docker.io/tensafe/dm8:latest linux/amd64

docker.io/tensafe/dm8:latest - Trivy安全扫描结果 扫描时间: 2026-06-22 09:44
全部漏洞信息
低危漏洞:1 中危漏洞:49 高危漏洞:31 严重漏洞:0

系统OS: none 扫描引擎: Trivy 扫描时间: 2026-06-22 09:44

Java (jar)
低危漏洞:1 中危漏洞:49 高危漏洞:31 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
com.fasterxml.jackson.core:jackson-core CVE-2025-52999 高危 2.13.4 2.15.0 com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52999

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-06-25 17:15 修改: 2026-04-15 00:35
com.fasterxml.jackson.core:jackson-core CVE-2025-52999 高危 2.13.4 2.15.0 com.fasterxml.jackson.core/jackson-core: jackson-core Potential StackoverflowError

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-52999

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-06-25 17:15 修改: 2026-04-15 00:35
com.microsoft.sqlserver:mssql-jdbc CVE-2025-59250 高危 10.2.3 10.2.4.jre11, 11.2.4.jre11, 12.2.1.jre11, 12.6.5.jre11, 12.8.2.jre11, 12.10.2.jre11, 13.2.1.jre11 JDBC Driver for SQL Server has improper input validation issue

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59250

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-10-14 17:16 修改: 2025-10-30 16:35
com.microsoft.sqlserver:mssql-jdbc CVE-2025-59250 高危 8.4.1 10.2.4.jre11, 11.2.4.jre11, 12.2.1.jre11, 12.6.5.jre11, 12.8.2.jre11, 12.10.2.jre11, 13.2.1.jre11 JDBC Driver for SQL Server has improper input validation issue

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-59250

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-10-14 17:16 修改: 2025-10-30 16:35
io.airlift:aircompressor CVE-2025-67721 高危 0.27 2.0.3 aircompressor Snappy and LZ4 Java-based decompressor implementation can leak information from reused output buffer

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-67721

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-12-12 23:15 修改: 2026-03-17 19:40
org.bouncycastle:bcpg-jdk15to18 CVE-2026-3505 高危 1.78.1 1.84 bouncycastle: BC-JAVA: unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3505

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpg-jdk15to18 CVE-2026-3505 高危 1.78.1 1.84 bouncycastle: BC-JAVA: unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3505

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpg-jdk15to18 CVE-2026-3505 高危 1.78.1 1.84 bouncycastle: BC-JAVA: unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3505

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpg-jdk15to18 CVE-2026-3505 高危 1.78.1 1.84 bouncycastle: BC-JAVA: unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3505

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpg-jdk15to18 CVE-2026-3505 高危 1.78.1 1.84 bouncycastle: BC-JAVA: unbounded PGP AEAD chunk size leads to pre-auth resource exhaustion

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-3505

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-5598 高危 1.78.1 1.80.2 bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-06-14 10:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-5598 高危 1.78.1 1.80.2 bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-06-14 10:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-5598 高危 1.78.1 1.80.2 bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-06-14 10:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-5598 高危 1.78.1 1.80.2 bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-06-14 10:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-5598 高危 1.78.1 1.80.2 bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-06-14 10:16
org.eclipse.jetty:jetty-http CVE-2026-2332 高危 9.4.54.v20240208 12.1.7, 12.0.33 org.eclipse.jetty/jetty-http: HTTP request smuggling via chunked extension quoted-string parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-2332

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-14 12:16 修改: 2026-05-01 13:31
org.eclipse.jetty:jetty-server CVE-2024-13009 高危 9.4.54.v20240208 9.4.57.v20241219 jetty-server: Jetty: Gzip Request Body Buffer Corruption

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-13009

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-05-08 18:15 修改: 2025-07-31 16:31
org.jline:jline-remote-telnet GHSA-2r2c-cx56-8933 高危 3.23.0 4.2.1 JLine3 Telnet server: Unauthenticated Remote DoS via Unbounded Telnet NAWS Terminal Geometry

漏洞详情: https://github.com/advisories/GHSA-2r2c-cx56-8933

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-2r2c-cx56-8933 高危 3.23.0 4.2.1 JLine3 Telnet server: Unauthenticated Remote DoS via Unbounded Telnet NAWS Terminal Geometry

漏洞详情: https://github.com/advisories/GHSA-2r2c-cx56-8933

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-47qp-hqvx-6r3f 高危 3.23.0 4.2.1 JLine3 Telnet server: Unauthenticated Remote Memory Exhaustion via Unbounded Telnet NEW-ENVIRON Variables

漏洞详情: https://github.com/advisories/GHSA-47qp-hqvx-6r3f

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-47qp-hqvx-6r3f 高危 3.23.0 4.2.1 JLine3 Telnet server: Unauthenticated Remote Memory Exhaustion via Unbounded Telnet NEW-ENVIRON Variables

漏洞详情: https://github.com/advisories/GHSA-47qp-hqvx-6r3f

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-2r2c-cx56-8933 高危 3.30.3 4.2.1 JLine3 Telnet server: Unauthenticated Remote DoS via Unbounded Telnet NAWS Terminal Geometry

漏洞详情: https://github.com/advisories/GHSA-2r2c-cx56-8933

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-2r2c-cx56-8933 高危 3.30.3 4.2.1 JLine3 Telnet server: Unauthenticated Remote DoS via Unbounded Telnet NAWS Terminal Geometry

漏洞详情: https://github.com/advisories/GHSA-2r2c-cx56-8933

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-47qp-hqvx-6r3f 高危 3.30.3 4.2.1 JLine3 Telnet server: Unauthenticated Remote Memory Exhaustion via Unbounded Telnet NEW-ENVIRON Variables

漏洞详情: https://github.com/advisories/GHSA-47qp-hqvx-6r3f

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.jline:jline-remote-telnet GHSA-47qp-hqvx-6r3f 高危 3.30.3 4.2.1 JLine3 Telnet server: Unauthenticated Remote Memory Exhaustion via Unbounded Telnet NEW-ENVIRON Variables

漏洞详情: https://github.com/advisories/GHSA-47qp-hqvx-6r3f

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-06-18 13:07 修改: 2026-06-18 13:07
org.postgresql:postgresql CVE-2025-49146 高危 42.7.4 42.7.7 pgjdbc: pgjdbc insecure authentication in channel binding

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-49146

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-06-11 15:15 修改: 2025-10-06 19:29
org.postgresql:postgresql CVE-2026-42198 高危 42.7.4 42.7.11 jdbc.postgresql.org: pgjdbc: Client-side Denial of Service via malicious SCRAM-SHA-256 authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42198

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-29 16:16 修改: 2026-05-01 12:51
org.postgresql:postgresql CVE-2026-42198 高危 42.7.8 42.7.11 jdbc.postgresql.org: pgjdbc: Client-side Denial of Service via malicious SCRAM-SHA-256 authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42198

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-29 16:16 修改: 2026-05-01 12:51
org.postgresql:postgresql CVE-2026-42198 高危 42.7.8 42.7.11 jdbc.postgresql.org: pgjdbc: Client-side Denial of Service via malicious SCRAM-SHA-256 authentication

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42198

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-29 16:16 修改: 2026-05-01 12:51
org.xerial.snappy:snappy-java CVE-2023-34455 高危 1.0.4.1 1.1.10.1 snappy-java: Unchecked chunk length leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34455

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2023-06-15 18:15 修改: 2024-11-21 08:07
org.xerial.snappy:snappy-java CVE-2023-43642 高危 1.0.4.1 1.1.10.4 snappy-java: Missing upper bound check on chunk length in snappy-java can lead to Denial of Service (DoS) impact

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-43642

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2023-09-25 20:15 修改: 2024-11-21 08:24
com.fasterxml.jackson.core:jackson-core GHSA-72hv-8253-57qq 中危 2.13.4 2.21.1, 2.18.6 jackson-core: Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition

漏洞详情: https://github.com/advisories/GHSA-72hv-8253-57qq

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-02-28 02:01 修改: 2026-04-07 16:30
net.i2p.crypto:eddsa CVE-2020-36843 中危 0.3.0 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36843

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-03-13 06:15 修改: 2026-04-15 00:35
net.i2p.crypto:eddsa CVE-2020-36843 中危 0.3.0 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36843

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-03-13 06:15 修改: 2026-04-15 00:35
net.i2p.crypto:eddsa CVE-2020-36843 中危 0.3.0 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36843

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-03-13 06:15 修改: 2026-04-15 00:35
org.bouncycastle:bcpkix-jdk15to18 CVE-2025-8916 中危 1.78.1 1.79 org.bouncycastle: BouncyCastle denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8916

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-08-13 10:15 修改: 2026-05-12 13:17
org.bouncycastle:bcpkix-jdk15to18 CVE-2025-8916 中危 1.78.1 1.79 org.bouncycastle: BouncyCastle denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8916

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-08-13 10:15 修改: 2026-05-12 13:17
org.bouncycastle:bcpkix-jdk15to18 CVE-2025-8916 中危 1.78.1 1.79 org.bouncycastle: BouncyCastle denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8916

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-08-13 10:15 修改: 2026-05-12 13:17
org.bouncycastle:bcpkix-jdk15to18 CVE-2025-8916 中危 1.78.1 1.79 org.bouncycastle: BouncyCastle denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8916

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-08-13 10:15 修改: 2026-05-12 13:17
org.bouncycastle:bcpkix-jdk15to18 CVE-2025-8916 中危 1.78.1 1.79 org.bouncycastle: BouncyCastle denial of service

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-8916

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-08-13 10:15 修改: 2026-05-12 13:17
org.bouncycastle:bcpkix-jdk15to18 CVE-2026-5588 中危 1.78.1 1.84 bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpkix-jdk15to18 CVE-2026-5588 中危 1.78.1 1.84 bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpkix-jdk15to18 CVE-2026-5588 中危 1.78.1 1.84 bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpkix-jdk15to18 CVE-2026-5588 中危 1.78.1 1.84 bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcpkix-jdk15to18 CVE-2026-5588 中危 1.78.1 1.84 bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
net.i2p.crypto:eddsa CVE-2020-36843 中危 0.3.0 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36843

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-03-13 06:15 修改: 2026-04-15 00:35
net.i2p.crypto:eddsa CVE-2020-36843 中危 0.3.0 The implementation of EdDSA in EdDSA-Java (aka ed25519-java) through 0 ...

漏洞详情: https://avd.aquasec.com/nvd/cve-2020-36843

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-03-13 06:15 修改: 2026-04-15 00:35
org.apache.commons:commons-lang3 CVE-2025-48924 中危 3.12.0 3.18.0 commons-lang/commons-lang: org.apache.commons/commons-lang3: Uncontrolled Recursion vulnerability in Apache Commons Lang

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48924

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-11 15:15 修改: 2025-11-04 22:16
org.apache.commons:commons-lang3 CVE-2025-48924 中危 3.8.1 3.18.0 commons-lang/commons-lang: org.apache.commons/commons-lang3: Uncontrolled Recursion vulnerability in Apache Commons Lang

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-48924

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-11 15:15 修改: 2025-11-04 22:16
org.apache.logging.log4j:log4j-core CVE-2025-68161 中危 2.24.3 2.25.3 Apache Log4j: Apache Log4j Core: Information disclosure via missing TLS hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68161

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-12-18 21:15 修改: 2026-01-20 01:15
org.bouncycastle:bcprov-jdk15to18 CVE-2026-0636 中危 1.78.1 1.84 bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-0636 中危 1.78.1 1.84 bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-0636 中危 1.78.1 1.84 bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-0636 中危 1.78.1 1.84 bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.bouncycastle:bcprov-jdk15to18 CVE-2026-0636 中危 1.78.1 1.84 bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-15 10:16 修改: 2026-05-19 00:16
org.eclipse.angus:smtp CVE-2025-7962 中危 2.0.1 2.0.4 com.sun.mail/jakarta.mail: Jakarta Mail SMTP Injection Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7962

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-21 18:15 修改: 2025-11-13 18:36
org.eclipse.angus:smtp CVE-2025-7962 中危 2.0.1 2.0.4 com.sun.mail/jakarta.mail: Jakarta Mail SMTP Injection Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7962

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-21 18:15 修改: 2025-11-13 18:36
org.eclipse.angus:smtp CVE-2025-7962 中危 2.0.1 2.0.4 com.sun.mail/jakarta.mail: Jakarta Mail SMTP Injection Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7962

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-21 18:15 修改: 2025-11-13 18:36
org.eclipse.angus:smtp CVE-2025-7962 中危 2.0.1 2.0.4 com.sun.mail/jakarta.mail: Jakarta Mail SMTP Injection Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7962

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-21 18:15 修改: 2025-11-13 18:36
org.eclipse.angus:smtp CVE-2025-7962 中危 2.0.1 2.0.4 com.sun.mail/jakarta.mail: Jakarta Mail SMTP Injection Vulnerability

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-7962

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-07-21 18:15 修改: 2025-11-13 18:36
org.apache.logging.log4j:log4j-core CVE-2025-68161 中危 2.24.3 2.25.3 Apache Log4j: Apache Log4j Core: Information disclosure via missing TLS hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68161

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-12-18 21:15 修改: 2026-01-20 01:15
org.eclipse.jetty:jetty-http CVE-2024-6763 中危 9.4.54.v20240208 12.0.12 org.eclipse.jetty:jetty-http: jetty: Jetty URI parsing of invalid authority

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-6763

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2024-10-14 16:15 修改: 2025-07-10 15:04
org.apache.logging.log4j:log4j-core CVE-2025-68161 中危 2.24.3 2.25.3 Apache Log4j: Apache Log4j Core: Information disclosure via missing TLS hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68161

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-12-18 21:15 修改: 2026-01-20 01:15
org.eclipse.jetty:jetty-server CVE-2024-8184 中危 9.4.54.v20240208 12.0.9, 10.0.24, 11.0.24, 9.4.56 org.eclipse.jetty:jetty-server: jetty: Jetty ThreadLimitHandler.getRemote() vulnerable to remote DoS attacks

漏洞详情: https://avd.aquasec.com/nvd/cve-2024-8184

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2024-10-14 16:15 修改: 2025-11-03 20:17
org.apache.logging.log4j:log4j-core CVE-2025-68161 中危 2.24.3 2.25.3 Apache Log4j: Apache Log4j Core: Information disclosure via missing TLS hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-68161

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2025-12-18 21:15 修改: 2026-01-20 01:15
org.apache.logging.log4j:log4j-core CVE-2026-34477 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-05-06 16:49
org.apache.logging.log4j:log4j-core CVE-2026-34477 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-05-06 16:49
org.apache.logging.log4j:log4j-core CVE-2026-34477 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-05-06 16:49
org.apache.logging.log4j:log4j-core CVE-2026-34477 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-05-06 16:49
org.apache.logging.log4j:log4j-core CVE-2026-34478 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Log injection via CRLF sequences due to configuration attribute renames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34478

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:10
org.apache.logging.log4j:log4j-core CVE-2026-34478 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Log injection via CRLF sequences due to configuration attribute renames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34478

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:10
org.apache.logging.log4j:log4j-core CVE-2026-34478 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Log injection via CRLF sequences due to configuration attribute renames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34478

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:10
org.apache.logging.log4j:log4j-core CVE-2026-34478 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Log injection via CRLF sequences due to configuration attribute renames

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34478

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:10
org.apache.logging.log4j:log4j-core CVE-2026-34480 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:21
org.apache.logging.log4j:log4j-core CVE-2026-34480 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:21
org.apache.logging.log4j:log4j-core CVE-2026-34480 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:21
org.apache.logging.log4j:log4j-core CVE-2026-34480 中危 2.24.3 2.25.4 org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging

漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-04-10 16:16 修改: 2026-04-24 18:21
com.fasterxml.jackson.core:jackson-core GHSA-72hv-8253-57qq 中危 2.13.4 2.21.1, 2.18.6 jackson-core: Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition

漏洞详情: https://github.com/advisories/GHSA-72hv-8253-57qq

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-02-28 02:01 修改: 2026-04-07 16:30
org.xerial.snappy:snappy-java CVE-2023-34453 中危 1.0.4.1 1.1.10.1 snappy-java: Integer overflow in shuffle leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34453

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2023-06-15 17:15 修改: 2024-11-21 08:07
org.xerial.snappy:snappy-java CVE-2023-34454 中危 1.0.4.1 1.1.10.1 snappy-java: Integer overflow in compress leads to DoS

漏洞详情: https://avd.aquasec.com/nvd/cve-2023-34454

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2023-06-15 17:15 修改: 2024-12-12 17:15
org.eclipse.jetty:jetty-http CVE-2025-11143 低危 9.4.54.v20240208 12.0.31, 12.1.5 org.eclipse.jetty/jetty-http: org.eclipse.jetty: Security bypass due to differential URI parsing

漏洞详情: https://avd.aquasec.com/nvd/cve-2025-11143

镜像层: sha256:dd1e6aa836cffeaab7fc2619b7a942eb38163bcd147cf97c509c624679deb6c9

发布日期: 2026-03-05 10:15 修改: 2026-03-06 20:30
Python (python-pkg)
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/client_ssl/DEVELOP/client-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/client_ssl/DMHR/client-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/client_ssl/SYSAUDITOR/client-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/client_ssl/SYSDBA/client-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/client_ssl/SYSDBO/client-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/client_ssl/SYSSSO/client-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
/home/dmdba/dmdbms/bin/server_ssl/server-key.pem ()
低危漏洞:0 中危漏洞:0 高危漏洞:0 严重漏洞:0
软件包 漏洞 安全状态 安装版本 修复版本 漏洞信息
检测到您正在使用广告拦截插件,本站为公益站点,依赖广告维持运转 🙏 查看如何关闭 ×