| org.bouncycastle:bcprov-jdk15to18 |
CVE-2025-14813 |
严重 |
1.78.1 |
1.84 |
bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14813
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:16
|
| org.bouncycastle:bcprov-jdk15to18 |
CVE-2025-14813 |
严重 |
1.79 |
1.84 |
bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14813
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:16
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2025-14813 |
严重 |
1.82 |
1.80.2, 1.81.1, 1.84 |
bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14813
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:16
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2025-14813 |
严重 |
1.82 |
1.80.2, 1.81.1, 1.84 |
bouncycastle: BC-JAVA: GOSTCTR implementation unable to process more than 255 blocks correctly
漏洞详情: https://avd.aquasec.com/nvd/cve-2025-14813
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:16
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.18.2 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| io.netty:netty-codec |
CVE-2026-42583 |
高危 |
4.1.131.Final |
4.1.133.Final |
netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42583
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec |
CVE-2026-42583 |
高危 |
4.1.131.Final |
4.1.133.Final |
netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42583
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec |
CVE-2026-42583 |
高危 |
4.1.131.Final |
4.1.133.Final |
netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42583
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec |
CVE-2026-42583 |
高危 |
4.1.131.Final |
4.1.133.Final |
netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42583
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec |
CVE-2026-42583 |
高危 |
4.1.131.Final |
4.1.133.Final |
netty: io.netty/netty-codec-compression: io.netty/netty-codec: Netty: Denial of Service via excessive memory allocation in LZ4FrameDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42583
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.10.Final |
io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33870
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.10.Final |
io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33870
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.10.Final |
io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33870
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.10.Final |
io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33870
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http |
CVE-2026-33870 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.10.Final |
io.netty/netty-codec-http: Netty: Request smuggling via incorrect parsing of HTTP/1.1 chunked transfer encoding extension values
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33870
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42584
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42584
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42584
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42584
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42584 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Incorrect HTTP response parsing leads to data confusion
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42584
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.11.Final |
netty: Netty: Denial of Service via HTTP/2 CONTINUATION frame flood
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33871
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.11.Final |
netty: Netty: Denial of Service via HTTP/2 CONTINUATION frame flood
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33871
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http2 |
CVE-2026-33871 |
高危 |
4.1.131.Final |
4.1.132.Final, 4.2.11.Final |
netty: Netty: Denial of Service via HTTP/2 CONTINUATION frame flood
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33871
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-03-27 20:16 修改: 2026-07-03 13:17
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http2 |
CVE-2026-42587 |
高危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: io.netty/netty-codec-http2: Netty: Denial of Service via unbounded memory allocation in HTTP content decompression
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42587
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-handler |
CVE-2026-44249 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44249
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-11 22:16 修改: 2026-07-10 12:16
|
| io.netty:netty-handler |
CVE-2026-44249 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44249
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-11 22:16 修改: 2026-07-10 12:16
|
| io.netty:netty-handler |
CVE-2026-44249 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44249
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-11 22:16 修改: 2026-07-10 12:16
|
| io.netty:netty-handler |
CVE-2026-44249 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44249
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-11 22:16 修改: 2026-07-10 12:16
|
| io.netty:netty-handler |
CVE-2026-44249 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: netty-handler: IPv6 subnet rule bypass due to incorrect masking operation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-44249
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-11 22:16 修改: 2026-07-10 12:16
|
| io.netty:netty-handler |
CVE-2026-45416 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45416
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-45416 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45416
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-45416 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45416
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-45416 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45416
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-45416 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Denial of Service due to eager buffer allocation in TLS handshake
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-45416
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-50010 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Improper trust manager handling leads to hostname verification bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50010
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-50010 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Improper trust manager handling leads to hostname verification bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50010
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-50010 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Improper trust manager handling leads to hostname verification bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50010
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-50010 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Improper trust manager handling leads to hostname verification bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50010
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-handler |
CVE-2026-50010 |
高危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-handler: Netty: Improper trust manager handling leads to hostname verification bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50010
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| org.apache.kafka:kafka-clients |
CVE-2026-35554 |
高危 |
3.9.1 |
3.9.2, 4.0.2, 4.1.2 |
Apache Kafka Clients: Apache Kafka Clients: Information disclosure and data corruption due to race condition in producer buffer management
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-35554
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-07 14:16 修改: 2026-06-17 10:40
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.14.1 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| org.bouncycastle:bcprov-jdk15to18 |
CVE-2026-5598 |
高危 |
1.78.1 |
1.80.2 |
bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54512 |
高危 |
2.14.1 |
2.18.8, 3.1.4, 2.21.4 |
jackson-databind: jackson-databind: Arbitrary code execution via PolymorphicTypeValidator bypass
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54512
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 21:01
|
| org.bouncycastle:bcprov-jdk15to18 |
CVE-2026-5598 |
高危 |
1.79 |
1.80.2 |
bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.14.1 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54513 |
高危 |
2.14.1 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: Jackson-databind: Security bypass allows arbitrary code execution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54513
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-07-09 13:17
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-5598 |
高危 |
1.82 |
1.84 |
bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-5598 |
高危 |
1.82 |
1.84 |
bouncycastle: BC-JAVA: private key leakage via non-constant time comparisons
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5598
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
中危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: Netty: HTTP request smuggling via URI manipulation and CRLF injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41417
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-06 22:16 修改: 2026-06-17 10:46
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
中危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: Netty: HTTP request smuggling via URI manipulation and CRLF injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41417
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-06 22:16 修改: 2026-06-17 10:46
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: Netty: Request smuggling via chunk size parser integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42580
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: Netty: Request smuggling via chunk size parser integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42580
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: Netty: Request smuggling via chunk size parser integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42580
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: Netty: Request smuggling via chunk size parser integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42580
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42580 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: Netty: Request smuggling via chunk size parser integer overflow
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42580
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42581
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42581
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42581
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42581
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42581 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: HTTP Request Smuggling due to improper handling of conflicting HTTP/1.0 headers
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42581
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Request smuggling via malformed Transfer-Encoding parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42585
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Request smuggling via malformed Transfer-Encoding parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42585
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Request smuggling via malformed Transfer-Encoding parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42585
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Request smuggling via malformed Transfer-Encoding parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42585
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-42585 |
中危 |
4.1.131.Final |
4.2.13.Final, 4.1.133.Final |
netty: io.netty/netty-codec-http: Netty: Request smuggling via malformed Transfer-Encoding parsing
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42585
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-06-17 10:48
|
| io.netty:netty-codec-http |
CVE-2026-50020 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http: Netty: Data manipulation via request-boundary confusion in HttpObjectDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50020
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| io.netty:netty-codec-http |
CVE-2026-50020 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http: Netty: Data manipulation via request-boundary confusion in HttpObjectDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50020
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| io.netty:netty-codec-http |
CVE-2026-50020 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http: Netty: Data manipulation via request-boundary confusion in HttpObjectDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50020
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| io.netty:netty-codec-http |
CVE-2026-50020 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http: Netty: Data manipulation via request-boundary confusion in HttpObjectDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50020
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| io.netty:netty-codec-http |
CVE-2026-50020 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http: Netty: Data manipulation via request-boundary confusion in HttpObjectDecoder
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50020
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| io.netty:netty-codec-http2 |
CVE-2026-47244 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http2: Netty: Denial of Service via uncontrolled HTTP/2 concurrent streams
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47244
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-06-17 10:54
|
| io.netty:netty-codec-http2 |
CVE-2026-47244 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http2: Netty: Denial of Service via uncontrolled HTTP/2 concurrent streams
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47244
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-06-17 10:54
|
| io.netty:netty-codec-http2 |
CVE-2026-47244 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http2: Netty: Denial of Service via uncontrolled HTTP/2 concurrent streams
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-47244
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 15:16 修改: 2026-06-17 10:54
|
| io.netty:netty-codec-http2 |
CVE-2026-48043 |
中危 |
4.1.131.Final |
4.1.135.Final, 4.2.15.Final |
netty-codec-http2: netty-codec-http2: Denial of Service due to resource leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48043
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-codec-http2 |
CVE-2026-48043 |
中危 |
4.1.131.Final |
4.1.135.Final, 4.2.15.Final |
netty-codec-http2: netty-codec-http2: Denial of Service due to resource leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48043
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-codec-http2 |
CVE-2026-48043 |
中危 |
4.1.131.Final |
4.1.135.Final, 4.2.15.Final |
netty-codec-http2: netty-codec-http2: Denial of Service due to resource leak
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-48043
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-07-10 12:17
|
| io.netty:netty-codec-http2 |
CVE-2026-50560 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http2: Netty: Denial of Service due to HTTP/2 max header size handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50560
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| io.netty:netty-codec-http2 |
CVE-2026-50560 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http2: Netty: Denial of Service due to HTTP/2 max header size handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50560
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| io.netty:netty-codec-http2 |
CVE-2026-50560 |
中危 |
4.1.131.Final |
4.2.15.Final, 4.1.135.Final |
netty-codec-http2: Netty: Denial of Service due to HTTP/2 max header size handling
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-50560
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-12 16:16 修改: 2026-06-17 10:57
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.14.1 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
中危 |
2.18.2 |
2.21.1, 2.18.6 |
jackson-core: Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition
漏洞详情: https://github.com/advisories/GHSA-72hv-8253-57qq
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-02-28 02:01 修改: 2026-04-07 16:30
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
中危 |
2.18.2 |
2.21.1, 2.18.6 |
jackson-core: Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition
漏洞详情: https://github.com/advisories/GHSA-72hv-8253-57qq
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-02-28 02:01 修改: 2026-04-07 16:30
|
| com.fasterxml.jackson.core:jackson-core |
GHSA-72hv-8253-57qq |
中危 |
2.18.2 |
2.21.1, 2.18.6 |
jackson-core: Number Length Constraint Bypass in Async Parser Leads to Potential DoS Condition
漏洞详情: https://github.com/advisories/GHSA-72hv-8253-57qq
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-02-28 02:01 修改: 2026-04-07 16:30
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.14.1 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.14.1 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.14.1 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| org.apache.kafka:kafka-clients |
CVE-2026-33558 |
中危 |
3.9.1 |
3.9.2, 4.0.1 |
Apache Kafka exposes sensitive information in its DEBUG logs
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-33558
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-20 14:16 修改: 2026-06-17 10:37
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34477 |
中危 |
2.25.3 |
2.25.4 |
org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34477 |
中危 |
2.25.3 |
2.25.4 |
org.apache.logging.log4j/log4j-core: Apache Log4j Core: Man-in-the-middle attack due to incomplete hostname verification
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34477
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34478 |
中危 |
2.25.3 |
2.25.4 |
org.apache.logging.log4j/log4j-core: Apache Log4j Core: Log injection via CRLF sequences due to configuration attribute renames
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34478
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34478 |
中危 |
2.25.3 |
2.25.4 |
org.apache.logging.log4j/log4j-core: Apache Log4j Core: Log injection via CRLF sequences due to configuration attribute renames
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34478
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34480 |
中危 |
2.25.3 |
2.25.4 |
org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39
|
| org.apache.logging.log4j:log4j-core |
CVE-2026-34480 |
中危 |
2.25.3 |
2.25.4 |
org.apache.logging.log4j/log4j-core: Apache Log4j Core: Invalid XML output causes denial of service in logging
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-34480
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-10 16:16 修改: 2026-06-17 10:39
|
| org.bouncycastle:bcpkix-jdk15to18 |
CVE-2026-5588 |
中危 |
1.79 |
1.84 |
bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| org.bouncycastle:bcpkix-jdk18on |
CVE-2026-5588 |
中危 |
1.79 |
1.84 |
bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| org.bouncycastle:bcpkix-jdk18on |
CVE-2026-5588 |
中危 |
1.82 |
1.84 |
bouncycastle: BC-JAVA: PKIX draft CompositeVerifier accepts empty signature sequence as valid
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-5588
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:21
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54514 |
中危 |
2.18.2 |
2.18.8, 2.21.4, 3.1.4 |
jackson-databind: jackson-databind: Information Disclosure via Eager DNS Resolution
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54514
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-27 20:55
|
| org.bouncycastle:bcprov-jdk15to18 |
CVE-2026-0636 |
中危 |
1.78.1 |
1.84 |
bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| org.bouncycastle:bcprov-jdk15to18 |
CVE-2026-0636 |
中危 |
1.79 |
1.84 |
bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:17
|
| com.fasterxml.jackson.core:jackson-databind |
CVE-2026-54515 |
中危 |
2.18.2 |
3.1.4, 2.18.9, 2.21.5, 2.22.1 |
jackson-databind: jackson-databind: Ignored properties can be unexpectedly modified
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-54515
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-06-23 21:17 修改: 2026-06-29 13:38
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
中危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: Netty: HTTP request smuggling via URI manipulation and CRLF injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41417
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-06 22:16 修改: 2026-06-17 10:46
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
中危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: Netty: HTTP request smuggling via URI manipulation and CRLF injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41417
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-06 22:16 修改: 2026-06-17 10:46
|
| io.netty:netty-codec-http |
CVE-2026-41417 |
中危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: Netty: HTTP request smuggling via URI manipulation and CRLF injection
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-41417
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-06 22:16 修改: 2026-06-17 10:46
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-0636 |
中危 |
1.82 |
1.84 |
bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:17
|
| org.bouncycastle:bcprov-jdk18on |
CVE-2026-0636 |
中危 |
1.82 |
1.84 |
bouncycastle: BC-JAVA: LDAP injection vulnerability in LDAPStoreHelper.java
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-0636
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-04-15 10:16 修改: 2026-06-30 03:17
|
| io.netty:netty-handler-proxy |
CVE-2026-42578 |
低危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: io.netty/netty-handler-proxy: Netty: HTTP Header Injection via HttpProxyHandler Disabled Validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42578
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|
| io.netty:netty-handler-proxy |
CVE-2026-42578 |
低危 |
4.1.131.Final |
4.1.133.Final, 4.2.13.Final |
netty: io.netty/netty-handler-proxy: Netty: HTTP Header Injection via HttpProxyHandler Disabled Validation
漏洞详情: https://avd.aquasec.com/nvd/cve-2026-42578
镜像层: sha256:7eda9a190b39cfb56c30d560e1f0140d86be9e7c0de95910ecdb069de22927ba
发布日期: 2026-05-13 19:17 修改: 2026-07-10 12:16
|