docker.io/pterodactylchina/panel:latest linux/amd64

docker.io/pterodactylchina/panel:latest - Trivy安全扫描结果 扫描时间: 2024-11-23 16:03
全部漏洞信息
低危漏洞:10 中危漏洞:52 高危漏洞:23 严重漏洞:2

系统OS: alpine 3.19.1 扫描引擎: Trivy 扫描时间: 2024-11-23 16:03

docker.io/pterodactylchina/panel:latest (alpine 3.19.1) (alpine)
低危漏洞:7 中危漏洞:52 高危漏洞:15 严重漏洞:2
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
libexpat CVE-2024-45491 严重 2.6.2-r0 2.6.3-r0 libexpat: Integer Overflow or Wraparound

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45491

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libexpat CVE-2024-45492 严重 2.6.2-r0 2.6.3-r0 libexpat: integer overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45492

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-30 03:15 修改: 2024-09-04 14:28
libcurl CVE-2024-2398 高危 8.5.0-r0 8.7.1-r0 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
libcurl CVE-2024-6197 高危 8.5.0-r0 8.9.0-r0 curl: freeing stack buffer in utf8asn1str

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6197

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-07-24 08:15 修改: 2024-08-26 15:25
curl CVE-2024-2398 高危 8.5.0-r0 8.7.1-r0 curl: HTTP/2 push headers memory-leak

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2398

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-07-30 02:15
curl CVE-2024-6197 高危 8.5.0-r0 8.9.0-r0 curl: freeing stack buffer in utf8asn1str

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6197

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-07-24 08:15 修改: 2024-08-26 15:25
libexpat CVE-2024-45490 高危 2.6.2-r0 2.6.3-r0 libexpat: Negative Length Parsing Vulnerability in libexpat

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-45490

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-30 03:15 修改: 2024-10-18 12:24
py3-setuptools CVE-2024-6345 高危 68.2.2-r0 70.3.0-r0 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
py3-setuptools-pyc CVE-2024-6345 高危 68.2.2-r0 70.3.0-r0 pypa/setuptools: Remote code execution via download functions in the package_index module in pypa/setuptools

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6345

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-07-15 01:15 修改: 2024-07-15 13:00
pyc CVE-2024-6232 高危 3.11.9-r0 3.11.10-r0 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
pyc CVE-2024-7592 高危 3.11.9-r0 3.11.10-r0 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
python3 CVE-2024-6232 高危 3.11.9-r0 3.11.10-r0 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3 CVE-2024-7592 高危 3.11.9-r0 3.11.10-r0 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
python3-pyc CVE-2024-6232 高危 3.11.9-r0 3.11.10-r0 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3-pyc CVE-2024-7592 高危 3.11.9-r0 3.11.10-r0 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
python3-pycache-pyc0 CVE-2024-6232 高危 3.11.9-r0 3.11.10-r0 python: cpython: tarfile: ReDos via excessive backtracking while parsing header values

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6232

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-09-03 13:15 修改: 2024-09-04 21:15
python3-pycache-pyc0 CVE-2024-7592 高危 3.11.9-r0 3.11.10-r0 cpython: python: Uncontrolled CPU resource consumption when in http.cookies module

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-7592

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-19 19:15 修改: 2024-09-04 21:15
libcrypto3 CVE-2024-5535 中危 3.1.4-r6 3.1.6-r0 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libcrypto3 CVE-2024-6119 中危 3.1.4-r6 3.1.7-r0 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
busybox CVE-2023-42365 中危 1.36.1-r15 1.36.1-r19 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox CVE-2023-42366 中危 1.36.1-r15 1.36.1-r16 busybox: A heap-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
libcurl CVE-2024-0853 中危 8.5.0-r0 8.6.0-r0 curl: OCSP verification bypass with TLS session reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0853

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-02-03 14:15 修改: 2024-05-03 13:15
libcurl CVE-2024-2004 中危 8.5.0-r0 8.7.1-r0 curl: Usage of disabled protocol

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2004

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-10-29 16:35
libcurl CVE-2024-2379 中危 8.5.0-r0 8.7.1-r0 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
libcurl CVE-2024-2466 中危 8.5.0-r0 8.7.1-r0 curl: TLS certificate check bypass with mbedTLS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2466

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-08-23 19:35
libcurl CVE-2024-6874 中危 8.5.0-r0 8.9.0-r0 curl: macidn punycode buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6874

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-07-24 08:15 修改: 2024-09-10 15:27
busybox-binsh CVE-2023-42363 中危 1.36.1-r15 1.36.1-r17 busybox: use-after-free in awk

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
busybox-binsh CVE-2023-42364 中危 1.36.1-r15 1.36.1-r19 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
busybox-binsh CVE-2023-42365 中危 1.36.1-r15 1.36.1-r19 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
libexpat CVE-2024-50602 中危 2.6.2-r0 2.6.4-r0 libexpat: expat: DoS via XML_ResumeParser

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50602

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-10-27 05:15 修改: 2024-10-30 18:35
libssl3 CVE-2024-4603 中危 3.1.4-r6 3.1.5-r0 openssl: Excessive time spent checking DSA keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libssl3 CVE-2024-4741 中危 3.1.4-r6 3.1.6-r0 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
libssl3 CVE-2024-5535 中危 3.1.4-r6 3.1.6-r0 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
libssl3 CVE-2024-6119 中危 3.1.4-r6 3.1.7-r0 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
libxml2 CVE-2024-34459 中危 2.11.7-r0 2.11.8-r0 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
libxml2-dev CVE-2024-34459 中危 2.11.7-r0 2.11.8-r0 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
libxml2-utils CVE-2024-34459 中危 2.11.7-r0 2.11.8-r0 libxml2: buffer over-read in xmlHTMLPrintFileContext in xmllint.c

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-34459

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-05-14 15:39 修改: 2024-08-22 18:35
openssl CVE-2024-4603 中危 3.1.4-r6 3.1.5-r0 openssl: Excessive time spent checking DSA keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
openssl CVE-2024-4741 中危 3.1.4-r6 3.1.6-r0 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
openssl CVE-2024-5535 中危 3.1.4-r6 3.1.6-r0 openssl: SSL_select_next_proto buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-5535

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-06-27 11:15 修改: 2024-07-12 14:15
openssl CVE-2024-6119 中危 3.1.4-r6 3.1.7-r0 openssl: Possible denial of service in X.509 name checks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6119

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-09-03 16:15 修改: 2024-09-03 21:35
py3-requests CVE-2024-35195 中危 2.31.0-r1 2.32.3-r0 requests: subsequent requests to the same host ignore cert verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-05-20 21:15 修改: 2024-06-10 17:16
py3-requests-pyc CVE-2024-35195 中危 2.31.0-r1 2.32.3-r0 requests: subsequent requests to the same host ignore cert verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-35195

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-05-20 21:15 修改: 2024-06-10 17:16
busybox-binsh CVE-2023-42366 中危 1.36.1-r15 1.36.1-r16 busybox: A heap-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
busybox CVE-2023-42363 中危 1.36.1-r15 1.36.1-r17 busybox: use-after-free in awk

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
busybox CVE-2023-42364 中危 1.36.1-r15 1.36.1-r19 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
curl CVE-2024-0853 中危 8.5.0-r0 8.6.0-r0 curl: OCSP verification bypass with TLS session reuse

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-0853

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-02-03 14:15 修改: 2024-05-03 13:15
pyc CVE-2023-27043 中危 3.11.9-r0 3.11.10-r0 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
pyc CVE-2024-6923 中危 3.11.9-r0 3.11.10-r0 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
pyc CVE-2024-8088 中危 3.11.9-r0 3.11.9-r1 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
curl CVE-2024-2004 中危 8.5.0-r0 8.7.1-r0 curl: Usage of disabled protocol

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2004

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-10-29 16:35
curl CVE-2024-2379 中危 8.5.0-r0 8.7.1-r0 curl: QUIC certificate check bypass with wolfSSL

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2379

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-11-14 20:35
python3 CVE-2023-27043 中危 3.11.9-r0 3.11.10-r0 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3 CVE-2024-6923 中危 3.11.9-r0 3.11.10-r0 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3 CVE-2024-8088 中危 3.11.9-r0 3.11.9-r1 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
curl CVE-2024-2466 中危 8.5.0-r0 8.7.1-r0 curl: TLS certificate check bypass with mbedTLS

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-2466

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-03-27 08:15 修改: 2024-08-23 19:35
curl CVE-2024-6874 中危 8.5.0-r0 8.9.0-r0 curl: macidn punycode buffer overread

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6874

镜像层: sha256:ac9dba9d21f4a81a7e570dc6850346615b2c524800309b771d27ab197daec34d

发布日期: 2024-07-24 08:15 修改: 2024-09-10 15:27
python3-pyc CVE-2023-27043 中危 3.11.9-r0 3.11.10-r0 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3-pyc CVE-2024-6923 中危 3.11.9-r0 3.11.10-r0 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3-pyc CVE-2024-8088 中危 3.11.9-r0 3.11.9-r1 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
libcrypto3 CVE-2024-4603 中危 3.1.4-r6 3.1.5-r0 openssl: Excessive time spent checking DSA keys and parameters

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4603

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-05-16 16:15 修改: 2024-10-14 15:15
libcrypto3 CVE-2024-4741 中危 3.1.4-r6 3.1.6-r0 openssl: Use After Free with SSL_free_buffers

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4741

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-11-13 11:15 修改: 2024-11-13 17:01
python3-pycache-pyc0 CVE-2023-27043 中危 3.11.9-r0 3.11.10-r0 python: Parsing errors in email/_parseaddr.py lead to incorrect value in email address part of tuple

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27043

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-04-19 00:15 修改: 2024-02-26 16:27
python3-pycache-pyc0 CVE-2024-6923 中危 3.11.9-r0 3.11.10-r0 cpython: python: email module doesn't properly quotes newlines in email headers, allowing header injection

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6923

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-01 14:15 修改: 2024-09-04 21:15
python3-pycache-pyc0 CVE-2024-8088 中危 3.11.9-r0 3.11.9-r1 python: cpython: Iterating over a malicious ZIP file may lead to Denial of Service

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8088

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-08-22 19:15 修改: 2024-09-04 23:15
ssl_client CVE-2023-42363 中危 1.36.1-r15 1.36.1-r17 busybox: use-after-free in awk

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42363

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 22:15 修改: 2023-11-30 05:06
ssl_client CVE-2023-42364 中危 1.36.1-r15 1.36.1-r19 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42364

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2024-10-11 21:36
ssl_client CVE-2023-42365 中危 1.36.1-r15 1.36.1-r19 busybox: use-after-free

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42365

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
ssl_client CVE-2023-42366 中危 1.36.1-r15 1.36.1-r16 busybox: A heap-buffer-overflow

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-42366

镜像层: sha256:d4fc045c9e3a848011de66f34b81f052d4f2c15a17bb196d637e526349601820

发布日期: 2023-11-27 23:15 修改: 2023-11-30 05:08
libssl3 CVE-2024-9143 低危 3.1.4-r6 3.1.7-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
python3 CVE-2024-4032 低危 3.11.9-r0 3.11.10-r0 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3-pycache-pyc0 CVE-2024-4032 低危 3.11.9-r0 3.11.10-r0 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
python3-pyc CVE-2024-4032 低危 3.11.9-r0 3.11.10-r0 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
libcrypto3 CVE-2024-9143 低危 3.1.4-r6 3.1.7-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
openssl CVE-2024-9143 低危 3.1.4-r6 3.1.7-r1 openssl: Low-level invalid GF(2^m) parameters lead to OOB memory access

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-9143

镜像层: sha256:77e4f35f0d56ea8672c59f7c53ad6af3039b3526dd07c33ff8ffba5b5d933ccc

发布日期: 2024-10-16 17:15 修改: 2024-11-08 16:35
pyc CVE-2024-4032 低危 3.11.9-r0 3.11.10-r0 python: incorrect IPv4 and IPv6 private ranges

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-4032

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-06-17 15:15 修改: 2024-08-29 21:35
pyc CVE-2015-2104 未知 3.11.9-r0 3.11.10-r0

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2104

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2020-02-19 14:15 修改: 2023-11-07 02:25
python3 CVE-2015-2104 未知 3.11.9-r0 3.11.10-r0

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2104

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2020-02-19 14:15 修改: 2023-11-07 02:25
python3-pyc CVE-2015-2104 未知 3.11.9-r0 3.11.10-r0

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2104

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2020-02-19 14:15 修改: 2023-11-07 02:25
python3-pycache-pyc0 CVE-2015-2104 未知 3.11.9-r0 3.11.10-r0

漏洞详情: https://avd.aquasec.com/nvd/cve-2015-2104

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2020-02-19 14:15 修改: 2023-11-07 02:25
app/vendor/composer/installed.json (composer-vendor)
低危漏洞:3 中危漏洞:0 高危漏洞:8 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
guzzlehttp/psr7 CVE-2023-29197 高危 2.4.3 2.4.5, 1.9.1 guzzlehttp/psr7 is a PSR-7 HTTP message library implementation in PHP. ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-29197

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-04-17 22:15 修改: 2024-01-01 01:15
laravel/framework CVE-2024-52301 高危 v10.1.4 8.83.28, 9.52.17, 10.48.23, 11.31.0, 6.20.45, 7.30.7 Laravel is a web application framework. When the register_argc_argv ph ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52301

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-11-12 20:15 修改: 2024-11-13 17:01
phpseclib/phpseclib CVE-2023-27560 高危 3.0.18 3.0.19 Math/PrimeField.php in phpseclib 3.x before 3.0.19 has an infinite loo ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-27560

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-03-03 06:15 修改: 2023-03-10 18:54
phpseclib/phpseclib CVE-2023-49316 高危 3.0.18 3.0.34 In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-49316

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-11-27 18:15 修改: 2023-12-01 20:54
phpseclib/phpseclib CVE-2023-52892 高危 3.0.18 1.0.22, 2.0.46, 3.0.33 In phpseclib before 1.0.22, 2.x before 2.0.46, and 3.x before 3.0.33, ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-52892

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-06-27 22:15 修改: 2024-08-21 20:35
phpseclib/phpseclib CVE-2024-27354 高危 3.0.18 2.0.47, 1.0.23, 3.0.36 An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27354

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-03-01 23:15 修改: 2024-08-01 13:48
phpseclib/phpseclib CVE-2024-27355 高危 3.0.18 2.0.47, 1.0.23, 3.0.36 An issue was discovered in phpseclib 1.x before 1.0.23, 2.x before 2.0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-27355

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-03-01 23:15 修改: 2024-08-13 14:35
symfony/process CVE-2024-51736 高危 v6.2.5 5.2.0, 5.4.46, 6.1.0, 6.4.0, 3.0.0, 5.3.0, 6.3.0, 5.0.0, 5.4.0, 7.1.7, 5.1.0, 6.2.0, 6.4.14, 7.1.0, 4.0.0 CVE-2024-51736: Command execution hijack on Windows with Process class

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-51736

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-11-06 21:15 修改: 2024-11-08 19:01
symfony/http-client CVE-2024-50342 低危 v6.2.6 5.3.0, 5.4.47, 6.4.0, 7.1.0, 7.1.8, 5.0.0, 5.1.0, 5.4.0, 6.1.0, 4.4.0, 5.2.0, 6.3.0, 6.2.0, 6.4.15 symfony/http-client is a module for the Symphony PHP framework which p ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50342

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-11-06 21:15 修改: 2024-11-08 19:01
symfony/http-foundation CVE-2024-50345 低危 v6.2.6 4.0.0, 6.1.0, 6.4.0, 7.1.0, 6.3.0, 6.4.14, 7.1.7, 3.0.0, 5.2.0, 5.3.0, 5.4.0, 5.4.46, 5.0.0, 5.1.0, 6.2.0 symfony/http-foundation is a module for the Symphony PHP framework whi ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-50345

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2024-11-06 21:15 修改: 2024-11-08 19:01
aws/aws-sdk-php CVE-2023-51651 低危 3.260.1 3.288.1 Potential URI resolution path traversal in the AWS SDK for PHP

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-51651

镜像层: sha256:ce7f5fc35de6bab92147529b91fef8adf1ef5da5f14ce0755f6cc9abe98819fe

发布日期: 2023-12-22 21:15 修改: 2024-01-03 18:32