docker.io/mtphotos/mt-photos:latest linux/arm64

docker.io/mtphotos/mt-photos:latest - Trivy安全扫描结果扫描时间: 2024-11-16 10:16 温馨提示: 这是一个 linux/arm64 系统架构镜像

全部漏洞信息

低危漏洞:283

中危漏洞:121

高危漏洞:108

严重漏洞:14

系统OS: debian 10.13 扫描引擎: Trivy 扫描时间: 2024-11-16 10:16

docker.io/mtphotos/mt-photos:latest (debian 10.13) (debian)

低危漏洞:280

中危漏洞:102

高危漏洞:85

严重漏洞:10

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
krb5-locales	CVE-2024-37371	严重	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libdb5.3	CVE-2019-8457	严重	5.3.28+dfsg1-0.5		sqlite: heap out-of-bound read in function rtreenode() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-8457 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-05-30 16:29 修改: 2023-11-07 03:13
libexpat1	CVE-2024-45491	严重	2.2.6-2+deb10u7		libexpat: Integer Overflow or Wraparound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat1	CVE-2024-45492	严重	2.2.6-2+deb10u7		libexpat: integer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libgssapi-krb5-2	CVE-2024-37371	严重	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libk5crypto3	CVE-2024-37371	严重	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5-3	CVE-2024-37371	严重	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
libkrb5support0	CVE-2024-37371	严重	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37371 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 23:15 修改: 2024-09-18 12:39
wget	CVE-2024-38428	严重	1.20.1-1.1		wget: Misinterpretation of input may lead to improper behavior 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-38428 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-16 03:15 修改: 2024-10-28 21:35
zlib1g	CVE-2023-45853	严重	1:1.2.11.dfsg-1+deb10u2		zlib: integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_6 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45853 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-10-14 02:15 修改: 2024-08-01 13:44
gcc-8-base	CVE-2018-12886	高危	8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
gcc-8-base	CVE-2019-15847	高危	8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
e2fsprogs	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
krb5-locales	CVE-2024-37370	高危	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libatomic1	CVE-2018-12886	高危	8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libatomic1	CVE-2019-15847	高危	8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
libc-bin	CVE-2020-1751	高危	2.28-10+deb10u3		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
libc-bin	CVE-2024-33599	高危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc-l10n	CVE-2020-1751	高危	2.28-10+deb10u3		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
libc-l10n	CVE-2024-33599	高危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2020-1751	高危	2.28-10+deb10u3		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
libc6	CVE-2024-33599	高危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libcom-err2	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libcurl3-gnutls	CVE-2024-2398	高危	7.64.0-4+deb10u9		curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libcurl3-gnutls	CVE-2024-6197	高危	7.64.0-4+deb10u9		curl: freeing stack buffer in utf8asn1str 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6197 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-07-24 08:15 修改: 2024-08-26 15:25
libcurl4	CVE-2024-2398	高危	7.64.0-4+deb10u9		curl: HTTP/2 push headers memory-leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libcurl4	CVE-2024-6197	高危	7.64.0-4+deb10u9		curl: freeing stack buffer in utf8asn1str 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6197 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-07-24 08:15 修改: 2024-08-26 15:25
exim4-base	CVE-2021-38371	高危	4.92-8+deb10u9		The STARTTLS feature in Exim through 4.94.2 allows response injection ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38371 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-08-10 15:15 修改: 2021-08-20 17:32
exim4-base	CVE-2022-3559	高危	4.92-8+deb10u9		A vulnerability was found in Exim and classified as problematic. This ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3559 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-10-17 18:15 修改: 2023-11-07 03:51
exim4-base	CVE-2023-42117	高危	4.92-8+deb10u9		Exim: Improper Neutralization of Special Elements Remote Code Execution Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42117 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-03 03:15 修改: 2024-05-03 12:49
libexpat1	CVE-2024-45490	高危	2.2.6-2+deb10u7		libexpat: Negative Length Parsing Vulnerability in libexpat 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
libext2fs2	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libgcc1	CVE-2018-12886	高危	1:8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libgcc1	CVE-2019-15847	高危	1:8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
libgcrypt20	CVE-2021-33560	高危	1.8.4-5+deb10u1		libgcrypt: mishandles ElGamal encryption because it lacks exponent blinding to address a side-channel attack against mpi_powm 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-33560 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-06-08 11:15 修改: 2023-11-07 03:35
exim4-config	CVE-2021-38371	高危	4.92-8+deb10u9		The STARTTLS feature in Exim through 4.94.2 allows response injection ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38371 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-08-10 15:15 修改: 2021-08-20 17:32
libgssapi-krb5-2	CVE-2024-37370	高危	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libhiredis0.14	CVE-2020-7105	高危	0.14.0-3		async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a N ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-7105 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-01-16 04:15 修改: 2023-11-07 03:25
libidn2-0	CVE-2019-12290	高危	2.0.5-1+deb10u1		GNU libidn2 before 2.2.0 fails to perform the roundtrip checks specifi ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-12290 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-10-22 16:15 修改: 2023-11-07 03:03
exim4-config	CVE-2022-3559	高危	4.92-8+deb10u9		A vulnerability was found in Exim and classified as problematic. This ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3559 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-10-17 18:15 修改: 2023-11-07 03:51
libk5crypto3	CVE-2024-37370	高危	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
exim4-config	CVE-2023-42117	高危	4.92-8+deb10u9		Exim: Improper Neutralization of Special Elements Remote Code Execution Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42117 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-03 03:15 修改: 2024-05-03 12:49
libkrb5-3	CVE-2024-37370	高危	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
exim4-daemon-light	CVE-2021-38371	高危	4.92-8+deb10u9		The STARTTLS feature in Exim through 4.94.2 allows response injection ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-38371 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-08-10 15:15 修改: 2021-08-20 17:32
libkrb5support0	CVE-2024-37370	高危	1.17-3+deb10u6		krb5: GSS message token handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37370 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-28 22:15 修改: 2024-08-27 17:48
libldap-2.4-2	CVE-2023-2953	高危	2.4.47+dfsg-3+deb10u7		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libldap-common	CVE-2023-2953	高危	2.4.47+dfsg-3+deb10u7		openldap: null pointer dereference in ber_memalloc_x function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-2953 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-05-30 22:15 修改: 2023-08-02 16:46
libpam-modules	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-modules-bin	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam-runtime	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libpam0g	CVE-2024-10963	高危	1.3.1-5		pam: Improper Hostname Interpretation in pam_access Leads to Access Control Bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10963 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-11-07 16:15 修改: 2024-11-11 18:15
libperl5.28	CVE-2020-16156	高危	5.28.1-6+deb10u1		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
libperl5.28	CVE-2023-31484	高危	5.28.1-6+deb10u1		perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
libpython2.7	CVE-2020-10735	高危	2.7.16-2+deb10u4		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython2.7	CVE-2024-6232	高危	2.7.16-2+deb10u4		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libpython2.7-minimal	CVE-2020-10735	高危	2.7.16-2+deb10u4		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython2.7-minimal	CVE-2024-6232	高危	2.7.16-2+deb10u4		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libpython2.7-stdlib	CVE-2020-10735	高危	2.7.16-2+deb10u4		python: int() type in PyLong_FromString() does not limit amount of digits converting text to int leading to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-10735 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-09-09 14:15 修改: 2023-06-30 23:15
libpython2.7-stdlib	CVE-2024-6232	高危	2.7.16-2+deb10u4		python: cpython: tarfile: ReDos via excessive backtracking while parsing header values 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
libsqlite3-0	CVE-2019-19603	高危	3.27.2-3+deb10u2		sqlite: mishandling of certain SELECT statements with non-existent VIEW can lead to DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19603 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2019-12-09 19:15 修改: 2023-11-07 03:07
libsqlite3-0	CVE-2023-7104	高危	3.27.2-3+deb10u2		sqlite: heap-buffer-overflow at sessionfuzz 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7104 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-12-29 10:15 修改: 2024-05-17 02:34
libss2	CVE-2022-1304	高危	1.44.5-1+deb10u3		e2fsprogs: out-of-bounds read/write via crafted filesystem 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1304 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-04-14 21:15 修改: 2023-11-07 03:41
libstdc++6	CVE-2018-12886	高危	8.3.0-6		gcc: spilling of stack protection address in cfgexpand.c and function.c leads to stack-overflow protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-12886 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-05-22 19:29 修改: 2020-08-24 17:37
libstdc++6	CVE-2019-15847	高危	8.3.0-6		gcc: POWER9 "DARN" RNG intrinsic produces repeated output 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-15847 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-09-02 23:15 修改: 2020-09-17 13:38
libsystemd0	CVE-2019-3843	高危	241-7~deb10u10		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2019-3844	高危	241-7~deb10u10		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libsystemd0	CVE-2023-50387	高危	241-7~deb10u10		bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libsystemd0	CVE-2023-50868	高危	241-7~deb10u10		bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libtiff-tools	CVE-2023-52355	高危	4.1.0+git191117-2~deb10u9		libtiff: TIFFRasterScanlineSize64 produce too-big size and could cause OOM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52355 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2024-01-25 20:15 修改: 2024-05-17 17:37
libtiff-tools	CVE-2024-7006	高危	4.1.0+git191117-2~deb10u9		libtiff: NULL pointer dereference in tif_dirinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7006 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2024-08-12 13:38 修改: 2024-11-06 10:15
libtiff5	CVE-2023-52355	高危	4.1.0+git191117-2~deb10u9		libtiff: TIFFRasterScanlineSize64 produce too-big size and could cause OOM 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52355 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2024-01-25 20:15 修改: 2024-05-17 17:37
libtiff5	CVE-2024-7006	高危	4.1.0+git191117-2~deb10u9		libtiff: NULL pointer dereference in tif_dirinfo.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7006 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2024-08-12 13:38 修改: 2024-11-06 10:15
libudev1	CVE-2019-3843	高危	241-7~deb10u10		systemd: services with DynamicUser can create SUID/SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3843 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2019-3844	高危	241-7~deb10u10		systemd: services with DynamicUser can get new privileges and create SGID binaries 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-3844 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-04-26 21:29 修改: 2023-11-07 03:10
libudev1	CVE-2023-50387	高危	241-7~deb10u10		bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50387 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libudev1	CVE-2023-50868	高危	241-7~deb10u10		bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50868 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-14 16:15 修改: 2024-06-10 17:16
libxml2	CVE-2017-16932	高危	2.9.4+dfsg1-7+deb10u6		libxml2: Infinite recursion in parameter entities 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16932 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2017-11-23 21:29 修改: 2023-11-07 02:40
libxml2	CVE-2022-2309	高危	2.9.4+dfsg1-7+deb10u6		lxml: NULL Pointer Dereference in lxml 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2309 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-07-05 10:15 修改: 2023-11-07 03:46
libxml2	CVE-2024-25062	高危	2.9.4+dfsg1-7+deb10u6		libxml2: use-after-free in XMLReader 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-25062 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-02-04 16:15 修改: 2024-02-13 00:40
locales	CVE-2020-1751	高危	2.28-10+deb10u3		glibc: array overflow in backtrace functions for powerpc 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-1751 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-04-17 19:15 修改: 2023-11-07 03:19
locales	CVE-2024-33599	高危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: stack-based buffer overflow in netgroup cache 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33599 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
perl	CVE-2020-16156	高危	5.28.1-6+deb10u1		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
perl	CVE-2023-31484	高危	5.28.1-6+deb10u1		perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl-base	CVE-2020-16156	高危	5.28.1-6+deb10u1		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
perl-base	CVE-2023-31484	高危	5.28.1-6+deb10u1		perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
perl-modules-5.28	CVE-2020-16156	高危	5.28.1-6+deb10u1		perl-CPAN: Bypass of verification of signatures in CHECKSUMS files 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-16156 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-12-13 18:15 修改: 2023-11-07 03:18
perl-modules-5.28	CVE-2023-31484	高危	5.28.1-6+deb10u1		perl: CPAN.pm does not verify TLS certificates when downloading distributions over HTTPS 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31484 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-29 00:15 修改: 2024-08-01 13:43
redis-server	CVE-2022-24735	高危	5:5.0.14-1+deb10u5		redis: Code injection via Lua script execution environment 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24735 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-04-27 20:15 修改: 2023-11-07 03:44
redis-server	CVE-2022-24834	高危	5:5.0.14-1+deb10u5		redis: heap overflow in the lua cjson and cmsgpack libraries 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24834 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-07-13 15:15 修改: 2023-08-14 19:15
redis-server	CVE-2024-31449	高危	5:5.0.14-1+deb10u5		redis: Lua library commands may lead to stack overflow and RCE in Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31449 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-07 20:15 修改: 2024-10-10 12:57
redis-tools	CVE-2022-24735	高危	5:5.0.14-1+deb10u5		redis: Code injection via Lua script execution environment 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24735 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-04-27 20:15 修改: 2023-11-07 03:44
redis-tools	CVE-2022-24834	高危	5:5.0.14-1+deb10u5		redis: heap overflow in the lua cjson and cmsgpack libraries 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24834 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-07-13 15:15 修改: 2023-08-14 19:15
redis-tools	CVE-2024-31449	高危	5:5.0.14-1+deb10u5		redis: Lua library commands may lead to stack overflow and RCE in Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31449 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-07 20:15 修改: 2024-10-10 12:57
exim4-daemon-light	CVE-2022-3559	高危	4.92-8+deb10u9		A vulnerability was found in Exim and classified as problematic. This ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3559 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-10-17 18:15 修改: 2023-11-07 03:51
exim4-daemon-light	CVE-2023-42117	高危	4.92-8+deb10u9		Exim: Improper Neutralization of Special Elements Remote Code Execution Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42117 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-03 03:15 修改: 2024-05-03 12:49
libpython2.7	CVE-2024-6923	中危	2.7.16-2+deb10u4		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
libpython2.7	CVE-2024-9287	中危	2.7.16-2+deb10u4		python: Virtual environment (venv) activation scripts don't quote paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
libc6	CVE-2023-4813	中危	2.28-10+deb10u3		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libc6	CVE-2024-33600	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libpython2.7-minimal	CVE-2023-27043	中危	2.7.16-2+deb10u4		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython2.7-minimal	CVE-2024-0397	中危	2.7.16-2+deb10u4		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython2.7-minimal	CVE-2024-6923	中危	2.7.16-2+deb10u4		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
libpython2.7-minimal	CVE-2024-9287	中危	2.7.16-2+deb10u4		python: Virtual environment (venv) activation scripts don't quote paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
libgcrypt20	CVE-2019-13627	中危	1.8.4-5+deb10u1		libgcrypt: ECDSA timing attack allowing private key leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-13627 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-09-25 15:15 修改: 2021-07-21 11:39
libgcrypt20	CVE-2024-2236	中危	1.8.4-5+deb10u1		libgcrypt: vulnerable to Marvin Attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2236 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-03-06 22:15 修改: 2024-11-12 18:15
libpython2.7-stdlib	CVE-2023-27043	中危	2.7.16-2+deb10u4		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
libpython2.7-stdlib	CVE-2024-0397	中危	2.7.16-2+deb10u4		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libpython2.7-stdlib	CVE-2024-6923	中危	2.7.16-2+deb10u4		cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
libpython2.7-stdlib	CVE-2024-9287	中危	2.7.16-2+deb10u4		python: Virtual environment (venv) activation scripts don't quote paths 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9287 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-10-22 17:15 修改: 2024-11-04 18:15
libc6	CVE-2024-33601	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2024-33602	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libsqlite3-0	CVE-2019-19645	中危	3.27.2-3+deb10u2		sqlite: infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19645 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2019-12-09 16:15 修改: 2022-04-15 16:14
libsqlite3-0	CVE-2019-19924	中危	3.27.2-3+deb10u2		sqlite: incorrect sqlite3WindowRewrite() error handling leads to mishandling certain parser-tree rewriting 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19924 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2019-12-24 16:15 修改: 2023-11-07 03:07
libsqlite3-0	CVE-2020-13631	中危	3.27.2-3+deb10u2		sqlite: Virtual table can be renamed into the name of one of its shadow tables 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13631 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-05-27 15:15 修改: 2023-11-07 03:16
libc-bin	CVE-2024-33602	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libssl1.1	CVE-2023-5678	中危	1.1.1n-0+deb10u6		openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2024-0727	中危	1.1.1n-0+deb10u6		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2024-4741	中危	1.1.1n-0+deb10u6		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
libssl1.1	CVE-2024-5535	中危	1.1.1n-0+deb10u6		openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libssl1.1	CVE-2024-6119	中危	1.1.1n-0+deb10u6		openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libc-bin	CVE-2023-4806	中危	2.28-10+deb10u3		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libjpeg62-turbo	CVE-2020-35538	中危	1:1.5.2-2+deb10u1		libjpeg-turbo: Null pointer dereference in jcopy_sample_rows() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35538 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2022-09-20 17:39
libjpeg62-turbo	CVE-2021-46822	中危	1:1.5.2-2+deb10u1		libjpeg-turbo: heap buffer overflow in get_word_rgb_row() in rdppm.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46822 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-06-18 16:15 修改: 2022-08-15 15:52
libc-bin	CVE-2023-4813	中危	2.28-10+deb10u3		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libcurl3-gnutls	CVE-2024-6874	中危	7.64.0-4+deb10u9		curl: macidn punycode buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6874 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-07-24 08:15 修改: 2024-09-10 15:27
libcurl3-gnutls	CVE-2024-7264	中危	7.64.0-4+deb10u9		curl: libcurl: ASN.1 date parser overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
libsystemd0	CVE-2021-3997	中危	241-7~deb10u10		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libsystemd0	CVE-2022-4415	中危	241-7~deb10u10		systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
libsystemd0	CVE-2023-7008	中危	241-7~deb10u10		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
libcurl3-gnutls	CVE-2024-8096	中危	7.64.0-4+deb10u9		curl: OCSP stapling bypass with GnuTLS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
libc-l10n	CVE-2023-4806	中危	2.28-10+deb10u3		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
libtiff-tools	CVE-2022-40090	中危	4.1.0+git191117-2~deb10u9		libtiff: infinite loop via a crafted TIFF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40090 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:13
libtiff-tools	CVE-2023-6277	中危	4.1.0+git191117-2~deb10u9		libtiff: Out-of-memory in TIFFOpen via a craft file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6277 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-11-24 19:15 修改: 2024-09-17 01:15
libc-l10n	CVE-2023-4813	中危	2.28-10+deb10u3		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
libcurl4	CVE-2024-6874	中危	7.64.0-4+deb10u9		curl: macidn punycode buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6874 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-07-24 08:15 修改: 2024-09-10 15:27
libtiff5	CVE-2022-40090	中危	4.1.0+git191117-2~deb10u9		libtiff: infinite loop via a crafted TIFF file 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-40090 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-08-22 19:16 修改: 2023-08-26 02:13
libtiff5	CVE-2023-6277	中危	4.1.0+git191117-2~deb10u9		libtiff: Out-of-memory in TIFFOpen via a craft file 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6277 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-11-24 19:15 修改: 2024-09-17 01:15
libtinfo6	CVE-2023-50495	中危	6.1+20181013-2+deb10u5		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libcurl4	CVE-2024-7264	中危	7.64.0-4+deb10u9		curl: libcurl: ASN.1 date parser overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7264 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-07-31 08:15 修改: 2024-10-30 20:35
libmariadb3	CVE-2024-21096	中危	1:10.3.39-0+deb10u2		mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-04-16 22:15 修改: 2024-06-18 02:15
libncurses6	CVE-2023-50495	中危	6.1+20181013-2+deb10u5		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libncursesw6	CVE-2023-50495	中危	6.1+20181013-2+deb10u5		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
libudev1	CVE-2021-3997	中危	241-7~deb10u10		systemd: Uncontrolled recursion in systemd-tmpfiles when removing files 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3997 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-08-23 20:15 修改: 2023-05-03 12:15
libudev1	CVE-2022-4415	中危	241-7~deb10u10		systemd: local information leak due to systemd-coredump not respecting fs.suid_dumpable kernel setting 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-4415 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-01-11 15:15 修改: 2023-02-02 16:19
libudev1	CVE-2023-7008	中危	241-7~deb10u10		systemd-resolved: Unsigned name response in signed zone is not refused when DNSSEC=yes 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-7008 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-23 13:15 修改: 2024-09-16 17:16
libunbound8	CVE-2024-8508	中危	1.9.0-2+deb10u4		unbound: Unbounded name compression could lead to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8508 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-10-03 17:15 修改: 2024-10-04 13:50
libcurl4	CVE-2024-8096	中危	7.64.0-4+deb10u9		curl: OCSP stapling bypass with GnuTLS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8096 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-09-11 10:15 修改: 2024-09-11 16:26
libpam-modules	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-10-23 14:15 修改: 2024-11-12 21:15
libpam-modules	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libxml2	CVE-2016-3709	中危	2.9.4+dfsg1-7+deb10u6		libxml2: Incorrect server side include parsing can lead to XSS 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-3709 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-07-28 17:15 修改: 2022-12-07 16:39
libxml2	CVE-2016-9318	中危	2.9.4+dfsg1-7+deb10u6		libxml2: XML External Entity vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-9318 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2016-11-16 00:59 修改: 2022-04-08 23:15
libxml2	CVE-2023-39615	中危	2.9.4+dfsg1-7+deb10u6		libxml2: crafted xml can cause global buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-39615 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-08-29 17:15 修改: 2024-08-02 19:15
libxml2	CVE-2023-45322	中危	2.9.4+dfsg1-7+deb10u6		libxml2: use-after-free in xmlUnlinkNode() in tree.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45322 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-10-06 22:15 修改: 2024-08-02 21:15
libc-l10n	CVE-2024-33600	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libpam-modules-bin	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-10-23 14:15 修改: 2024-11-12 21:15
locales	CVE-2023-4806	中危	2.28-10+deb10u3		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
locales	CVE-2023-4813	中危	2.28-10+deb10u3		glibc: potential use-after-free in gaih_inet() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4813 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-09-12 22:15 修改: 2024-09-16 14:15
locales	CVE-2024-33600	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales	CVE-2024-33601	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
locales	CVE-2024-33602	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
login	CVE-2023-4641	中危	1:4.5-1.1		shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
mariadb-common	CVE-2024-21096	中危	1:10.3.39-0+deb10u2		mysql: Client: mysqldump unspecified vulnerability (CPU Apr 2024) 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-21096 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-04-16 22:15 修改: 2024-06-18 02:15
ncurses-base	CVE-2023-50495	中危	6.1+20181013-2+deb10u5		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
ncurses-bin	CVE-2023-50495	中危	6.1+20181013-2+deb10u5		ncurses: segmentation fault via _nc_wrap_entry() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-50495 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-12 15:15 修改: 2024-01-31 03:15
openssl	CVE-2023-5678	中危	1.1.1n-0+deb10u6		openssl: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-5678 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-11-06 16:15 修改: 2024-10-14 15:15
openssl	CVE-2024-0727	中危	1.1.1n-0+deb10u6		openssl: denial of service via null dereference 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0727 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-01-26 09:15 修改: 2024-10-14 15:15
openssl	CVE-2024-4741	中危	1.1.1n-0+deb10u6		openssl: Use After Free with SSL_free_buffers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
openssl	CVE-2024-5535	中危	1.1.1n-0+deb10u6		openssl: SSL_select_next_proto buffer overread 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
openssl	CVE-2024-6119	中危	1.1.1n-0+deb10u6		openssl: Possible denial of service in X.509 name checks 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
passwd	CVE-2023-4641	中危	1:4.5-1.1		shadow-utils: possible password leak during passwd(1) change 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4641 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-12-27 16:15 修改: 2024-05-03 16:15
libpam-modules-bin	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libc-l10n	CVE-2024-33601	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libpam-runtime	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-10-23 14:15 修改: 2024-11-12 21:15
libpam-runtime	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libc-l10n	CVE-2024-33602	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache assumes NSS callback uses in-buffer strings 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33602 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libpam0g	CVE-2024-10041	中危	1.3.1-5		pam: libpam: Libpam vulnerable to read hashed password 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-10041 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-10-23 14:15 修改: 2024-11-12 21:15
libpam0g	CVE-2024-22365	中危	1.3.1-5		pam: allowing unprivileged user to block another user namespace 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-22365 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-06 08:15 修改: 2024-02-14 00:27
libpcre3	CVE-2020-14155	中危	2:8.39-12		pcre: Integer overflow when parsing callout numeric arguments 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-14155 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:04
libc-bin	CVE-2024-33600	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: null pointer dereferences after failed netgroup cache insertion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33600 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
redis-server	CVE-2021-31294	中危	5:5.0.14-1+deb10u5		redis: an assertion failure in a primary server by sending a non-administrative command 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31294 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-07-15 23:15 修改: 2023-08-14 19:15
redis-server	CVE-2022-24736	中危	5:5.0.14-1+deb10u5		redis: Malformed Lua script can crash Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24736 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-04-27 20:15 修改: 2023-11-07 03:44
redis-server	CVE-2022-35977	中危	5:5.0.14-1+deb10u5		redis: Integer overflow in the Redis SETRANGE and SORT/SORT_RO commands may result with false OOM panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35977 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-01-20 19:15 修改: 2023-02-02 14:28
redis-server	CVE-2023-25155	中危	5:5.0.14-1+deb10u5		redis: String matching commands (like SCAN or KEYS) with a specially crafted pattern to trigger a denial-of-service attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25155 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-03-02 04:15 修改: 2023-03-10 05:02
redis-server	CVE-2024-31227	中危	5:5.0.14-1+deb10u5		redis: Denial-of-service due to malformed ACL selectors in Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31227 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-07 20:15 修改: 2024-10-10 12:57
redis-server	CVE-2024-31228	中危	5:5.0.14-1+deb10u5		redis: Denial-of-service due to unbounded pattern matching in Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31228 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-07 20:15 修改: 2024-10-10 12:57
libexpat1	CVE-2024-50602	中危	2.2.6-2+deb10u7		libexpat: expat: DoS via XML_ResumeParser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
libc-bin	CVE-2024-33601	中危	2.28-10+deb10u3	2.28-10+deb10u4	glibc: netgroup cache may terminate daemon on memory allocation failure 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33601 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-05-06 20:15 修改: 2024-07-22 18:15
libc6	CVE-2023-4806	中危	2.28-10+deb10u3		glibc: potential use-after-free in getaddrinfo() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4806 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-18 17:15 修改: 2024-09-16 14:15
redis-tools	CVE-2021-31294	中危	5:5.0.14-1+deb10u5		redis: an assertion failure in a primary server by sending a non-administrative command 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31294 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-07-15 23:15 修改: 2023-08-14 19:15
redis-tools	CVE-2022-24736	中危	5:5.0.14-1+deb10u5		redis: Malformed Lua script can crash Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24736 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-04-27 20:15 修改: 2023-11-07 03:44
redis-tools	CVE-2022-35977	中危	5:5.0.14-1+deb10u5		redis: Integer overflow in the Redis SETRANGE and SORT/SORT_RO commands may result with false OOM panic 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35977 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-01-20 19:15 修改: 2023-02-02 14:28
redis-tools	CVE-2023-25155	中危	5:5.0.14-1+deb10u5		redis: String matching commands (like SCAN or KEYS) with a specially crafted pattern to trigger a denial-of-service attack 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-25155 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-03-02 04:15 修改: 2023-03-10 05:02
redis-tools	CVE-2024-31227	中危	5:5.0.14-1+deb10u5		redis: Denial-of-service due to malformed ACL selectors in Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31227 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-07 20:15 修改: 2024-10-10 12:57
redis-tools	CVE-2024-31228	中危	5:5.0.14-1+deb10u5		redis: Denial-of-service due to unbounded pattern matching in Redis 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-31228 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-07 20:15 修改: 2024-10-10 12:57
libpython2.7	CVE-2023-27043	中危	2.7.16-2+deb10u4		python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
wget	CVE-2021-31879	中危	1.20.1-1.1		wget: authorization header disclosure on redirect 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-31879 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-04-29 05:15 修改: 2022-05-13 20:52
libpython2.7	CVE-2024-0397	中危	2.7.16-2+deb10u4		cpython: python: Memory race condition in ssl.SSLContext certificate store methods 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0397 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-17 16:15 修改: 2024-07-03 01:44
libc-bin	CVE-2019-1010023	低危	2.28-10+deb10u3		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libncurses6	CVE-2023-45918	低危	6.1+20181013-2+deb10u5		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
libc-bin	CVE-2019-1010024	低危	2.28-10+deb10u3		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libncursesw6	CVE-2023-45918	低危	6.1+20181013-2+deb10u5		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
libc-bin	CVE-2019-1010025	低危	2.28-10+deb10u3		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-bin	CVE-2019-9192	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
exim4-daemon-light	CVE-2024-39929	低危	4.92-8+deb10u9		exim: exim: Incorrect parsing of multiline rfc2231 header filename 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39929 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-07-04 15:15 修改: 2024-07-09 16:22
fdisk	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
bash	TEMP-0841856-B18BAF	低危	5.0-4		[Privilege escalation possible to other user than root] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0841856-B18BAF 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
bsdutils	CVE-2022-0563	低危	1:2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
gcc-8-base	CVE-2023-4039	低危	8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
gnupg	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libc-l10n	CVE-2010-4756	低危	2.28-10+deb10u3		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc-l10n	CVE-2018-20796	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc-l10n	CVE-2019-1010022	低危	2.28-10+deb10u3		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libpcre2-8-0	CVE-2022-41409	低危	10.32-5+deb10u1		pcre2: negative repeat value in a pcre2test subject line leads to inifinite loop 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-41409 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-07-18 14:15 修改: 2023-07-27 03:46
libc-l10n	CVE-2019-1010023	低危	2.28-10+deb10u3		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libpcre3	CVE-2017-11164	低危	2:8.39-12		pcre: OP_KETRMAX feature in the match function in pcre_exec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-11164 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2017-07-11 03:29 修改: 2023-11-07 02:38
libpcre3	CVE-2017-16231	低危	2:8.39-12		pcre: self-recursive call in match() in pcre_exec.c leads to denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16231 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-03-21 15:59 修改: 2024-08-05 21:15
libpcre3	CVE-2017-7245	低危	2:8.39-12		pcre: stack-based buffer overflow write in pcre32_copy_substring 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7245 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29
libpcre3	CVE-2017-7246	低危	2:8.39-12		pcre: stack-based buffer overflow write in pcre32_copy_substring 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-7246 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2017-03-23 21:59 修改: 2018-08-17 10:29
libpcre3	CVE-2019-20838	低危	2:8.39-12		pcre: Buffer over-read in JIT when UTF is disabled and \X or \R has fixed quantifier greater than 1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20838 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-06-15 17:15 修改: 2024-03-27 16:05
libc-l10n	CVE-2019-1010024	低危	2.28-10+deb10u3		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc-l10n	CVE-2019-1010025	低危	2.28-10+deb10u3		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libperl5.28	CVE-2011-4116	低危	5.28.1-6+deb10u1		perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
libperl5.28	CVE-2023-31486	低危	5.28.1-6+deb10u1		http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-29 00:15 修改: 2023-06-21 18:19
libprocps7	CVE-2023-4016	低危	2:3.3.15-2		procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libc-l10n	CVE-2019-9192	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
gnupg-l10n	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg-l10n	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gnupg-utils	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg-utils	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gnupg1	CVE-2018-6829	低危	1.4.23-1		libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
libpython2.7	CVE-2013-7040	低危	2.7.16-2+deb10u4		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
libpython2.7	CVE-2017-17522	低危	2.7.16-2+deb10u4		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython2.7	CVE-2019-18348	低危	2.7.16-2+deb10u4		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
libpython2.7	CVE-2019-9674	低危	2.7.16-2+deb10u4		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
libpython2.7	CVE-2020-27619	低危	2.7.16-2+deb10u4		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython2.7	CVE-2021-28861	低危	2.7.16-2+deb10u4		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython2.7	CVE-2024-5642	低危	2.7.16-2+deb10u4		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
gnupg1	CVE-2019-14855	低危	1.4.23-1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg1-l10n	CVE-2018-6829	低危	1.4.23-1		libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
libc6	CVE-2010-4756	低危	2.28-10+deb10u3		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libc6	CVE-2018-20796	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libc6	CVE-2019-1010022	低危	2.28-10+deb10u3		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010023	低危	2.28-10+deb10u3		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libpython2.7-minimal	CVE-2013-7040	低危	2.7.16-2+deb10u4		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
libpython2.7-minimal	CVE-2017-17522	低危	2.7.16-2+deb10u4		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython2.7-minimal	CVE-2019-18348	低危	2.7.16-2+deb10u4		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
libpython2.7-minimal	CVE-2019-9674	低危	2.7.16-2+deb10u4		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
libpython2.7-minimal	CVE-2020-27619	低危	2.7.16-2+deb10u4		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython2.7-minimal	CVE-2021-28861	低危	2.7.16-2+deb10u4		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython2.7-minimal	CVE-2024-5642	低危	2.7.16-2+deb10u4		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libc6	CVE-2019-1010024	低危	2.28-10+deb10u3		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-1010025	低危	2.28-10+deb10u3		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libc6	CVE-2019-9192	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
gnupg1-l10n	CVE-2019-14855	低危	1.4.23-1		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg2	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gnupg2	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libpython2.7-stdlib	CVE-2013-7040	低危	2.7.16-2+deb10u4		python: hash secret can be recovered remotely 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-7040 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2014-05-19 14:55 修改: 2019-10-25 11:53
libpython2.7-stdlib	CVE-2017-17522	低危	2.7.16-2+deb10u4		python: Command injection in Lib/webbrowser.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17522 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2017-12-14 16:29 修改: 2024-08-05 21:15
libpython2.7-stdlib	CVE-2019-18348	低危	2.7.16-2+deb10u4		python: CRLF injection via the host part of the url passed to urlopen() 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18348 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-10-23 17:15 修改: 2023-11-07 03:06
libpython2.7-stdlib	CVE-2019-9674	低危	2.7.16-2+deb10u4		python: Nested zip file (Zip bomb) vulnerability in Lib/zipfile.py 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9674 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-02-04 15:15 修改: 2023-03-01 16:40
libpython2.7-stdlib	CVE-2020-27619	低危	2.7.16-2+deb10u4		python: Unsafe use of eval() on data retrieved via HTTP in the test suite 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-27619 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-10-22 03:16 修改: 2024-02-03 07:15
libpython2.7-stdlib	CVE-2021-28861	低危	2.7.16-2+deb10u4		python: open redirection vulnerability in lib/http/server.py may lead to information disclosure 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-28861 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2022-08-23 01:15 修改: 2024-08-03 22:15
libpython2.7-stdlib	CVE-2024-5642	低危	2.7.16-2+deb10u4		python: Invalid value for OpenSSL API may cause Buffer over-read when NPN is used 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5642 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-27 21:15 修改: 2024-11-06 21:35
libseccomp2	CVE-2019-9893	低危	2.3.3-4		libseccomp: incorrect generation of syscall filters in libseccomp 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9893 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-03-21 16:01 修改: 2020-08-24 17:37
libsepol1	CVE-2021-36084	低危	2.8-1		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36084 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36085	低危	2.8-1		libsepol: use-after-free in __cil_verify_classperms() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36085 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36086	低危	2.8-1		libsepol: use-after-free in cil_reset_classpermission() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36086 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsepol1	CVE-2021-36087	低危	2.8-1		libsepol: heap-based buffer overflow in ebitmap_match_any() 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36087 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-07-01 03:15 修改: 2023-11-07 03:36
libsmartcols1	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
gpg	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpg	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpg-agent	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libcurl3-gnutls	CVE-2020-19909	低危	7.64.0-4+deb10u9		Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19909 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-08-22 19:16 修改: 2024-08-04 15:15
libcurl3-gnutls	CVE-2021-22922	低危	7.64.0-4+deb10u9		curl: Content not matching hash in Metalink is not being discarded 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
libsqlite3-0	CVE-2019-19244	低危	3.27.2-3+deb10u2		sqlite: allows a crash if a sub-select uses both DISTINCT and window functions and also has certain ORDER BY usage 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19244 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2019-11-25 20:15 修改: 2022-04-15 16:12
libsqlite3-0	CVE-2020-11656	低危	3.27.2-3+deb10u2		sqlite: use-after-free in the ALTER TABLE implementation 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-11656 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-04-09 03:15 修改: 2022-04-08 10:34
libsqlite3-0	CVE-2021-36690	低危	3.27.2-3+deb10u2		A segmentation fault can occur in the sqlite3.exe command-line compone ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-36690 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-08-24 14:15 修改: 2024-08-04 01:15
libsqlite3-0	CVE-2021-45346	低危	3.27.2-3+deb10u2		sqlite: crafted SQL query allows a malicious user to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-45346 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-02-14 19:15 修改: 2024-08-04 05:15
libsqlite3-0	CVE-2022-35737	低危	3.27.2-3+deb10u2		sqlite: an array-bounds overflow if billions of bytes are used in a string argument to a C API 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-35737 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-08-03 06:15 修改: 2024-03-27 16:05
libcurl3-gnutls	CVE-2021-22923	低危	7.64.0-4+deb10u9		curl: Metalink download sends credentials 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl3-gnutls	CVE-2023-28320	低危	7.64.0-4+deb10u9		curl: siglongjmp race condition may lead to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-05-26 21:15 修改: 2023-10-20 18:42
libcurl3-gnutls	CVE-2024-2379	低危	7.64.0-4+deb10u9		curl: QUIC certificate check bypass with wolfSSL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
libcurl3-gnutls	CVE-2024-9681	低危	7.64.0-4+deb10u9		When curl is asked to use HSTS, the expiry time for a subdomain might ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-11-06 08:15 修改: 2024-11-06 18:17
gpg-agent	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpg-wks-client	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libssl1.1	CVE-2024-2511	低危	1.1.1n-0+deb10u6		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
libssl1.1	CVE-2024-9143	低危	1.1.1n-0+deb10u6		openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
gpg-wks-client	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpg-wks-server	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libstdc++6	CVE-2023-4039	低危	8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
gpg-wks-server	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libcurl4	CVE-2020-19909	低危	7.64.0-4+deb10u9		Integer overflow vulnerability in tool_operate.c in curl 7.65.2 via a ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-19909 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-08-22 19:16 修改: 2024-08-04 15:15
libcurl4	CVE-2021-22922	低危	7.64.0-4+deb10u9		curl: Content not matching hash in Metalink is not being discarded 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22922 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:12
libcurl4	CVE-2021-22923	低危	7.64.0-4+deb10u9		curl: Metalink download sends credentials 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-22923 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-08-05 21:15 修改: 2024-03-27 15:11
libcurl4	CVE-2023-28320	低危	7.64.0-4+deb10u9		curl: siglongjmp race condition may lead to crash 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28320 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-05-26 21:15 修改: 2023-10-20 18:42
libcurl4	CVE-2024-2379	低危	7.64.0-4+deb10u9		curl: QUIC certificate check bypass with wolfSSL 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
libcurl4	CVE-2024-9681	低危	7.64.0-4+deb10u9		When curl is asked to use HSTS, the expiry time for a subdomain might ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9681 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-11-06 08:15 修改: 2024-11-06 18:17
libsystemd0	CVE-2013-4392	低危	241-7~deb10u10		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libsystemd0	CVE-2019-20386	低危	241-7~deb10u10		systemd: memory leak in button_open() in login/logind-button.c when udev events are received 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20386 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-01-21 06:15 修改: 2023-11-07 03:09
libsystemd0	CVE-2020-13529	低危	241-7~deb10u10		systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libsystemd0	CVE-2023-31437	低危	241-7~deb10u10		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd0	CVE-2023-31438	低危	241-7~deb10u10		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libsystemd0	CVE-2023-31439	低危	241-7~deb10u10		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libtasn1-6	CVE-2018-1000654	低危	4.13-3+deb10u1		libtasn1: Infinite loop in _asn1_expand_object_id(ptree) leads to memory exhaustion 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-1000654 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2018-08-20 19:31 修改: 2023-11-07 02:51
gpgconf	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpgconf	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
gpgsm	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
gpgsm	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libtiff-tools	CVE-2017-16232	低危	4.1.0+git191117-2~deb10u9		libtiff: Memory leaks in tif_open.c, tif_lzw.c, and tif_aux.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16232 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2019-03-21 15:59 修改: 2024-08-05 21:15
libtiff-tools	CVE-2017-17973	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-based use after free in tiff2pdf.c:t2p_writeproc 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17973 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-12-29 21:29 修改: 2024-08-05 21:15
libtiff-tools	CVE-2017-5563	低危	4.1.0+git191117-2~deb10u9		libtiff: Heap-buffer overflow in LZWEncode tif_lzw.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5563 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-01-23 07:59 修改: 2019-10-03 00:03
libtiff-tools	CVE-2017-9117	低危	4.1.0+git191117-2~deb10u9		libtiff: Heap-based buffer over-read in bmp2tiff 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9117 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-05-21 19:29 修改: 2019-10-03 00:03
libtiff-tools	CVE-2018-10126	低危	4.1.0+git191117-2~deb10u9		libtiff: NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10126 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2018-04-21 21:29 修改: 2024-08-20 05:15
libtiff-tools	CVE-2020-35521	低危	4.1.0+git191117-2~deb10u9		libtiff: Memory allocation failure in tiff2rgba 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35521 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtiff-tools	CVE-2020-35522	低危	4.1.0+git191117-2~deb10u9		libtiff: Memory allocation failure in tiff2rgba 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35522 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtiff-tools	CVE-2022-1056	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1056 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-03-28 19:15 修改: 2023-02-22 17:35
libtiff-tools	CVE-2022-1210	低危	4.1.0+git191117-2~deb10u9		tiff: Malicious file leads to a denial of service in TIFF File Handler 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1210 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-04-03 09:15 修改: 2023-07-24 13:46
libtiff-tools	CVE-2022-2519	低危	4.1.0+git191117-2~deb10u9		libtiff: Double free or corruption in rotateImage() function at tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2519 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:57
libtiff-tools	CVE-2022-2520	低危	4.1.0+git191117-2~deb10u9		libtiff: Assertion fail in rotateImage() function at tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2520 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2023-02-28 15:39
libtiff-tools	CVE-2022-2521	低危	4.1.0+git191117-2~deb10u9		libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2521 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:59
libtiff-tools	CVE-2022-2953	低危	4.1.0+git191117-2~deb10u9		libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2953 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-29 15:15 修改: 2023-02-23 16:01
libtiff-tools	CVE-2023-1916	低危	4.1.0+git191117-2~deb10u9		libtiff: out-of-bounds read in extractImageSection() in tools/tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1916 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-04-10 22:15 修改: 2023-12-23 07:15
libtiff-tools	CVE-2023-30775	低危	4.1.0+git191117-2~deb10u9		libtiff: Heap buffer overflow in extractContigSamples32bits, tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30775 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-05-19 15:15 修改: 2023-07-03 16:15
libtiff-tools	CVE-2023-3164	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-buffer-overflow in extractImageSection() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3164 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-11-02 12:15 修改: 2024-03-08 19:38
libtiff-tools	CVE-2023-6228	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6228 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-12-18 14:15 修改: 2024-10-11 16:15
gpgv	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libexpat1	CVE-2013-0340	低危	2.2.6-2+deb10u7		expat: internal entity expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-0340 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2014-01-21 18:55 修改: 2023-11-07 02:13
libexpat1	CVE-2023-52426	低危	2.2.6-2+deb10u7		expat: recursive XML entity expansion vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52426 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-02-04 20:15 修改: 2024-03-07 17:15
libexpat1	CVE-2024-28757	低危	2.2.6-2+deb10u7		expat: XML Entity Expansion 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28757 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-03-10 05:15 修改: 2024-05-01 19:15
libtiff5	CVE-2017-16232	低危	4.1.0+git191117-2~deb10u9		libtiff: Memory leaks in tif_open.c, tif_lzw.c, and tif_aux.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-16232 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2019-03-21 15:59 修改: 2024-08-05 21:15
libtiff5	CVE-2017-17973	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-based use after free in tiff2pdf.c:t2p_writeproc 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17973 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-12-29 21:29 修改: 2024-08-05 21:15
libtiff5	CVE-2017-5563	低危	4.1.0+git191117-2~deb10u9		libtiff: Heap-buffer overflow in LZWEncode tif_lzw.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-5563 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-01-23 07:59 修改: 2019-10-03 00:03
libtiff5	CVE-2017-9117	低危	4.1.0+git191117-2~deb10u9		libtiff: Heap-based buffer over-read in bmp2tiff 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9117 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-05-21 19:29 修改: 2019-10-03 00:03
libtiff5	CVE-2018-10126	低危	4.1.0+git191117-2~deb10u9		libtiff: NULL pointer dereference in the jpeg_fdct_16x16 function in jfdctint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-10126 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2018-04-21 21:29 修改: 2024-08-20 05:15
libtiff5	CVE-2020-35521	低危	4.1.0+git191117-2~deb10u9		libtiff: Memory allocation failure in tiff2rgba 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35521 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtiff5	CVE-2020-35522	低危	4.1.0+git191117-2~deb10u9		libtiff: Memory allocation failure in tiff2rgba 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-35522 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2021-03-09 20:15 修改: 2023-11-07 03:21
libtiff5	CVE-2022-1056	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-based buffer overflow in _TIFFmemcpy() in tif_unix.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1056 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-03-28 19:15 修改: 2023-02-22 17:35
libtiff5	CVE-2022-1210	低危	4.1.0+git191117-2~deb10u9		tiff: Malicious file leads to a denial of service in TIFF File Handler 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-1210 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-04-03 09:15 修改: 2023-07-24 13:46
libtiff5	CVE-2022-2519	低危	4.1.0+git191117-2~deb10u9		libtiff: Double free or corruption in rotateImage() function at tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2519 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:57
libtiff5	CVE-2022-2520	低危	4.1.0+git191117-2~deb10u9		libtiff: Assertion fail in rotateImage() function at tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2520 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2023-02-28 15:39
libtiff5	CVE-2022-2521	低危	4.1.0+git191117-2~deb10u9		libtiff: Invalid pointer free operation in TIFFClose() at tif_close.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2521 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-31 16:15 修改: 2023-02-23 15:59
libtiff5	CVE-2022-2953	低危	4.1.0+git191117-2~deb10u9		libtiff: tiffcrop: heap-buffer-overflow in extractImageSection in tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-2953 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2022-08-29 15:15 修改: 2023-02-23 16:01
libtiff5	CVE-2023-1916	低危	4.1.0+git191117-2~deb10u9		libtiff: out-of-bounds read in extractImageSection() in tools/tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-1916 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-04-10 22:15 修改: 2023-12-23 07:15
libtiff5	CVE-2023-30775	低危	4.1.0+git191117-2~deb10u9		libtiff: Heap buffer overflow in extractContigSamples32bits, tiffcrop.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-30775 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-05-19 15:15 修改: 2023-07-03 16:15
libtiff5	CVE-2023-3164	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-buffer-overflow in extractImageSection() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-3164 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-11-02 12:15 修改: 2024-03-08 19:38
libtiff5	CVE-2023-6228	低危	4.1.0+git191117-2~deb10u9		libtiff: heap-based buffer overflow in cpStripToTile() in tools/tiffcp.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-6228 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2023-12-18 14:15 修改: 2024-10-11 16:15
gpgv	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
libtinfo6	CVE-2023-45918	低危	6.1+20181013-2+deb10u5		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
libfdisk1	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
exim4-base	CVE-2023-42119	低危	4.92-8+deb10u9		Exim: dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42119 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-03 03:15 修改: 2024-09-18 19:15
exim4-base	CVE-2024-39929	低危	4.92-8+deb10u9		exim: exim: Incorrect parsing of multiline rfc2231 header filename 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39929 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-07-04 15:15 修改: 2024-07-09 16:22
libgcc1	CVE-2023-4039	低危	1:8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
krb5-locales	CVE-2018-5709	低危	1.17-3+deb10u6		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
krb5-locales	CVE-2024-26458	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
krb5-locales	CVE-2024-26461	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libudev1	CVE-2013-4392	低危	241-7~deb10u10		systemd: TOCTOU race condition when updating file permissions and SELinux security contexts 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4392 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2013-10-28 22:55 修改: 2022-01-31 17:49
libudev1	CVE-2019-20386	低危	241-7~deb10u10		systemd: memory leak in button_open() in login/logind-button.c when udev events are received 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-20386 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-01-21 06:15 修改: 2023-11-07 03:09
libudev1	CVE-2020-13529	低危	241-7~deb10u10		systemd: DHCP FORCERENEW authentication not implemented can cause a system running the DHCP client to have its network reconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-13529 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-05-10 16:15 修改: 2023-11-07 03:16
libudev1	CVE-2023-31437	低危	241-7~deb10u10		An issue was discovered in systemd 253. An attacker can modify a seale ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31437 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libudev1	CVE-2023-31438	低危	241-7~deb10u10		An issue was discovered in systemd 253. An attacker can truncate a sea ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31438 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libudev1	CVE-2023-31439	低危	241-7~deb10u10		An issue was discovered in systemd 253. An attacker can modify the con ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31439 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-06-13 17:15 修改: 2024-08-02 15:16
libgcrypt20	CVE-2018-6829	低危	1.8.4-5+deb10u1		libgcrypt: ElGamal implementation doesn't have semantic security due to incorrectly encoded plaintexts possibly allowing to obtain sensitive information 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-6829 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2018-02-07 23:29 修改: 2020-01-15 20:15
libunbound8	CVE-2019-18934	低危	1.9.0-2+deb10u4		unbound: command injection with data coming from a specially crafted IPSECKEY answer 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18934 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-11-19 18:15 修改: 2023-11-07 03:07
libunbound8	CVE-2019-25031	低危	1.9.0-2+deb10u4		unbound: configuration injection in create_unbound_ad_servers.sh upon a successful man-in-the-middle attack against a cleartext HTTP session 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25031 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25032	低危	1.9.0-2+deb10u4		unbound: integer overflow in the regional allocator via regional_alloc 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25032 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25033	低危	1.9.0-2+deb10u4		unbound: integer overflow in the regional allocator via the ALIGN_UP macro 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25033 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25034	低危	1.9.0-2+deb10u4		unbound: integer overflow in sldns_str2wire_dname_buf_origin can lead to an out-of-bounds write 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25034 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25035	低危	1.9.0-2+deb10u4		unbound: out-of-bounds write in sldns_bget_token_par 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25035 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25036	低危	1.9.0-2+deb10u4		unbound: assertion failure and denial of service in synth_cname 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25036 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25037	低危	1.9.0-2+deb10u4		unbound: assertion failure and denial of service in dname_pkt_copy via an invalid packet 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25037 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25038	低危	1.9.0-2+deb10u4		unbound: integer overflow in a size calculation in dnscrypt/dnscrypt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25038 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25039	低危	1.9.0-2+deb10u4		unbound: integer overflow in a size calculation in respip/respip.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25039 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25040	低危	1.9.0-2+deb10u4		unbound: infinite loop via a compressed name in dname_pkt_copy 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25040 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25041	低危	1.9.0-2+deb10u4		unbound: assertion failure via a compressed name in dname_pkt_copy 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25041 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2019-25042	低危	1.9.0-2+deb10u4		unbound: out-of-bounds write via a compressed name in rdata_copy 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-25042 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2021-04-27 06:15 修改: 2024-08-05 03:16
libunbound8	CVE-2024-33655	低危	1.9.0-2+deb10u4		unbound: DNSBomb vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-33655 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-06-06 17:15 修改: 2024-08-22 19:35
libunbound8	CVE-2024-43167	低危	1.9.0-2+deb10u4		unbound: NULL Pointer Dereference in Unbound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43167 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-12 13:38 修改: 2024-10-21 12:15
libunbound8	CVE-2024-43168	低危	1.9.0-2+deb10u4		unbound: Heap-Buffer-Overflow in Unbound 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43168 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-08-12 13:38 修改: 2024-10-21 12:15
libuuid1	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
libgnutls-dane0	CVE-2011-3389	低危	3.6.7-4+deb10u12		HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2011-09-06 19:55 修改: 2022-11-29 15:56
libgnutls30	CVE-2011-3389	低危	3.6.7-4+deb10u12		HTTPS: block-wise chosen-plaintext attack against SSL/TLS (BEAST) 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3389 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2011-09-06 19:55 修改: 2022-11-29 15:56
libapt-pkg5.0	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
coreutils	CVE-2016-2781	低危	8.30-3		coreutils: Non-privileged session can escape to the parent session in chroot 漏洞详情: https://avd.aquasec.com/nvd/cve-2016-2781 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2017-02-07 15:59 修改: 2023-11-07 02:32
libgssapi-krb5-2	CVE-2018-5709	低危	1.17-3+deb10u6		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libgssapi-krb5-2	CVE-2024-26458	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libgssapi-krb5-2	CVE-2024-26461	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libxml2	CVE-2024-34459	低危	2.9.4+dfsg1-7+deb10u6		libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
libxslt1.1	CVE-2015-9019	低危	1.1.32-2.2~deb10u2		libxslt: math.random() in xslt uses unseeded randomness 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-9019 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2017-04-05 21:59 修改: 2017-04-11 19:57
coreutils	CVE-2017-18018	低危	8.30-3		coreutils: race condition vulnerability in chown and chgrp 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-18018 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2018-01-04 04:29 修改: 2018-01-19 15:46
libhiredis0.14	CVE-2021-32765	低危	0.14.0-3		hiredis: an integer overflow may occur if provided maliciously crafted or corrupted RESP mult-bulk protocol data 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-32765 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-10-04 21:15 修改: 2022-12-07 01:52
libatomic1	CVE-2023-4039	低危	8.3.0-6		gcc: -fstack-protector fails to guard dynamic stack allocations on ARM64 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4039 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-09-13 09:15 修改: 2024-08-02 08:15
libjbig0	CVE-2017-9937	低危	2.1-3.1+b2		libtiff: memory malloc failure in tif_jbig.c could cause DOS. 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-9937 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-06-26 12:29 修改: 2023-11-07 02:50
libblkid1	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
dirmngr	CVE-2019-14855	低危	2.2.12-1+deb10u2		gnupg2: OpenPGP Key Certification Forgeries with SHA-1 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-14855 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-03-20 16:15 修改: 2022-11-08 02:28
libjpeg62-turbo	CVE-2017-15232	低危	1:1.5.2-2+deb10u1		libjpeg-turbo: NULL pointer dereference in jdpostct.c and jquant1.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-15232 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2017-10-11 03:29 修改: 2018-07-11 01:29
locales	CVE-2010-4756	低危	2.28-10+deb10u3		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
locales	CVE-2018-20796	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
locales	CVE-2019-1010022	低危	2.28-10+deb10u3		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-1010023	低危	2.28-10+deb10u3		glibc: running ldd on malicious ELF leads to code execution because of wrong size computation 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010023 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-1010024	低危	2.28-10+deb10u3		glibc: ASLR bypass using cache of thread stack and heap 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010024 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-1010025	低危	2.28-10+deb10u3		glibc: information disclosure of heap addresses of pthread_created thread 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010025 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
locales	CVE-2019-9192	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9192 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2019-02-26 18:29 修改: 2024-08-04 22:15
libjpeg62-turbo	CVE-2018-11813	低危	1:1.5.2-2+deb10u1		libjpeg: "cjpeg" utility large loop because read_pixel in rdtarga.c mishandles EOF 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-11813 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2018-06-06 03:29 修改: 2020-06-25 14:15
login	CVE-2007-5686	低危	1:4.5-1.1		initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
login	CVE-2013-4235	低危	1:4.5-1.1		shadow-utils: TOCTOU race conditions by copying and removing directory trees 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
login	CVE-2018-7169	低危	1:4.5-1.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
login	CVE-2019-19882	低危	1:4.5-1.1		shadow-utils: local users can obtain root access because setuid programs are misconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19882 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-12-18 16:15 修改: 2020-08-25 15:15
login	CVE-2023-29383	低危	1:4.5-1.1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
login	TEMP-0628843-DBAD28	低危	1:4.5-1.1		[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libjpeg62-turbo	CVE-2020-17541	低危	1:1.5.2-2+deb10u1		libjpeg-turbo: Stack-based buffer overflow in the "transform" component 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-17541 镜像层: sha256:15b4af92f826c1d7254fc21eba1373d740bdd8f156f37925cf73d3bd7365ab04 发布日期: 2021-06-01 15:15 修改: 2022-11-07 14:29
mount	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
exim4-config	CVE-2023-42119	低危	4.92-8+deb10u9		Exim: dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42119 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-03 03:15 修改: 2024-09-18 19:15
ncurses-base	CVE-2023-45918	低危	6.1+20181013-2+deb10u5		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
exim4-config	CVE-2024-39929	低危	4.92-8+deb10u9		exim: exim: Incorrect parsing of multiline rfc2231 header filename 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-39929 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-07-04 15:15 修改: 2024-07-09 16:22
ncurses-bin	CVE-2023-45918	低危	6.1+20181013-2+deb10u5		ncurses: NULL pointer dereference in tgetstr in tinfo/lib_termcap.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45918 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2024-02-16 22:15 修改: 2024-10-31 18:35
libk5crypto3	CVE-2018-5709	低危	1.17-3+deb10u6		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libk5crypto3	CVE-2024-26458	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libk5crypto3	CVE-2024-26461	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
dirmngr	CVE-2022-3219	低危	2.2.12-1+deb10u2		gnupg: denial of service issue (resource consumption) using compressed packets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3219 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-02-23 20:15 修改: 2023-05-26 16:31
apt	CVE-2011-3374	低危	1.8.2.3		It was found that apt-key in apt, all versions, do not correctly valid ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-3374 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-11-26 00:15 修改: 2021-02-09 16:08
openssl	CVE-2024-2511	低危	1.1.1n-0+deb10u6		openssl: Unbounded memory growth with session handling in TLSv1.3 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2511 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-04-08 14:15 修改: 2024-10-14 15:15
openssl	CVE-2024-9143	低危	1.1.1n-0+deb10u6		openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
libkrb5-3	CVE-2018-5709	低危	1.17-3+deb10u6		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
passwd	CVE-2007-5686	低危	1:4.5-1.1		initscripts in rPath Linux 1 sets insecure permissions for the /var/lo ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2007-5686 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2007-10-28 17:08 修改: 2018-10-15 21:45
passwd	CVE-2013-4235	低危	1:4.5-1.1		shadow-utils: TOCTOU race conditions by copying and removing directory trees 漏洞详情: https://avd.aquasec.com/nvd/cve-2013-4235 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-12-03 15:15 修改: 2023-02-13 00:28
passwd	CVE-2018-7169	低危	1:4.5-1.1		shadow-utils: newgidmap allows unprivileged user to drop supplementary groups potentially allowing privilege escalation 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-7169 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2018-02-15 20:29 修改: 2019-10-03 00:03
passwd	CVE-2019-19882	低危	1:4.5-1.1		shadow-utils: local users can obtain root access because setuid programs are misconfigured 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-19882 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-12-18 16:15 修改: 2020-08-25 15:15
passwd	CVE-2023-29383	低危	1:4.5-1.1		shadow: Improper input validation in shadow-utils package utility chfn 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29383 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-04-14 22:15 修改: 2023-04-24 18:05
passwd	TEMP-0628843-DBAD28	低危	1:4.5-1.1		[more related to CVE-2005-4890] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0628843-DBAD28 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
libkrb5-3	CVE-2024-26458	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
libkrb5-3	CVE-2024-26461	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
perl	CVE-2011-4116	低危	5.28.1-6+deb10u1		perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl	CVE-2023-31486	低危	5.28.1-6+deb10u1		http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-29 00:15 修改: 2023-06-21 18:19
bash	CVE-2019-18276	低危	5.0-4		bash: when effective UID is not equal to its real UID the saved UID is not dropped 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-18276 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-11-28 01:15 修改: 2023-11-07 03:06
exim4-daemon-light	CVE-2023-42119	低危	4.92-8+deb10u9		Exim: dnsdb Out-Of-Bounds Read Information Disclosure Vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42119 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2024-05-03 03:15 修改: 2024-09-18 19:15
perl-base	CVE-2011-4116	低危	5.28.1-6+deb10u1		perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl-base	CVE-2023-31486	低危	5.28.1-6+deb10u1		http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-04-29 00:15 修改: 2023-06-21 18:19
libkrb5support0	CVE-2018-5709	低危	1.17-3+deb10u6		krb5: integer overflow in dbentry->n_key_data in kadmin/dbutil/dump.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-5709 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2018-01-16 09:29 修改: 2023-11-07 02:58
libkrb5support0	CVE-2024-26458	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/rpc/pmap_rmt.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26458 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-05-14 15:09
perl-modules-5.28	CVE-2011-4116	低危	5.28.1-6+deb10u1		perl: File:: Temp insecure temporary file handling 漏洞详情: https://avd.aquasec.com/nvd/cve-2011-4116 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2020-01-31 18:15 修改: 2020-02-05 22:10
perl-modules-5.28	CVE-2023-31486	低危	5.28.1-6+deb10u1		http-tiny: insecure TLS cert default 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-31486 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-04-29 00:15 修改: 2023-06-21 18:19
procps	CVE-2023-4016	低危	2:3.3.15-2		procps: ps buffer overflow 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-4016 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2023-08-02 05:15 修改: 2023-12-15 18:19
libkrb5support0	CVE-2024-26461	低危	1.17-3+deb10u6		krb5: Memory leak at /krb5/src/lib/gssapi/krb5/k5sealv3.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-26461 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2024-02-29 01:44 修改: 2024-08-14 16:35
libc-bin	CVE-2010-4756	低危	2.28-10+deb10u3		glibc: glob implementation can cause excessive CPU and memory consumption due to crafted glob expressions 漏洞详情: https://avd.aquasec.com/nvd/cve-2010-4756 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2011-03-02 20:00 修改: 2021-09-01 12:15
libldap-2.4-2	CVE-2015-3276	低危	2.4.47+dfsg-3+deb10u7		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
libldap-2.4-2	CVE-2017-14159	低危	2.4.47+dfsg-3+deb10u7		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
libldap-2.4-2	CVE-2017-17740	低危	2.4.47+dfsg-3+deb10u7		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
libldap-2.4-2	CVE-2020-15719	低危	2.4.47+dfsg-3+deb10u7		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libc-bin	CVE-2018-20796	低危	2.28-10+deb10u3		glibc: uncontrolled recursion in function check_dst_limits_calc_pos_1 in posix/regexec.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2018-20796 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-02-26 02:29 修改: 2023-11-07 02:56
libldap-common	CVE-2015-3276	低危	2.4.47+dfsg-3+deb10u7		openldap: incorrect multi-keyword mode cipherstring parsing 漏洞详情: https://avd.aquasec.com/nvd/cve-2015-3276 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2015-12-07 20:59 修改: 2023-04-28 18:28
libldap-common	CVE-2017-14159	低危	2.4.47+dfsg-3+deb10u7		openldap: Privilege escalation via PID file manipulation 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-14159 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2017-09-05 18:29 修改: 2022-06-13 19:18
redis-server	CVE-2020-21468	低危	5:5.0.14-1+deb10u5		redis: Segmentation fault in the redis-server component 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21468 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-09-20 16:15 修改: 2024-08-04 15:15
redis-server	CVE-2021-3470	低危	5:5.0.14-1+deb10u5		redis: potential heap overflow when using a heap allocator other than jemalloc or glibc's malloc 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3470 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-03-31 14:15 修改: 2021-04-05 18:37
redis-server	CVE-2022-3647	低危	5:5.0.14-1+deb10u5		redis: crash in sigsegvHandler debug function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3647 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-10-21 18:15 修改: 2024-08-03 02:15
libldap-common	CVE-2017-17740	低危	2.4.47+dfsg-3+deb10u7		openldap: contrib/slapd-modules/nops/nops.c attempts to free stack buffer allowing remote attackers to cause a denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2017-17740 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2017-12-18 06:29 修改: 2022-06-13 19:10
libldap-common	CVE-2020-15719	低危	2.4.47+dfsg-3+deb10u7		openldap: Certificate validation incorrectly matches name against CN-ID 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-15719 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2020-07-14 14:15 修改: 2022-05-12 15:01
libllvm13	CVE-2023-29932	低危	1:13.0.1-6~deb10u4		llvm: canonicalize pass crashed with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29932 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:02
libllvm13	CVE-2023-29933	低危	1:13.0.1-6~deb10u4		llvm: one shot bufferize crashed with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29933 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:06
libllvm13	CVE-2023-29934	低危	1:13.0.1-6~deb10u4		llvm: convert-scf-to-spirv Pass crashed with segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29934 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:13
libllvm13	CVE-2023-29935	低危	1:13.0.1-6~deb10u4		llvm: gpu-to-llvm Pass crashed with error message 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29935 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:17
libllvm13	CVE-2023-29939	低危	1:13.0.1-6~deb10u4		llvm-project commit a0138390 was discovered to contain a segmentation ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29939 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:19
libllvm13	CVE-2023-29941	低危	1:13.0.1-6~deb10u4		llvm: sparse-buffer-rewrite pass crashes with Segmentation fault 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29941 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-11-07 04:11
libllvm13	CVE-2023-29942	低危	1:13.0.1-6~deb10u4		llvm: convert-spirv-to-llvm Pass trigger Segmentation fault in LLVMStructType verifier 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29942 镜像层: sha256:058174ece62203ecfbac820f4ff9b3201e71577b172952a1e522432dbaf95b1a 发布日期: 2023-05-05 15:15 修改: 2023-05-11 18:23
redis-tools	CVE-2020-21468	低危	5:5.0.14-1+deb10u5		redis: Segmentation fault in the redis-server component 漏洞详情: https://avd.aquasec.com/nvd/cve-2020-21468 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-09-20 16:15 修改: 2024-08-04 15:15
redis-tools	CVE-2021-3470	低危	5:5.0.14-1+deb10u5		redis: potential heap overflow when using a heap allocator other than jemalloc or glibc's malloc 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3470 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2021-03-31 14:15 修改: 2021-04-05 18:37
redis-tools	CVE-2022-3647	低危	5:5.0.14-1+deb10u5		redis: crash in sigsegvHandler debug function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3647 镜像层: sha256:3268a3684628e63185f120e8baf13243dcaa85cbf4886f13014165b660350e71 发布日期: 2022-10-21 18:15 修改: 2024-08-03 02:15
sysvinit-utils	TEMP-0517018-A83CE6	低危	2.93-8		[sysvinit: no-root option in expert installer exposes locally exploitable security flaw] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0517018-A83CE6 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2005-2541	低危	1.30+dfsg-6+deb10u1		tar: does not properly warn the user when extracting setuid or setgid files 漏洞详情: https://avd.aquasec.com/nvd/cve-2005-2541 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2005-08-10 04:00 修改: 2023-11-07 01:57
tar	CVE-2019-9923	低危	1.30+dfsg-6+deb10u1		tar: null-pointer dereference in pax_decode_header in sparse.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-9923 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-03-22 08:29 修改: 2023-11-07 03:13
tar	CVE-2021-20193	低危	1.30+dfsg-6+deb10u1		tar: Memory leak in read_header() in list.c 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-20193 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2021-03-26 17:15 修改: 2024-10-24 18:15
tar	CVE-2022-48303	低危	1.30+dfsg-6+deb10u1		tar: heap buffer overflow at from_header() in list.c via specially crafted checksum 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-48303 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2023-01-30 04:15 修改: 2023-05-30 17:16
tar	TEMP-0290435-0B57B5	低危	1.30+dfsg-6+deb10u1		[tar's rmt command may have undesired side effects] 漏洞详情: https://security-tracker.debian.org/tracker/TEMP-0290435-0B57B5 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
util-linux	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15
liblz4-1	CVE-2019-17543	低危	1.8.3-1+deb10u1		lz4: heap-based buffer overflow in LZ4_write32 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-17543 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-10-14 02:15 修改: 2023-11-07 03:06
libc-bin	CVE-2019-1010022	低危	2.28-10+deb10u3		glibc: stack guard protection bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2019-1010022 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2019-07-15 04:15 修改: 2024-08-05 03:15
libmount1	CVE-2022-0563	低危	2.33.1-0.1+deb10u1		util-linux: partial disclosure of arbitrary files in chfn and chsh when compiled with libreadline 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-0563 镜像层: sha256:c7e102f8000b516b3ef4ccd646ed96c93e752bf5f419e0096aebaac3840f93e4 发布日期: 2022-02-21 19:15 修改: 2024-01-07 09:15

Node.js (node-pkg)

低危漏洞:3

中危漏洞:19

高危漏洞:23

严重漏洞:4

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
json-schema	CVE-2021-3918	严重	0.2.3	0.4.0	nodejs-json-schema: Prototype pollution vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3918 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2021-11-13 09:15 修改: 2023-02-03 19:15
minimist	CVE-2021-44906	严重	1.2.5	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
minimist	CVE-2021-44906	严重	1.2.5	1.2.6, 0.2.4	minimist: prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-44906 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2022-03-17 16:15 修改: 2024-06-21 19:15
typeorm	CVE-2022-33171	严重	0.2.45	0.3.0	SQL injection in typeORM 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33171 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-07-04 16:15 修改: 2024-08-03 08:15
body-parser	CVE-2024-45590	高危	1.19.2	1.20.3	body-parser: Denial of Service Vulnerability in body-parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
body-parser	CVE-2024-45590	高危	1.20.0	1.20.3	body-parser: Denial of Service Vulnerability in body-parser 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45590 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-10 16:15 修改: 2024-09-20 16:26
decode-uri-component	CVE-2022-38900	高危	0.2.0	0.2.1	decode-uri-component: improper input validation resulting in DoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-38900 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2022-11-28 13:15 修改: 2023-11-07 03:50
dicer	CVE-2022-24434	高危	0.2.5		dicer: nodejs service crash by sending a crafted payload 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24434 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-05-20 20:15 修改: 2022-06-07 02:04
http-cache-semantics	CVE-2022-25881	高危	3.8.1	4.1.1	http-cache-semantics: Regular Expression Denial of Service (ReDoS) vulnerability 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25881 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2023-01-31 05:15 修改: 2023-11-07 03:44
ip	CVE-2024-29415	高危	1.1.5		node-ip: Incomplete fix for CVE-2023-42282 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29415 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2024-05-27 20:15 修改: 2024-08-16 14:35
ansi-regex	CVE-2021-3807	高危	3.0.0	6.0.1, 5.0.1, 4.1.1, 3.0.1	nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
jsonwebtoken	CVE-2022-23539	高危	8.5.1	9.0.0	jsonwebtoken: Unrestricted key type could lead to legacy keys usagen 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23539 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-12-23 00:15 修改: 2024-06-21 19:15
luxon	CVE-2023-22467	高危	2.5.0	1.28.1, 2.5.2, 3.2.1	luxon: Inefficient regular expression complexity in luxon.js 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-22467 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-01-04 22:15 修改: 2024-02-12 04:15
minimatch	CVE-2022-3517	高危	3.0.4	3.0.5	nodejs-minimatch: ReDoS via the braceExpand function 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-3517 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2022-10-17 20:15 修改: 2023-11-07 03:51
ansi-regex	CVE-2021-3807	高危	4.1.0	6.0.1, 5.0.1, 4.1.1, 3.0.1	nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
ansi-regex	CVE-2021-3807	高危	4.1.0	6.0.1, 5.0.1, 4.1.1, 3.0.1	nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
msgpackr	CVE-2023-52079	高危	1.6.1	1.10.1	msgpackr: crafted message leads to Denial of Service 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52079 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-12-28 16:16 修改: 2024-01-04 19:24
path-to-regexp	CVE-2024-45296	高危	0.1.7	1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0	path-to-regexp: Backtracking regular expressions cause ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
path-to-regexp	CVE-2024-45296	高危	0.1.7	1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0	path-to-regexp: Backtracking regular expressions cause ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
path-to-regexp	CVE-2024-45296	高危	3.2.0	1.9.0, 0.1.10, 8.0.0, 3.3.0, 6.3.0	path-to-regexp: Backtracking regular expressions cause ReDoS 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45296 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-09 19:15 修改: 2024-09-10 12:09
qs	CVE-2022-24999	高危	6.10.1	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
qs	CVE-2022-24999	高危	6.5.2	6.10.3, 6.9.7, 6.8.3, 6.7.3, 6.6.1, 6.5.3, 6.4.1, 6.3.3, 6.2.4	express: "qs" prototype poisoning causes the hang of the node process 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-24999 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2022-11-26 22:15 修改: 2023-09-08 17:15
semver	CVE-2022-25883	高危	5.7.1	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	5.7.1	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
semver	CVE-2022-25883	高危	7.3.7	7.5.2, 6.3.1, 5.7.2	nodejs-semver: Regular expression denial of service 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25883 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-06-21 05:15 修改: 2023-11-07 03:44
ansi-regex	CVE-2021-3807	高危	4.1.0	6.0.1, 5.0.1, 4.1.1, 3.0.1	nodejs-ansi-regex: Regular expression denial of service (ReDoS) matching ANSI escape codes 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-3807 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2021-09-17 07:15 修改: 2023-07-10 19:01
ws	CVE-2024-37890	高危	7.4.6	5.2.4, 6.2.3, 7.5.10, 8.17.1	nodejs-ws: denial of service when handling a request with many HTTP headers 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-37890 镜像层: sha256:3b30000eec1492611ca22ae70cf78217f816fb88bb00995f4ccb0c18c2a49ef6 发布日期: 2024-06-17 20:15 修改: 2024-06-20 12:44
passport	CVE-2022-25896	中危	0.4.1	0.6.0	passport: incorrect session regeneration 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-25896 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-07-01 20:15 修改: 2022-07-13 16:55
express	CVE-2024-29041	中危	4.17.3	4.19.2, 5.0.0-beta.3	express: cause malformed URLs to be evaluated 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-29041 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-03-25 21:15 修改: 2024-03-26 12:55
express	CVE-2024-43796	中危	4.17.3	4.20.0, 5.0.0	express: Improper Input Handling in Express Redirects 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43796 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:07
jsonwebtoken	CVE-2022-23540	中危	8.5.1	9.0.0	jsonwebtoken: Insecure default algorithm in jwt.verify() could lead to signature validation bypass 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23540 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-12-22 19:15 修改: 2024-06-21 19:15
jsonwebtoken	CVE-2022-23541	中危	8.5.1	9.0.0	jsonwebtoken: Insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-23541 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-12-22 18:15 修改: 2024-06-21 19:15
follow-redirects	CVE-2023-26159	中危	1.15.1	1.15.4	follow-redirects: Improper Input Validation due to the improper handling of URLs by the url.parse() 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26159 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-01-02 05:15 修改: 2024-01-23 03:15
request	CVE-2023-28155	中危	2.88.0		The Request package through 2.88.1 for Node.js allows a bypass of SSRF ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-28155 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2023-03-16 15:15 修改: 2024-08-02 13:15
follow-redirects	CVE-2024-28849	中危	1.15.1	1.15.6	follow-redirects: Possible credential leak 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28849 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-03-14 17:15 修改: 2024-03-23 03:15
got	CVE-2022-33987	中危	6.7.1	12.1.0, 11.8.5	nodejs-got: missing verification of requested URLs allows redirects to UNIX sockets 漏洞详情: https://avd.aquasec.com/nvd/cve-2022-33987 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2022-06-18 21:15 修改: 2022-06-28 16:15
@nestjs/core	CVE-2023-26108	中危	8.4.4	9.0.5	@nestjs/core vulnerable to Information Exposure via StreamableFile pipe 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26108 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-03-06 05:15 修改: 2023-11-07 04:09
send	CVE-2024-43799	中危	0.17.2	0.19.0	send: Code Execution Vulnerability in Send Library 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43799 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-10 15:15 修改: 2024-09-20 16:57
serve-static	CVE-2024-43800	中危	1.14.2	1.16.0, 2.1.0	serve-static: Improper Sanitization in serve-static 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-43800 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-09-10 15:15 修改: 2024-09-20 17:36
swagger-ui-dist	CVE-2021-46708	中危	3.52.5	4.1.3	Spoofing attack in swagger-ui-dist 漏洞详情: https://avd.aquasec.com/nvd/cve-2021-46708 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2022-03-11 07:15 修改: 2023-03-28 14:39
swagger-ui-dist	GHSA-qrmm-w75w-3wpx	中危	3.52.5	4.1.3	Server side request forgery in SwaggerUI 漏洞详情: https://github.com/advisories/GHSA-qrmm-w75w-3wpx 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
tar	CVE-2024-28863	中危	4.4.19	6.2.1	node-tar: denial of service while parsing a tar file due to lack of folders depth validation 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28863 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2024-03-21 23:15 修改: 2024-06-10 17:16
tough-cookie	CVE-2023-26136	中危	2.4.3	4.1.3	tough-cookie: prototype pollution in cookie memstore 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-26136 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2023-07-01 05:15 修改: 2024-06-21 19:15
moment-timezone	GHSA-v78c-4p63-2j6c	中危	0.5.34	0.5.35	Cleartext Transmission of Sensitive Information in moment-timezone 漏洞详情: https://github.com/advisories/GHSA-v78c-4p63-2j6c 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
axios	CVE-2023-45857	中危	0.26.1	1.6.0, 0.28.0	axios: exposure of confidential data stored in cookies 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-45857 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-11-08 21:15 修改: 2024-06-21 19:15
xml2js	CVE-2023-0842	中危	0.4.23	0.5.0	node-xml2js: xml2js is vulnerable to prototype pollution 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-0842 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2023-04-05 20:15 修改: 2024-03-14 21:15
moment-timezone	GHSA-56x4-j7p9-fcf9	低危	0.5.34	0.5.35	Command Injection in moment-timezone 漏洞详情: https://github.com/advisories/GHSA-56x4-j7p9-fcf9 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 0001-01-01 00:00 修改: 0001-01-01 00:00
ip	CVE-2023-42282	低危	1.1.5	2.0.1, 1.1.9	nodejs-ip: arbitrary code execution via the isPublic() function 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42282 镜像层: sha256:23436d5fda36cca8af79c2aaebec2ebcda12c611a3b65927ca44ac9ab552de90 发布日期: 2024-02-08 17:15 修改: 2024-10-09 15:14
cookie	CVE-2024-47764	低危	0.4.2	0.7.0	cookie: cookie accepts cookie name, path, and domain with out of bounds characters 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-47764 镜像层: sha256:cd0056d87d381a796a6090ef6eb5c5500893fd3a242bf9213b6cd3cbfed3c5d7 发布日期: 2024-10-04 20:15 修改: 2024-10-07 17:48