

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 02:16 修改: 2026-06-17 10:26

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-29786 高危 7.4.3 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-31802 高危 7.4.3 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

tar CVE-2026-29786 高危 7.5.9 7.5.10 node-tar: hardlink path traversal via drive-relative linkpath

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-29786

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-07 16:15 修改: 2026-06-30 03:18

tar CVE-2026-31802 高危 7.5.9 7.5.11 tar: tar: File overwrite via drive-relative symlink traversal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31802

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 07:44 修改: 2026-06-17 10:34

ws CVE-2026-48779 高危 7.5.10 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:852b160c0f1f1dd40c4c8a73d5b3867c48bd0b35279b24d98333f47213281d0b

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 7.5.10 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:8966393200a6c1fd26a54edfe20f8f4dc81be0ba377a4d3d1493ac6688bfdc5f

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2024-37890 高危 7.5.6 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38

ws CVE-2024-37890 高危 7.5.6 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38

ws CVE-2024-37890 高危 7.5.6 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38

ws CVE-2026-48779 高危 7.5.6 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 7.5.6 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 7.5.6 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2024-37890 高危 7.5.9 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38

ws CVE-2024-37890 高危 7.5.9 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38

ws CVE-2026-48779 高危 7.5.9 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 7.5.9 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2024-37890 高危 8.11.0 5.2.4, 6.2.3, 7.5.10, 8.17.1 nodejs-ws: denial of service when handling a request with many HTTP headers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-06-17 20:15 修改: 2026-06-17 07:38

ws CVE-2026-48779 高危 8.11.0 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 8.18.0 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 8.18.0 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 8.18.0 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

ws CVE-2026-48779 高危 8.20.0 5.2.5, 6.2.4, 7.5.11, 8.21.0 ws: ws: Denial of Service via memory exhaustion from small WebSocket fragments

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48779

镜像层: sha256:852b160c0f1f1dd40c4c8a73d5b3867c48bd0b35279b24d98333f47213281d0b

发布日期: 2026-06-17 13:20 修改: 2026-07-02 12:17

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

fast-xml-parser CVE-2026-33349 中危 4.1.2 4.5.5, 5.5.7 fast-xml-parser: fast-xml-parser: Denial of Service via unbounded entity expansion due to incorrect configuration limit handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33349

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-24 20:16 修改: 2026-06-17 10:37

fast-xml-parser CVE-2026-33349 中危 4.1.2 4.5.5, 5.5.7 fast-xml-parser: fast-xml-parser: Denial of Service via unbounded entity expansion due to incorrect configuration limit handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33349

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-24 20:16 修改: 2026-06-17 10:37

node-forge CVE-2025-66030 中危 1.3.1 1.3.2 node-forge: node-forge: Integer Overflow allows OID-based security bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-66030

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-26 23:15 修改: 2026-06-17 09:56

launch-editor CVE-2026-53632 中危 2.8.0 2.14.1 launch-editor: launch-editor: Credential compromise via NTLMv2 password hash leak through UNC path access

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53632

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-23 15:44

fast-xml-parser CVE-2026-41650 中危 4.1.2 5.7.0 fast-xml-parser: fast-xml-parser: XML injection via improper escaping of comment and CDATA sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41650

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 15:16 修改: 2026-06-17 10:46

nodemailer CVE-2025-13033 中危 6.10.1 7.0.7 nodemailer: Nodemailer: Email to an unintended domain can occur due to Interpretation Conflict

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13033

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-14 20:15 修改: 2026-06-17 08:33

nodemailer GHSA-268h-hp4c-crq3 中危 6.10.1 8.0.9 Nodemailer: CRLF injection in Nodemailer List-* header comments allows arbitrary message header injection

漏洞详情: https://github.com/advisories/GHSA-268h-hp4c-crq3

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 17:36 修改: 2026-06-15 17:36

nodemailer GHSA-r7g4-qg5f-qqm2 中危 6.10.1 8.0.8 Nodemailer: Improper TLS Certificate Validation in OAuth2 Token Fetch Enables Credential Interception

漏洞详情: https://github.com/advisories/GHSA-r7g4-qg5f-qqm2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 17:34 修改: 2026-06-15 17:34

nodemailer GHSA-vvjj-xcjg-gr5g 中危 6.10.1 8.0.5 Nodemailer Vulnerable to SMTP Command Injection via CRLF in Transport name Option (EHLO/HELO)

漏洞详情: https://github.com/advisories/GHSA-vvjj-xcjg-gr5g

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-08 15:05 修改: 2026-04-08 15:05

nodemailer GHSA-wqvq-jvpq-h66f 中危 6.10.1 8.0.9 Nodemailer jsonTransport bypasses disableFileAccess and disableUrlAccess during message normalization

漏洞详情: https://github.com/advisories/GHSA-wqvq-jvpq-h66f

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 17:35 修改: 2026-06-15 17:35

fast-xml-parser CVE-2026-41650 中危 4.1.2 5.7.0 fast-xml-parser: fast-xml-parser: XML injection via improper escaping of comment and CDATA sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41650

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 15:16 修改: 2026-06-17 10:46

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

fast-xml-parser CVE-2026-33349 中危 5.2.5 4.5.5, 5.5.7 fast-xml-parser: fast-xml-parser: Denial of Service via unbounded entity expansion due to incorrect configuration limit handling

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33349

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-24 20:16 修改: 2026-06-17 10:37

fast-xml-parser CVE-2026-41650 中危 5.2.5 5.7.0 fast-xml-parser: fast-xml-parser: XML injection via improper escaping of comment and CDATA sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41650

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 15:16 修改: 2026-06-17 10:46

file-type CVE-2026-31808 中危 16.5.4 21.3.1 file-type: file-type: Denial of Service due to infinite loop in ASF file parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-31808

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-10 21:16 修改: 2026-06-17 10:34

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.0 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

lodash CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

picomatch CVE-2026-33672 中危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 2.3.1 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

lodash CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

lodash-es CVE-2025-13465 中危 4.17.21 4.17.23 lodash: prototype pollution in _.unset and _.omit functions

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-13465

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-21 20:16 修改: 2026-07-03 13:16

picomatch CVE-2026-33672 中危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

picomatch CVE-2026-33672 中危 4.0.2 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

lodash-es CVE-2026-2950 中危 4.17.21 4.18.0 lodash: Lodash: Prototype pollution allows deletion of built-in prototype properties via array path bypass

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2950

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 20:16 修改: 2026-06-17 10:32

picomatch CVE-2026-33672 中危 4.0.3 4.0.4, 3.0.2, 2.3.2 picomatch: Picomatch: Data integrity compromised via method injection with crafted POSIX bracket expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33672

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 2026-03-26 22:16 修改: 2026-06-17 10:37

postcss CVE-2026-41305 中危 8.4.38 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46

postcss CVE-2026-41305 中危 8.5.9 8.5.10 postcss: PostCSS: Cross-Site Scripting (XSS) via improper escaping of style closing tags

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41305

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 03:16 修改: 2026-06-17 10:46

qs CVE-2025-15284 中危 6.11.2 6.14.1 qs: qs: Denial of Service via improper input validation in array parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15284

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-12-29 23:15 修改: 2026-06-17 08:37

qs CVE-2026-8723 中危 6.11.2 6.15.2 ### Summary `qs.stringify` throws `TypeError` when called with `arr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8723

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-17 00:16 修改: 2026-06-17 11:04

qs CVE-2026-8723 中危 6.14.1 6.15.2 ### Summary `qs.stringify` throws `TypeError` when called with `arr ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-8723

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-17 00:16 修改: 2026-06-17 11:04

markdown-it CVE-2026-2327 中危 13.0.2 14.1.1 markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2327

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 06:16 修改: 2026-06-17 10:30

markdown-it CVE-2026-2327 中危 13.0.2 14.1.1 markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2327

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 06:16 修改: 2026-06-17 10:30

markdown-it CVE-2026-2327 中危 13.0.2 14.1.1 markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2327

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 06:16 修改: 2026-06-17 10:30

qs CVE-2025-15284 中危 6.5.2 6.14.1 qs: qs: Denial of Service via improper input validation in array parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15284

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-12-29 23:15 修改: 2026-06-17 08:37

qs CVE-2025-15284 中危 6.5.2 6.14.1 qs: qs: Denial of Service via improper input validation in array parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15284

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-12-29 23:15 修改: 2026-06-17 08:37

qs CVE-2025-15284 中危 6.5.2 6.14.1 qs: qs: Denial of Service via improper input validation in array parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-15284

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-12-29 23:15 修改: 2026-06-17 08:37

react-devtools-core CVE-2023-5654 中危 4.26.1 4.28.4 React Developer Tools extension Improper Authorization vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5654

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-10-19 15:15 修改: 2026-06-17 06:49

request CVE-2023-28155 中危 2.88.2 request: bypass of SSRF mitigations when following a cross-protocol redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-03-16 15:15 修改: 2026-06-17 05:46

request CVE-2023-28155 中危 2.88.2 request: bypass of SSRF mitigations when following a cross-protocol redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-03-16 15:15 修改: 2026-06-17 05:46

request CVE-2023-28155 中危 2.88.2 request: bypass of SSRF mitigations when following a cross-protocol redirect

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-03-16 15:15 修改: 2026-06-17 05:46

markdown-it CVE-2026-2327 中危 13.0.2 14.1.1 markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2327

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 06:16 修改: 2026-06-17 10:30

markdown-it CVE-2026-2327 中危 13.0.2 14.1.1 markdown-it: markdown-it: Denial of Service via Regular Expression Denial of Service in linkify function

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2327

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 06:16 修改: 2026-06-17 10:30

markdown-it CVE-2026-48988 中危 13.0.2 14.2.0 markdown-it is a Markdown parser. Versions 14.1.1 and below contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48988

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 21:16 修改: 2026-06-24 19:06

markdown-it CVE-2026-48988 中危 13.0.2 14.2.0 markdown-it is a Markdown parser. Versions 14.1.1 and below contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48988

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 21:16 修改: 2026-06-24 19:06

markdown-it CVE-2026-48988 中危 13.0.2 14.2.0 markdown-it is a Markdown parser. Versions 14.1.1 and below contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48988

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 21:16 修改: 2026-06-24 19:06

markdown-it CVE-2026-48988 中危 13.0.2 14.2.0 markdown-it is a Markdown parser. Versions 14.1.1 and below contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48988

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 21:16 修改: 2026-06-24 19:06

markdown-it CVE-2026-48988 中危 13.0.2 14.2.0 markdown-it is a Markdown parser. Versions 14.1.1 and below contain a ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48988

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-17 21:16 修改: 2026-06-24 19:06

mermaid CVE-2026-41148 中危 11.10.1 11.15.0, 10.9.6 mermaid: Mermaid: CSS injection vulnerability allows page defacement and information disclosure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41148

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-22 23:16 修改: 2026-06-17 10:46

mermaid CVE-2026-41149 中危 11.10.1 11.15.0, 10.9.6 mermaid: Mermaid: HTML injection via classDef directive in state diagrams

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41149

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-22 23:16 修改: 2026-06-17 10:46

mermaid CVE-2026-41150 中危 11.10.1 11.15.0, 10.9.6 mermaid: Mermaid: Denial of Service via specially crafted gantt charts

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41150

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-29 15:16 修改: 2026-06-17 10:46

mermaid CVE-2026-41159 中危 11.10.1 11.15.0, 10.9.6 mermaid: Mermaid: Information disclosure and page defacement via CSS injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41159

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-29 15:16 修改: 2026-07-01 20:17

micromatch CVE-2024-4067 中危 3.1.10 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 3.1.10 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 3.1.10 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 3.1.10 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 3.1.10 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 3.1.10 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.4 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.5 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.5 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

micromatch CVE-2024-4067 中危 4.0.5 4.0.8 micromatch: vulnerable to Regular Expression Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4067

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-05-14 15:42 修改: 2026-06-17 08:01

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

follow-redirects CVE-2022-0536 中危 1.14.5 1.14.8 follow-redirects: Exposure of Sensitive Information via Authorization Header leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0536

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2022-02-09 11:15 修改: 2026-06-17 04:20

follow-redirects CVE-2023-26159 中危 1.14.5 1.15.4 follow-redirects: Improper Input Validation due to the improper handling of URLs by the url.parse()

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26159

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-01-02 05:15 修改: 2026-06-17 05:42

follow-redirects CVE-2024-28849 中危 1.14.5 1.15.6 follow-redirects: Possible credential leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28849

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-03-14 17:15 修改: 2026-06-17 07:21

follow-redirects GHSA-r4q5-vmmm-2653 中危 1.14.5 1.16.0 follow-redirects leaks Custom Authentication Headers to Cross-Domain Redirect Targets

漏洞详情: https://github.com/advisories/GHSA-r4q5-vmmm-2653

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-14 01:11 修改: 2026-04-14 01:11

follow-redirects GHSA-r4q5-vmmm-2653 中危 1.15.11 1.16.0 follow-redirects leaks Custom Authentication Headers to Cross-Domain Redirect Targets

漏洞详情: https://github.com/advisories/GHSA-r4q5-vmmm-2653

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-14 01:11 修改: 2026-04-14 01:11

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 2.0.1 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-33750 中危 5.0.4 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

brace-expansion CVE-2026-45149 中危 5.0.4 5.0.6 brace-expansion: brace-expansion: Denial of Service due to excessive memory allocation when expanding large numeric ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45149

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 2026-05-29 20:16 修改: 2026-06-17 10:51

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

serialize-javascript CVE-2024-11831 中危 6.0.0 6.0.2 npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11831

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-02-10 16:15 修改: 2026-07-01 15:16

serialize-javascript CVE-2026-34043 中危 6.0.0 7.0.5 serialize-javascript: serialize-javascript: Denial of Service via specially crafted array-like object serialization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34043

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 03:15 修改: 2026-06-17 10:38

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

serialize-javascript CVE-2024-11831 中危 6.0.1 6.0.2 npm-serialize-javascript: Cross-site Scripting (XSS) in serialize-javascript

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-11831

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-02-10 16:15 修改: 2026-07-01 15:16

serialize-javascript CVE-2026-34043 中危 6.0.1 7.0.5 serialize-javascript: serialize-javascript: Denial of Service via specially crafted array-like object serialization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34043

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-31 03:15 修改: 2026-06-17 10:38

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/runtime CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/runtime CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/runtime CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@sigstore/core CVE-2026-48758 中危 3.2.0 3.2.1 @sigstore/core has DSSE payloadType type-binding failure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48758

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

@sigstore/verify CVE-2026-48816 中危 3.1.0 3.1.1 sigstore-js has Insufficient Verification of Data Authenticity

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48816

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

@babel/runtime CVE-2025-27789 中危 7.23.2 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

handlebars CVE-2026-33916 中危 4.7.7 4.7.9 handlebars.js: Handlebars: Cross-Site Scripting (XSS) via prototype pollution in partial resolution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33916

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-06-17 10:38

handlebars CVE-2026-33916 中危 4.7.7 4.7.9 handlebars.js: Handlebars: Cross-Site Scripting (XSS) via prototype pollution in partial resolution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33916

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-06-17 10:38

handlebars GHSA-7rx3-28cr-v5wh 中危 4.7.7 4.7.9 Handlebars.js has a Prototype Method Access Control Gap via Missing __lookupSetter__ Blocklist Entry

漏洞详情: https://github.com/advisories/GHSA-7rx3-28cr-v5wh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:17 修改: 2026-03-29 15:17

handlebars GHSA-7rx3-28cr-v5wh 中危 4.7.7 4.7.9 Handlebars.js has a Prototype Method Access Control Gap via Missing __lookupSetter__ Blocklist Entry

漏洞详情: https://github.com/advisories/GHSA-7rx3-28cr-v5wh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:17 修改: 2026-03-29 15:17

ajv CVE-2025-69873 中危 6.12.6 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

ajv CVE-2025-69873 中危 8.12.0 8.18.0, 6.14.0 ajv: ReDoS via $data reference

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-69873

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-11 19:15 修改: 2026-06-30 05:17

@babel/helpers CVE-2025-27789 中危 7.22.5 7.26.10, 8.0.0-alpha.17 Babel has inefficient RegExp complexity in generated code with .replace when transpiling named capturing groups

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-27789

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-03-11 20:15 修改: 2026-06-17 09:04

bn.js CVE-2026-2739 中危 4.12.0 4.12.3, 5.2.3 bn.js: bn.js: Denial of Service via calling maskn(0)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2739

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 05:17 修改: 2026-06-17 10:31

bn.js CVE-2026-2739 中危 4.12.0 4.12.3, 5.2.3 bn.js: bn.js: Denial of Service via calling maskn(0)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2739

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 05:17 修改: 2026-06-17 10:31

bn.js CVE-2026-2739 中危 5.2.0 4.12.3, 5.2.3 bn.js: bn.js: Denial of Service via calling maskn(0)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2739

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 05:17 修改: 2026-06-17 10:31

bn.js CVE-2026-2739 中危 5.2.0 4.12.3, 5.2.3 bn.js: bn.js: Denial of Service via calling maskn(0)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2739

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 05:17 修改: 2026-06-17 10:31

tar CVE-2024-28863 中危 6.1.11 6.2.1 node-tar: denial of service while parsing a tar file due to lack of folders depth validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-03-21 23:15 修改: 2026-06-17 07:21

tar CVE-2024-28863 中危 6.1.11 6.2.1 node-tar: denial of service while parsing a tar file due to lack of folders depth validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-03-21 23:15 修改: 2026-06-17 07:21

tar CVE-2024-28863 中危 6.1.11 6.2.1 node-tar: denial of service while parsing a tar file due to lack of folders depth validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-03-21 23:15 修改: 2026-06-17 07:21

tar CVE-2024-28863 中危 6.1.11 6.2.1 node-tar: denial of service while parsing a tar file due to lack of folders depth validation

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-03-21 23:15 修改: 2026-06-17 07:21

tar CVE-2026-53655 中危 6.1.11 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 6.1.11 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 6.1.11 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 6.1.11 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

bn.js CVE-2026-2739 中危 5.2.0 4.12.3, 5.2.3 bn.js: bn.js: Denial of Service via calling maskn(0)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2739

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 05:17 修改: 2026-06-17 10:31

dompurify CVE-2026-0540 中危 3.3.0 3.3.2, 2.5.9 DOMPurify: DOMPurify: Cross-site scripting vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0540

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 18:16 修改: 2026-06-17 10:10

dompurify CVE-2026-41238 中危 3.3.0 3.4.0 DOMPurify: DOMPurify: Cross-Site Scripting bypass via prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41238

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-23 16:16 修改: 2026-06-17 10:46

dompurify CVE-2026-41239 中危 3.3.0 3.4.0 DOMPurify: Vue 2: DOMPurify: Cross-site scripting due to incomplete sanitization of template expressions

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41239

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-23 16:16 修改: 2026-06-17 10:46

dompurify CVE-2026-41240 中危 3.3.0 3.4.0 DOMPurify: DOMPurify: Cross-Site Scripting (XSS) via inconsistent tag sanitization

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41240

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-23 16:16 修改: 2026-06-17 10:46

dompurify CVE-2026-49458 中危 3.3.0 3.4.6 DOMPurify: Cross-realm IN_PLACE sanitization leaves executable markup intact via realm-bound `instanceof` checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49458

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

dompurify CVE-2026-49459 中危 3.3.0 3.4.6 DOMPurify: IN_PLACE mode preserves attributes of a clobbered root element, allowing XSS via attacker-controlled root DOM

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49459

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

dompurify CVE-2026-49978 中危 3.3.0 3.4.7 DOMPurify IN_PLACE Sanitization Bypass via Attached Shadow Root Inside <template>.content

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49978

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

handlebars CVE-2026-33916 中危 4.7.8 4.7.9 handlebars.js: Handlebars: Cross-Site Scripting (XSS) via prototype pollution in partial resolution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33916

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-06-17 10:38

handlebars CVE-2026-33916 中危 4.7.8 4.7.9 handlebars.js: Handlebars: Cross-Site Scripting (XSS) via prototype pollution in partial resolution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33916

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-06-17 10:38

handlebars CVE-2026-33916 中危 4.7.8 4.7.9 handlebars.js: Handlebars: Cross-Site Scripting (XSS) via prototype pollution in partial resolution

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33916

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 21:17 修改: 2026-06-17 10:38

handlebars GHSA-7rx3-28cr-v5wh 中危 4.7.8 4.7.9 Handlebars.js has a Prototype Method Access Control Gap via Missing __lookupSetter__ Blocklist Entry

漏洞详情: https://github.com/advisories/GHSA-7rx3-28cr-v5wh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:17 修改: 2026-03-29 15:17

handlebars GHSA-7rx3-28cr-v5wh 中危 4.7.8 4.7.9 Handlebars.js has a Prototype Method Access Control Gap via Missing __lookupSetter__ Blocklist Entry

漏洞详情: https://github.com/advisories/GHSA-7rx3-28cr-v5wh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:17 修改: 2026-03-29 15:17

handlebars GHSA-7rx3-28cr-v5wh 中危 4.7.8 4.7.9 Handlebars.js has a Prototype Method Access Control Gap via Missing __lookupSetter__ Blocklist Entry

漏洞详情: https://github.com/advisories/GHSA-7rx3-28cr-v5wh

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:17 修改: 2026-03-29 15:17

dompurify GHSA-39q2-94rc-95cp 中危 3.3.0 3.4.0 DOMPurify's ADD_TAGS function form bypasses FORBID_TAGS due to short-circuit evaluation

漏洞详情: https://github.com/advisories/GHSA-39q2-94rc-95cp

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-16 00:46 修改: 2026-04-16 00:46

dompurify GHSA-76mc-f452-cxcm 中危 3.3.0 3.4.7 DOMPurify: Hook mutation of `data.allowedTags` / `data.allowedAttributes` permanently pollutes `DEFAULT_ALLOWED_TAGS` / `DEFAULT_ALLOWED_ATTR`

漏洞详情: https://github.com/advisories/GHSA-76mc-f452-cxcm

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 19:59 修改: 2026-06-15 19:59

dompurify GHSA-cj63-jhhr-wcxv 中危 3.3.0 3.3.2 DOMPurify USE_PROFILES prototype pollution allows event handlers

漏洞详情: https://github.com/advisories/GHSA-cj63-jhhr-wcxv

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-03 03:45 修改: 2026-05-29 21:46

dompurify GHSA-cjmm-f4jc-qw8r 中危 3.3.0 3.3.2 DOMPurify ADD_ATTR predicate skips URI validation

漏洞详情: https://github.com/advisories/GHSA-cjmm-f4jc-qw8r

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-03 03:46 修改: 2026-05-29 21:47

http-proxy-middleware CVE-2026-55602 中危 2.0.9 3.0.6, 4.1.0, 2.0.10 http-proxy-middleware: http-proxy-middleware: Unintended backend routing due to crafted Host header

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-55602

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:06

dompurify GHSA-cmwh-pvxp-8882 中危 3.3.0 3.4.11 DOMPurify: Permanent `ALLOWED_ATTR` pollution via `setConfig()` bypassing the hook clone-guard (incomplete fix of the 3.4.7 hook-pollution patch)

漏洞详情: https://github.com/advisories/GHSA-cmwh-pvxp-8882

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-18 14:27 修改: 2026-06-18 14:27

dompurify GHSA-h8r8-wccr-v5f2 中危 3.3.0 3.3.2 DOMPurify is vulnerable to mutation-XSS via Re-Contextualization

漏洞详情: https://github.com/advisories/GHSA-h8r8-wccr-v5f2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 20:41 修改: 2026-03-27 20:41

bn.js CVE-2026-2739 中危 5.2.0 4.12.3, 5.2.3 bn.js: bn.js: Denial of Service via calling maskn(0)

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2739

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-20 05:17 修改: 2026-06-17 10:31

brace-expansion CVE-2026-33750 中危 1.1.11 5.0.5, 3.0.2, 2.0.3, 1.1.13 brace-expansion: brace-expansion: Denial of Service via zero step value in brace pattern

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33750

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-27 15:16 修改: 2026-06-17 10:38

ip-address CVE-2026-42338 中危 10.1.0 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 2026-05-12 20:16 修改: 2026-07-02 12:17

ip-address CVE-2026-42338 中危 9.0.5 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 20:16 修改: 2026-07-02 12:17

ip-address CVE-2026-42338 中危 9.0.5 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 20:16 修改: 2026-07-02 12:17

ip-address CVE-2026-42338 中危 9.0.5 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 20:16 修改: 2026-07-02 12:17

ip-address CVE-2026-42338 中危 9.0.5 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 20:16 修改: 2026-07-02 12:17

ip-address CVE-2026-42338 中危 9.0.5 10.1.1 ip-address: ip-address: Cross-site scripting via improper HTML escaping of untrusted input

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42338

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 20:16 修改: 2026-07-02 12:17

joi CVE-2026-48038 中危 17.13.3 18.2.1, 17.13.4 joi has an uncaught RangeError on deeply nested input through recursive `link()` schemas

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48038

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 3.14.1 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 3.14.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.4.3 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tar CVE-2026-53655 中危 7.5.11 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:b84bf7f67c051c3e9b9de8876558d661f554bea02118712c7840c834b8ed712b

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

tar CVE-2026-53655 中危 7.5.9 7.5.16 node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar (nod ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53655

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-26 20:03

tough-cookie CVE-2023-26136 中危 2.5.0 4.1.3 tough-cookie: prototype pollution in cookie memstore

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-07-01 05:15 修改: 2026-06-17 05:42

tough-cookie CVE-2023-26136 中危 2.5.0 4.1.3 tough-cookie: prototype pollution in cookie memstore

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-07-01 05:15 修改: 2026-06-17 05:42

tough-cookie CVE-2023-26136 中危 2.5.0 4.1.3 tough-cookie: prototype pollution in cookie memstore

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-07-01 05:15 修改: 2026-06-17 05:42

tough-cookie CVE-2023-26136 中危 4.0.0 4.1.3 tough-cookie: prototype pollution in cookie memstore

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-07-01 05:15 修改: 2026-06-17 05:42

tough-cookie CVE-2023-26136 中危 4.0.0 4.1.3 tough-cookie: prototype pollution in cookie memstore

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-07-01 05:15 修改: 2026-06-17 05:42

tough-cookie CVE-2023-26136 中危 4.1.2 4.1.3 tough-cookie: prototype pollution in cookie memstore

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-07-01 05:15 修改: 2026-06-17 05:42

uuid CVE-2026-41907 中危 11.1.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 11.1.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 11.1.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 13.0.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 13.0.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 3.4.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 3.4.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 3.4.0 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 8.3.2 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 8.3.2 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 8.3.2 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 8.3.2 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 8.3.2 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

uuid CVE-2026-41907 中危 9.0.1 11.1.1, 12.0.1, 13.0.1 uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41907

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-04-24 19:17 修改: 2026-06-17 10:47

webpack-dev-server CVE-2026-6402 中危 5.2.3 5.2.4 webpack-dev-server: webpack-dev-server: Information disclosure due to cross-origin source code exposure

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-6402

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-12 09:16 修改: 2026-06-17 11:00

webpack-dev-server CVE-2026-9595 中危 5.2.3 5.2.5 webpack-dev-server: webpack-dev-server: Information disclosure and denial of service via improper proxy configuration

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-9595

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 16:16 修改: 2026-06-17 11:05

word-wrap CVE-2023-26115 中危 1.2.3 1.2.4 word-wrap: ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26115

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-22 05:15 修改: 2026-06-17 05:42

word-wrap CVE-2023-26115 中危 1.2.3 1.2.4 word-wrap: ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26115

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-22 05:15 修改: 2026-06-17 05:42

word-wrap CVE-2023-26115 中危 1.2.3 1.2.4 word-wrap: ReDoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26115

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-06-22 05:15 修改: 2026-06-17 05:42

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2025-64718 中危 4.1.0 4.1.1, 3.14.2 js-yaml: js-yaml prototype pollution in merge

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-64718

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-11-13 16:15 修改: 2026-06-17 09:55

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.0 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:852b160c0f1f1dd40c4c8a73d5b3867c48bd0b35279b24d98333f47213281d0b

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

js-yaml CVE-2026-53550 中危 4.1.1 4.2.0, 3.15.0 js-yaml: js-yaml: Denial of Service via crafted YAML merge keys

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-53550

镜像层: sha256:8966393200a6c1fd26a54edfe20f8f4dc81be0ba377a4d3d1493ac6688bfdc5f

发布日期: 2026-06-22 16:16 修改: 2026-06-29 16:16

ws CVE-2026-45736 中危 8.11.0 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-15 15:16 修改: 2026-07-02 12:17

nanoid CVE-2024-55565 中危 3.3.7 5.0.9, 3.3.8 nanoid: nanoid mishandles non-integer values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-55565

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-12-09 02:15 修改: 2026-06-17 08:11

nanoid CVE-2024-55565 中危 3.3.7 5.0.9, 3.3.8 nanoid: nanoid mishandles non-integer values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-55565

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-12-09 02:15 修改: 2026-06-17 08:11

fast-xml-parser CVE-2023-26920 中危 3.21.1 4.1.2 fast-xml-parser vulnerable to Prototype Pollution through tag or attribute name

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26920

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-12-12 17:15 修改: 2026-06-17 05:43

ws CVE-2026-45736 中危 8.18.0 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-15 15:16 修改: 2026-07-02 12:17

ws CVE-2026-45736 中危 8.18.0 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-15 15:16 修改: 2026-07-02 12:17

ws CVE-2026-45736 中危 8.18.0 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-15 15:16 修改: 2026-07-02 12:17

fast-xml-parser CVE-2026-41650 中危 3.21.1 5.7.0 fast-xml-parser: fast-xml-parser: XML injection via improper escaping of comment and CDATA sequences

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41650

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-05-07 15:16 修改: 2026-06-17 10:46

ws CVE-2026-45736 中危 8.20.0 8.20.1 ws: ws: Uninitialized memory disclosure via `websocket.close()` with `TypedArray`

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45736

镜像层: sha256:852b160c0f1f1dd40c4c8a73d5b3867c48bd0b35279b24d98333f47213281d0b

发布日期: 2026-05-15 15:16 修改: 2026-07-02 12:17

xml2js CVE-2023-0842 中危 0.4.23 0.5.0 node-xml2js: xml2js is vulnerable to prototype pollution

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0842

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2023-04-05 20:15 修改: 2026-06-17 05:26

yaml CVE-2026-33532 中危 1.10.2 2.8.3, 1.10.3 yaml: yaml: Denial of Service via deeply nested YAML document parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33532

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 20:16 修改: 2026-06-17 10:37

yargs-parser CVE-2020-7608 中危 7.0.0 13.1.2, 15.0.1, 18.1.1, 5.0.1 nodejs-yargs-parser: prototype pollution vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7608

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2020-03-16 20:15 修改: 2026-06-17 03:25

qs CVE-2026-2391 低危 6.14.1 6.14.2 qs: qs's arrayLimit bypass in comma parsing allows denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2391

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 05:17 修改: 2026-06-17 10:30

elliptic CVE-2024-48948 低危 6.5.4 6.6.0 elliptic: ECDSA signature verification error may reject legitimate transactions

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-48948

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-10-15 14:15 修改: 2026-06-17 07:59

elliptic CVE-2024-48949 低危 6.5.4 6.5.6 elliptic: Missing Validation in Elliptic's EDDSA Signature Verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-48949

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-10-10 01:15 修改: 2026-06-17 07:59

elliptic CVE-2024-48949 低危 6.5.4 6.5.6 elliptic: Missing Validation in Elliptic's EDDSA Signature Verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-48949

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-10-10 01:15 修改: 2026-06-17 07:59

elliptic CVE-2025-14505 低危 6.5.4 elliptic: Key handling flaws in Elliptic

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14505

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-08 21:15 修改: 2026-06-17 08:36

elliptic CVE-2025-14505 低危 6.5.4 elliptic: Key handling flaws in Elliptic

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14505

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-08 21:15 修改: 2026-06-17 08:36

es5-ext CVE-2024-27088 低危 0.10.53 0.10.63 es5-ext contains ECMAScript 5 extensions. Passing functions with very ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27088

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-02-26 17:15 修改: 2026-06-17 07:19

es5-ext CVE-2024-27088 低危 0.10.53 0.10.63 es5-ext contains ECMAScript 5 extensions. Passing functions with very ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27088

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-02-26 17:15 修改: 2026-06-17 07:19

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

handlebars GHSA-442j-39wm-28r2 低危 4.7.7 4.7.9 Handlebars.js has a Property Access Validation Bypass in container.lookup

漏洞详情: https://github.com/advisories/GHSA-442j-39wm-28r2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:16 修改: 2026-03-29 15:16

handlebars GHSA-442j-39wm-28r2 低危 4.7.7 4.7.9 Handlebars.js has a Property Access Validation Bypass in container.lookup

漏洞详情: https://github.com/advisories/GHSA-442j-39wm-28r2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:16 修改: 2026-03-29 15:16

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

fast-xml-parser CVE-2026-27942 低危 4.1.2 5.3.8, 4.5.4 fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27942

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

fast-xml-parser CVE-2026-27942 低危 4.1.2 5.3.8, 4.5.4 fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27942

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

nodemailer GHSA-c7w3-x93f-qmm8 低危 6.10.1 8.0.4 Nodemailer has SMTP command injection due to unsanitized `envelope.size` parameter

漏洞详情: https://github.com/advisories/GHSA-c7w3-x93f-qmm8

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-26 22:26 修改: 2026-03-26 22:26

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 1.1.11 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

fast-xml-parser CVE-2026-27942 低危 5.2.5 5.3.8, 4.5.4 fast-xml-parser: fast-xml-parser: Stack overflow leads to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-27942

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-26 02:16 修改: 2026-06-17 10:27

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@tootallnate/once CVE-2026-3449 低危 1.1.2 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

@tootallnate/once CVE-2026-3449 低危 1.1.2 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

@tootallnate/once CVE-2026-3449 低危 1.1.2 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

@tootallnate/once CVE-2026-3449 低危 1.1.2 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

handlebars GHSA-442j-39wm-28r2 低危 4.7.8 4.7.9 Handlebars.js has a Property Access Validation Bypass in container.lookup

漏洞详情: https://github.com/advisories/GHSA-442j-39wm-28r2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:16 修改: 2026-03-29 15:16

handlebars GHSA-442j-39wm-28r2 低危 4.7.8 4.7.9 Handlebars.js has a Property Access Validation Bypass in container.lookup

漏洞详情: https://github.com/advisories/GHSA-442j-39wm-28r2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:16 修改: 2026-03-29 15:16

handlebars GHSA-442j-39wm-28r2 低危 4.7.8 4.7.9 Handlebars.js has a Property Access Validation Bypass in container.lookup

漏洞详情: https://github.com/advisories/GHSA-442j-39wm-28r2

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-29 15:16 修改: 2026-03-29 15:16

diff CVE-2026-24001 低危 4.0.2 8.0.3, 5.2.2, 4.0.4, 3.5.1 jsdiff: denial of service vulnerability in parsePatch and applyPatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24001

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-22 03:15 修改: 2026-06-30 03:17

diff CVE-2026-24001 低危 4.0.2 8.0.3, 5.2.2, 4.0.4, 3.5.1 jsdiff: denial of service vulnerability in parsePatch and applyPatch

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-24001

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-01-22 03:15 修改: 2026-06-30 03:17

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

brace-expansion CVE-2025-5889 低危 2.0.1 2.0.2, 1.1.12, 3.0.1, 4.0.1 brace-expansion: juliangruber brace-expansion index.js expand redos

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5889

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

@tootallnate/once CVE-2026-3449 低危 1.1.2 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

@tootallnate/once CVE-2026-3449 低危 2.0.0 3.0.1, 2.0.1 @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3449

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-03-03 05:17 修改: 2026-06-17 10:43

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

ip CVE-2023-42282 低危 1.1.5 2.0.1, 1.1.9 nodejs-ip: arbitrary code execution via the isPublic() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-02-08 17:15 修改: 2026-06-17 06:23

ip CVE-2023-42282 低危 1.1.5 2.0.1, 1.1.9 nodejs-ip: arbitrary code execution via the isPublic() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-02-08 17:15 修改: 2026-06-17 06:23

ip CVE-2023-42282 低危 1.1.5 2.0.1, 1.1.9 nodejs-ip: arbitrary code execution via the isPublic() function

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-02-08 17:15 修改: 2026-06-17 06:23

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.29.0 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

dompurify GHSA-gvmj-g25r-r7wr 低危 3.3.0 3.4.8 DOMPurify: SAFE_FOR_TEMPLATES bypass - template expressions survive sanitization inside <template> content when using DOM output modes

漏洞详情: https://github.com/advisories/GHSA-gvmj-g25r-r7wr

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 20:02 修改: 2026-06-15 20:02

dompurify GHSA-vxr8-fq34-vvx9 低危 3.3.0 3.4.9 DOMPurify: Trusted Types policy survives `clearConfig()` and can poison later `RETURN_TRUSTED_TYPE` output

漏洞详情: https://github.com/advisories/GHSA-vxr8-fq34-vvx9

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 20:12 修改: 2026-06-15 20:12

dompurify GHSA-x4vx-rjvf-j5p4 低危 3.3.0 DOMPurify: `IN_PLACE` mode trusts attacker-controlled `nodeName` on live non-form nodes, allowing script retention and XSS via attacker-supplied DOM objects

漏洞详情: https://github.com/advisories/GHSA-x4vx-rjvf-j5p4

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-15 20:00 修改: 2026-06-15 20:00

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

@babel/core CVE-2026-49356 低危 7.22.5 8.0.0-rc.6, 7.29.6 @babel/core: @babel/core: Arbitrary file read via sourceMappingURL comment

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-49356

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-06-22 18:16 修改: 2026-06-26 20:04

formidable CVE-2025-46653 低危 2.1.2 3.5.3, 2.1.3 formidable: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Formidable

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-46653

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2025-04-26 21:15 修改: 2026-06-17 09:26

elliptic CVE-2024-42459 低危 6.5.4 6.5.7 elliptic: nodejs/elliptic: EDDSA signature malleability due to missing signature length check

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42459

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-08-02 07:16 修改: 2026-06-17 07:49

elliptic CVE-2024-42459 低危 6.5.4 6.5.7 elliptic: nodejs/elliptic: EDDSA signature malleability due to missing signature length check

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42459

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-08-02 07:16 修改: 2026-06-17 07:49

pm2 CVE-2025-5891 低危 5.4.3 7.0.0 pm2 Regular Expression Denial of Service vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-5891

镜像层: sha256:8966393200a6c1fd26a54edfe20f8f4dc81be0ba377a4d3d1493ac6688bfdc5f

发布日期: 2025-06-09 19:15 修改: 2026-06-17 09:48

elliptic CVE-2024-42460 低危 6.5.4 6.5.7 elliptic: nodejs/elliptic: ECDSA signature malleability due to missing checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42460

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-08-02 07:16 修改: 2026-06-17 07:49

elliptic CVE-2024-42460 低危 6.5.4 6.5.7 elliptic: nodejs/elliptic: ECDSA signature malleability due to missing checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42460

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-08-02 07:16 修改: 2026-06-17 07:49

elliptic CVE-2024-42461 低危 6.5.4 6.5.7 elliptic: nodejs/elliptic: ECDSA implementation malleability due to BER-enconded signatures being allowed

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42461

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-08-02 07:16 修改: 2026-06-17 07:49

elliptic CVE-2024-42461 低危 6.5.4 6.5.7 elliptic: nodejs/elliptic: ECDSA implementation malleability due to BER-enconded signatures being allowed

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-42461

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-08-02 07:16 修改: 2026-06-17 07:49

qs CVE-2026-2391 低危 6.11.2 6.14.2 qs: qs's arrayLimit bypass in comma parsing allows denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2391

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2026-02-12 05:17 修改: 2026-06-17 10:30

elliptic CVE-2024-48948 低危 6.5.4 6.6.0 elliptic: ECDSA signature verification error may reject legitimate transactions

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-48948

镜像层: sha256:7b146dcd3a81b2eeb30df1024ffaa1bd3ab60f81bbfb9dfeb34843c6f5ae0803

发布日期: 2024-10-15 14:15 修改: 2026-06-17 07:59

/home/joplin/packages/lib/services/e2ee/ppk/ppkTestUtils.js ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/joplin/packages/lib/services/e2ee/ppk/ppkTestUtils.ts ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/joplin/packages/server/stripeConfig.json ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×