| 序号 |
漏洞名 |
公布时间 |
发现团队 |
CVE编号 |
参考链接 |
致谢截图 |
| 239 |
微软 |
2022-07-13 |
奇安信代码安全实验室 |
CVE-2022-22042 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-22042
|
 |
| 238 |
微软 |
2022-07-13 |
奇安信代码安全实验室 |
CVE-2022-30223 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-30223
|
|
| 237 |
微软 |
2022-05-10 |
奇安信代码安全实验室 |
CVE-2022-23270 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-23270
|
 |
| 236 |
谷歌Chrome |
2022-04-28 |
奇安信代码安全实验室 |
CVE-2022-1496 |
https://chromereleases.googleblog.com/2022/04/stable-channel-update-for-desktop_26.html
|
 |
| 235 |
Oracle WebLogic Server |
2022-04-21 |
奇安信代码安全实验室 |
CVE-2022-21453 |
https://www.oracle.com/security-alerts/cpuapr2022.html
|
 |
| 234 |
Windows iSCSI Target Service信息泄露 |
2022-04-13 |
奇安信代码安全实验室 |
CVE-2022-24498 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24498
|
 |
| 233 |
Windows Network File System远程代码执行 |
2022-04-13 |
奇安信代码安全实验室 |
CVE-2022-24491 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-24491
|
|
| 232 |
惠普企业HPE FlexNetwork 5130 EI 交换机系列本地缓冲溢出 |
2022-01-29 |
奇安信代码安全实验室 |
CVE-2021-29219 |
https://support.hpe.com/hpesc/public/docDisplay?docLocale=en_US&docId=emr_na-hpesbnw04234en_us
|
 |
| 231 |
ImageMagick 堆缓冲区溢出读漏洞 |
2022-02-01 |
奇安信代码安全实验室 |
CVE-2022-0284 |
https://access.redhat.com/security/cve/CVE-2022-0284
|
 |
| 230 |
ADOBE:应用程序拒绝服务 |
2022-01-01 |
技术研究院 |
CVE-2021-39849 |
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html
|
 |
| 229 |
ADOBE:应用程序拒绝服务 |
2022-01-01 |
技术研究院 |
CVE-2021-39850 |
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html
|
|
| 228 |
ADOBE:应用程序拒绝服务 |
2022-01-01 |
技术研究院 |
CVE-2021-39851 |
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html
|
|
| 227 |
ADOBE:应用程序拒绝服务 |
2022-01-01 |
技术研究院 |
CVE-2021-39852 |
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html
|
|
| 226 |
ADOBE:应用程序拒绝服务 |
2022-01-01 |
技术研究院 |
CVE-2021-39853 |
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html
|
|
| 225 |
ADOBE:应用程序拒绝服务 |
2022-01-01 |
技术研究院 |
CVE-2021-39854 |
https://helpx.adobe.com/security/products/acrobat/apsb21-55.html
|
|
| 224 |
微软Microsoft Message Queuing 信息泄露漏洞 |
2021-12-01 |
奇安信代码安全实验室 |
CVE-2021-43222 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43222
|
 |
| 223 |
微软Microsoft Message Queuing 信息泄露漏洞 |
2021-12-01 |
奇安信代码安全实验室 |
CVE-2021-43236 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43236
|
|
| 222 |
微软iSNS 服务器内存损坏漏洞可导致RCE |
2021-12-01 |
奇安信代码安全实验室 |
CVE-2021-43215 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-43215
|
|
| 221 |
联想手机:LEN-65134 Legion Phone Pro 和 Legion Phone2 Pro 信息泄露漏洞 |
2021-10-03 |
研究院 |
CVE-2021-3720 |
https://iknow.lenovo.com.cn/detail/dc_199217.html
|
 |
| 220 |
中兴通讯一款手机的消息服务应用存在信息泄露漏洞 |
2021-09-24 |
研究院 |
CVE-2021-21742 |
https://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1019064
|
 |
| 219 |
天气模块中的信息泄露漏洞 |
2021-07-19 |
研究院 |
CVE-2021-26279 |
https://www.vivo.com/en/support/security-advisory-detail?id=10
|
 |
| 218 |
闹钟模块中的信息泄露 |
2021-07-19 |
研究院 |
CVE-2021-26281 |
https://www.vivo.com/en/support/security-advisory-detail?id=9
|
 |
| 217 |
华为手机中的非标准化字段名称 |
2021-09-01 |
研究院 |
CVE-2021-22486 |
https://consumer.huawei.com/gh/support/bulletin/2021/9/
https://device.harmonyos.com/cn/docs/security/update/security-bulletins-202108-0000001180965965
|
 |
| 216 |
D-Link formWlanSetup 栈溢出 |
2021-05-20 |
研究院 |
CVE-2021-33274 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33274
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln07
|
 |
| 215 |
D-Link formSetPortTr 栈溢出 |
2021-05-20 |
研究院 |
CVE-2021-33271 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33271
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln11
|
 |
| 214 |
D-Link formAdvFirewall 栈溢出 |
2021-05-20 |
研究院 |
CVE-2021-33270 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33270
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln06
|
 |
| 213 |
D-Link formVirtualServ 栈溢出 |
2021-05-20 |
研究院 |
CVE-2021-33269 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33269
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln01
|
 |
| 212 |
D-Link fromLogin 栈溢出 |
2021-05-20 |
奇安信技术研究院 |
CVE-2021-33268 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33268
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln03
|
 |
| 211 |
D-Link formStaticDHCP 栈溢出 |
2021-05-20 |
奇安信技术研究院 |
CVE-2021-33267 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33267
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln02
|
 |
| 210 |
D-Link formVirtualApp 栈溢出 |
2021-05-20 |
奇安信技术研究院 |
CVE-2021-33266 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33266
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln04
|
 |
| 209 |
D-Link formSetPortTr 栈溢出 |
2021-05-20 |
奇安信技术研究院 |
CVE-2021-33265 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-33265
https://github.com/Lnkvct/IoT-poc/tree/master/D-Link-DIR809/vuln05
|
 |
| 208 |
思科220系列小型交换机LLDP协议拒绝服务 |
2021-10-17 |
奇安信代码安全实验室 |
CVE-2021-34780 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T
|
 |
| 207 |
思科220系列小型交换机LLDP协议拒绝服务 |
2021-10-07 |
奇安信代码安全实验室 |
CVE-2021-34779 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T
|
|
| 206 |
思科220系列小型交换机LLDP数据库损坏漏洞 |
2021-10-02 |
奇安信代码安全实验室 |
CVE-2021-34778 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T
|
|
| 205 |
思科220系列小型交换机LLDP数据库损坏漏洞 |
2021-10-02 |
奇安信代码安全实验室 |
CVE-2021-34777 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T
|
|
| 204 |
思科220系列小型交换机LLDP数据库损坏漏洞 |
2021-10-02 |
奇安信代码安全实验室 |
CVE-2021-34776 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T
|
|
| 203 |
思科220系列小型交换机LLDP数据库损坏漏洞 |
2021-10-01 |
奇安信代码安全实验室 |
CVE-2021-34775 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb220-lldp-multivuls-mVRUtQ8T
|
|
| 202 |
谷歌 Chrome Incognito 中的释放后使用漏洞 |
2021-10-19 |
奇安信代码安全实验室 |
CVE-2021-37982 |
https://chromereleases.googleblog.com/2021/10/stable-channel-update-for-desktop_19.html
|
 |
| 201 |
Foxit PDF Reader Annotation 释放后使用信息泄露漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34972 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1203/
|
 |
| 200 |
Foxit PDF Reader Annotation 释放后使用信息泄露漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34969 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1200/
|
|
| 199 |
Foxit PDF Reader Annotation 使用未初始化变量信息泄露漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34953 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1184/
|
|
| 198 |
Foxit PDF Reader Annotation 释放后使用远程代码执行漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34952 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1183/
|
|
| 197 |
Foxit PDF Reader Annotation 使用未初始化变量信息泄露漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34951 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1182/
|
|
| 196 |
Foxit PDF Reader Square Annotation 界外读远程代码执行漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34950 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1181/
|
|
| 195 |
Foxit PDF Reader Annotation界外读信息泄露漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34949 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1180/
|
|
| 194 |
Foxit PDF Reader Square Annotation 释放后使用远程代码执行漏洞 |
2021-10-09 |
奇安信代码安全实验室 |
CVE-2021-34948 |
https://www.zerodayinitiative.com/advisories/ZDI-21-1179/
|
|
| 193 |
Windows Print Spooler 信息泄露漏洞 |
2021-10-01 |
奇安信代码安全实验室 |
CVE-2021-41332 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-41332
|
 |
| 192 |
谷歌Chrome Safe Browsing 中的释放后使用漏洞 |
2021-09-01 |
奇安信代码安全实验室 |
CVE-2021-37974 |
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop_30.html
|
 |
| 191 |
施耐德电气Modicon PAC Controllers and PLC Simulator for EcoStruxure™ Control Expert and EcoStruxure™ Process Expert 空解指针解引用漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-22792 |
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04
|
 |
| 190 |
施耐德电气Modicon PAC Controllers and PLC Simulator for EcoStruxure™ Control Expert and EcoStruxure™ Process Expert 界外写漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-22791 |
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04
|
|
| 189 |
施耐德电气Modicon PAC Controllers and PLC Simulator for EcoStruxure™ Control Expert and EcoStruxure™ Process Expert 界外读漏洞 |
2021-08-19 |
奇安信代码安全实验室 |
CVE-2021-22790 |
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04
|
|
| 188 |
施耐德电气Modicon PAC Controllers and PLC Simulator for EcoStruxure™ Control Expert and EcoStruxure™ Process Expert 内存缓冲区边界内操作限制不当 |
2021-08-19 |
奇安信代码安全实验室 |
CVE-2021-22789 |
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-222-04
|
|
| 187 |
西门子 Siemens JT2Go and Teamcenter Visualization 13.2.0.0及之前版本中存在CGM 文件空指针解引用漏洞 |
2021-08-19 |
奇安信代码安全实验室 |
CVE-2021-33717 |
https://cert-portal.siemens.com/productcert/pdf/ssa-365397.pdf
|
 |
| 186 |
施耐德电气EcoStruxureTM Control Expert, EcoStruxureTM Process Expert, SCADAPack RemoteConnect™ x70, and Modicon Controllers M580 and M340凭据保护不充分 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-22781 |
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2021-194-01
|
 |
| 185 |
SAP 3D 可视化企业视图版本9.1中的输入验证不当问题 |
2021-06-30 |
奇安信代码安全实验室 |
CVE-2021-33680 |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=451071888
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=580617506
|
 |
| 184 |
SAP 3D 可视化企业视图版本9.0中的输入验证不当问题 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-33681 |
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=580617506
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=451071888
|
|
| 183 |
思科视频监控7003系列 IP 摄像头固件LLDP内存泄露漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-1598 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipcamera-lldp-mem-wGqundTq
|
 |
| 182 |
思科视频监控7001系列 IP 摄像头固件LLDP内存泄露漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-1597 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipcamera-lldp-mem-wGqundTq
|
|
| 181 |
思科视频监控7001系列 IP 摄像头固件LLDP内存泄露漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-1596 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipcamera-lldp-mem-wGqundTq
|
|
| 180 |
思科视频监控7000系列 IP 摄像头固件LLDP内存泄露漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-1595 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipcamera-lldp-mem-wGqundTq
|
|
| 179 |
思科视频监控7000系列 IP 摄像头固件LLDP实现中的双重释放拒绝服务漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-34734 |
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ipcamera-lldp-dos-OFP7j9j
|
 |
| 178 |
Aruba Instant 访问点中的未认证拒绝服务漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-34618 |
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-007.txt
|
 |
| 177 |
Juniper Networks Junos OS and Junos OS Evolved 的l2cpd中存在界外读漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-0277 |
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA11181&cat=SIRT_1&actp=LIST
|
 |
| 176 |
SonicWall 交换机中的界外读漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-20024 |
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0011
|
 |
| 175 |
QNAP某些交换机中存在界外读漏洞 |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-20024 |
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0011
|
 |
| 174 |
Chrome Permissions 中的使用后释放漏洞 |
2021-09-19 |
奇安信代码安全实验室 |
CVE-2021-30629 |
https://chromereleases.googleblog.com/2021/09/stable-channel-update-for-desktop.html
|
 |
| 173 |
UI 框架中的释放后使用漏洞 |
2021-05-01 |
奇安信代码安全实验室 |
CVE-2021-30579 |
https://chromereleases.googleblog.com/search?updated-max=2021-07-23T18:00:00-07:00&max-results=7&start=21&by-date=false
|
 |
| 172 |
Autofill 中的释放后使用漏洞 |
2021-05-01 |
奇安信代码安全实验室 |
CVE-2021-30572 |
https://chromereleases.googleblog.com/search?updated-max=2021-07-23T18:00:00-07:00&max-results=7&start=21&by-date=false
|
|
| 171 |
Chrome Permissions 中的使用后释放漏洞 |
2021-09-01 |
奇安信代码安全实验室 |
CVE-2021-30607 |
https://chromereleases.googleblog.com/2021/08/stable-channel-update-for-desktop_31.html
|
 |
| 170 |
XSS in mblog |
2021-04-15 |
奇安信技术研究院 |
CVE-2020-19619 |
https://github.com/langhsu/mblog/issues/27
|
 |
| 169 |
XSS in mblog |
2021-04-15 |
奇安信技术研究院 |
CVE-2020-19618 |
https://github.com/langhsu/mblog/issues/27
|
|
| 168 |
XSS in mblog |
2021-04-15 |
奇安信技术研究院 |
CVE-2020-19617 |
https://github.com/langhsu/mblog/issues/27
|
|
| 167 |
XSS in mblog |
2021-04-15 |
奇安信技术研究院 |
CVE-2020-19616 |
https://github.com/langhsu/mblog/issues/27
|
|
| 166 |
SSRF in FlyCMS |
2021-04-15 |
奇安信技术研究院 |
CVE-2020-19613 |
https://github.com/sunkaifei/FlyCms/issues/1
|
|
| 165 |
Foxit Reader and Foxit PhantomPDF |
2021-04-15 |
奇安信技术研究院 |
CVE-2021-31458 |
https://www.foxitsoftware.com/support/security-bulletins.html
|
 |
| 164 |
Foxit Reader and Foxit PhantomPDF |
2021-04-15 |
奇安信技术研究院 |
CVE-2021-31457 |
https://www.foxitsoftware.com/support/security-bulletins.html
|
|
| 163 |
Foxit Reader and Foxit PhantomPDF |
2021-04-15 |
奇安信技术研究院 |
CVE-2021-31451 |
https://www.foxitsoftware.com/support/security-bulletins.html
|
|
| 162 |
Foxit Reader and Foxit PhantomPDF |
2021-04-15 |
奇安信技术研究院 |
CVE-2021-31456 |
https://www.foxitsoftware.com/support/security-bulletins.html
|
|
| 161 |
Foxit Reader and Foxit PhantomPDF |
2021-11-15 |
奇安信技术研究院 |
CVE-2021-31441 |
https://www.foxitsoftware.com/support/security-bulletins.html
|
|
| 160 |
Foxit Reader and Foxit PhantomPDF |
2021-11-15 |
奇安信技术研究院 |
CVE-2021-31441 |
https://www.foxitsoftware.com/support/security-bulletins.html
|
|
| 159 |
Adobe Acrobat and Reader |
2021-03-10 |
奇安信技术研究院 |
CVE-2021-21021 |
https://helpx.adobe.com/security/products/acrobat/apsb21-09.html
|
 |
| 158 |
Adobe Acrobat and Reader |
2021-03-10 |
奇安信技术研究院 |
CVE-2021-21028 |
https://helpx.adobe.com/security/products/acrobat/apsb21-09.html
|
|
| 157 |
Adobe Acrobat and Reader |
2021-03-10 |
奇安信技术研究院 |
CVE-2021-21033 |
https://helpx.adobe.com/security/products/acrobat/apsb21-09.html
|
|
| 156 |
Adobe Acrobat and Reader |
2021-03-10 |
奇安信技术研究院 |
CVE-2021-21035 |
https://helpx.adobe.com/security/products/acrobat/apsb21-09.html
|
|
| 155 |
Windows TCP/IP 远程代码执行漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-26424 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26424
|
 |
| 154 |
Windows Services for NFS ONCRPC XDR Drive 信息泄露漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-36926 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36926
|
|
| 153 |
Windows Services for NFS ONCRPC XDR Drive 信息泄露漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-26433 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26433
|
|
| 152 |
Windows Services for NFS ONCRPC XDR Drive 远程代码执行漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-26432 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-26432
|
|
| 151 |
Windows Services for NFS ONCRPC XDR Drive 信息泄露漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-36933 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36933
|
|
| 150 |
Windows Services for NFS ONCRPC XDR Drive 信息泄露漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-36932 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-36932
|
|
| 149 |
Foxit PDF Reader Annotation 释放后使用远程代码执行漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-34847 |
https://www.zerodayinitiative.com/advisories/ZDI-21-929/
|
 |
| 148 |
Foxit PDF Reader Annotation 释放后使用远程代码执行漏洞 |
2021-08-01 |
奇安信代码安全实验室 |
CVE-2021-34846 |
https://www.zerodayinitiative.com/advisories/ZDI-21-928/
|
 |
| 147 |
Windows DNS 服务器拒绝服务漏洞 (RCE) |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-34444 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34444
|
 |
| 146 |
Windows DNS 服务器拒绝服务漏洞 (RCE) |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-34442 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-34442
|
|
| 145 |
Windows DNS 服务器拒绝服务漏洞 (RCE) |
2021-07-01 |
奇安信代码安全实验室 |
CVE-2021-33745 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-33745
|
|
| 144 |
VMware Tools for Windows 的VM3DMP中存在拒绝服务漏洞 |
2021-06-01 |
奇安信代码安全实验室 |
CVE-2021-21997 |
https://www.vmware.com/security/advisories/VMSA-2021-0011.html
|
 |
| 143 |
RedHat coders/tiff.c 中ReadTIFFImage()中的ImageMagick存在堆缓冲区溢出漏洞 |
2021-06-01 |
奇安信代码安全实验室 |
CVE-2021-3610 |
https://bugzilla.redhat.com/show_bug.cgi?id=1973689
|
 |
| 142 |
谷歌Chrome Aura 组件中的竞争条件漏洞 |
2021-05-02 |
奇安信代码安全实验室 |
CVE-2021-30510 |
https://chromereleases.googleblog.com/2021/05/stable-channel-update-for-desktop.html
|
 |
| 141 |
Tenda eCos远程代码执行漏洞4 |
2021-05-03 |
技术研究院天工实验室 |
CVE-2021-31758 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31758
|
 |
| 140 |
Tenda eCos远程代码执行漏洞3 |
2021-05-03 |
技术研究院天工实验室 |
CVE-2021-31755 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31755
|
 |
| 139 |
Tenda eCos远程代码执行漏洞2 |
2021-05-02 |
技术研究院天工实验室 |
CVE-2021-31757 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31757
|
 |
| 138 |
Tenda eCos远程代码执行漏洞1 |
2021-05-02 |
技术研究院天工实验室 |
CVE-2021-31756 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-31756
|
 |
| 137 |
Apache Solr服务器端请求伪造漏洞 |
2021-04-20 |
奇安信CERT |
CVE-2021-27905 |
https://solr.apache.org/security.html#cve-2021-27905-ssrf-vulnerability-with-the-replication-handler
|
 |
| 136 |
Windows DNS 信息泄露漏洞 |
2021-04-14 |
奇安信代码安全实验室 |
CVE-2021-28323 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28323
|
 |
| 135 |
Windows DNS 信息泄露漏洞 |
2021-04-14 |
奇安信代码安全实验室 |
CVE-2021-28328 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28328
|
|
| 134 |
Windows Network File System 远程代码执行漏洞 |
2021-04-14 |
奇安信代码安全实验室 |
CVE-2021-28445 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-28445
|
|
| 133 |
Adobe Acrobat 和 Reader 的 Windows 和 macOS 版任意代码执行漏洞 |
2021-02-09 |
奇安信代码安全实验室 |
CVE-2021-21036 |
https://helpx.adobe.com/cn/security/products/acrobat/apsb21-09.html
|
 |
| 132 |
谷歌 Chrome Aura 组件中的释放后使用漏洞 |
2021-03-31 |
奇安信代码安全实验室 |
CVE-2021-21199 |
https://chromereleases.googleblog.com/2021/03/stable-channel-update-for-desktop_30.html
|
 |
| 131 |
微软DNS服务器远程代码执行漏洞 |
2021-02-10 |
奇安信代码安全实验室 |
CVE-2021-24078 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-24078
|
 |
| 130 |
微软Windows WLAN 服务提权漏洞 |
2021-01-13 |
奇安信代码安全实验室 |
CVE-2021-1646 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1646
|
 |
| 129 |
微软Windows Win32k 提权漏洞 |
2021-01-13 |
奇安信代码安全实验室 |
CVE-2021-1709 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1709
|
|
| 128 |
谷歌 Chrome自动填充组件中的沙箱外使用后释放漏洞 |
2021-01-07 |
奇安信代码安全实验室 |
CVE-2020-21106 |
https://chromereleases.googleblog.com/
|
 |
| 127 |
Microsoft Exchange远程代码执行漏洞 |
2020-12-09 |
奇安信A-TEAM |
CVE-2020-17144 |
https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17144
|
 |
| 126 |
TP-Link 16款VxWorks路由器设备缓冲区溢出漏洞 |
2020-11-16 |
奇安信技术研究院 |
CVE-2020-28877 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-28877
|
 |
| 125 |
中兴通讯E8810/E8820/E8822系列路由器存在信息泄露漏洞 |
2020-12-17 |
清华-奇安信联合研究中心 |
CVE-2020-6882 |
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1014182
|
 |
| 124 |
中兴通讯E8810/E8820/E8822系列路由器存在MQTT拒绝服务漏洞 |
2020-12-17 |
清华-奇安信联合研究中心 |
CVE-2020-6881 |
http://support.zte.com.cn/support/news/LoopholeInfoDetail.aspx?newsId=1014182
|
|
| 123 |
Windows MSCTF Server信息泄漏漏洞 |
2020-11-11 |
奇安信代码安全实验室 |
CVE-2020-17030 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-17030
|
 |
| 122 |
Win32k 提权漏洞 |
2020-11-11 |
奇安信代码安全实验室 |
CVE-2020-17038 |
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2020-17038
|
|
| 121 |
Oracle WebLogic Server远程代码执行漏洞 |
2020-11-01 |
奇安信A-TEAM |
cve-2020-14750 |
https://www.oracle.com/security-alerts/alert-cve-2020-14750.html
|
 |
| 120 |
Oracle WebLogic Server 远程代码执行漏洞 |
2020-10-20 |
奇安信A-TEAM |
cve-2020-14841 |
https://www.oracle.com/security-alerts/cpuoct2020.html
|
 |
| 119 |
Oracle CVE-2020-14882 (WebLogic Server) 漏洞绕过 |
2020-11-02 |
奇安信代码安全实验室 |
CVE-2020-14750 |
https://www.oracle.com/security-alerts/alert-cve-2020-14750.html
|
 |
| 118 |
谷歌 PDFium 释放后使用高危漏洞 |
2020-10-21 |
奇安信代码安全实验室 |
CVE-2020-16002 |
https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html
|
 |
| 117 |
Windows Spoofing Vulnerability |
2020-10-14 |
奇安信威胁情报中心 |
CVE-2020-16922 |
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16922
|
 |
| 116 |
Windows Text Services Framework信息泄漏漏洞 |
2020-10-14 |
奇安信代码安全实验室 |
CVE-2020-16921 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-16921
|
 |
| 115 |
Windows Application Compatibility Client Library 提权漏洞 |
2020-10-14 |
奇安信代码安全实验室 |
CVE-2020-16920 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-16920
|
|
| 114 |
RedHat oVirt URL 重定向漏洞 |
2020-09-25 |
奇安信代码安全实验室 |
CVE-2020-10775 |
https://access.redhat.com/security/cve/CVE-2020-10775
https://gerrit.ovirt.org/#/c/111277/
https://github.com/oVirt/ovirt-engine/commit/362a2a8f8eca542b48a1bba7f9c827fbc44bc955
https://bugzilla.redhat.com/show_bug.cgi?id=1858184
https://bugzilla.redhat.com/show_bug.cgi?id=1866688
|
 |
| 113 |
RedHat oVirt XSS 漏洞 |
2020-09-25 |
奇安信代码安全实验室 |
CVE-2020-14333 |
https://access.redhat.com/security/cve/CVE-2020-14333
https://gerrit.ovirt.org/#/c/111277/
https://github.com/oVirt/ovirt-engine/commit/362a2a8f8eca542b48a1bba7f9c827fbc44bc955
https://bugzilla.redhat.com/show_bug.cgi?id=1858184
https://bugzilla.redhat.com/show_bug.cgi?id=1866688
|
|
| 112 |
Win32k 信息泄露漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-1250 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1250
|
 |
| 111 |
Windows 提权漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-1052 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1052
|
|
| 110 |
Windows DHCP 服务器信息泄露漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-1031 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1031
|
|
| 109 |
Windows 内核信息泄露漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-0928 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0928
|
|
| 108 |
Windows DNS 拒绝服务漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-1228 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1228
|
|
| 107 |
Windows DNS 拒绝服务漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-0836 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0836
|
|
| 106 |
Windows Cryptographic Catalog Services 提权漏洞 |
2020-09-09 |
奇安信代码安全实验室 |
CVE-2020-0782 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0782
|
|
| 105 |
红帽QEMU 界外访问 |
2020-04-06 |
奇安信代码安全实验室 |
CVE-2020-11102 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11102
|
 |
| 104 |
Juniper Networks Junos 15.1-19.2版本JDHCP 服务 |
2020-01-01 |
奇安信代码安全实验室 |
CVE-2020-1609 |
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10981
|
 |
| 103 |
Juniper Networks Junos 15.1-19.2版本JDHCP 服务 |
2020-01-01 |
奇安信代码安全实验室 |
CVE-2020-1605 |
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10981
|
|
| 102 |
Juniper Networks Junos 15.1-19.2版本JDHCP 服务 |
2020-01-01 |
奇安信代码安全实验室 |
CVE-2020-1602 |
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10981
|
|
| 101 |
Linux 内核4.14.x 和4.19.x 稳定版内核中的释放后使用漏洞 |
2020-01-14 |
奇安信代码安全实验室 |
CVE-2020-7053 |
https://lore.kernel.org/stable/20200114183937.12224-1-tyhicks@canonical.com/
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7053
|
 |
| 100 |
红帽QEMU 仿真器 XGMAC 以太网控制器中的缓冲溢出 |
2020-08-25 |
奇安信代码安全实验室 |
CVE-2020-15863 |
https://access.redhat.com/security/cve/CVE-2020-15863
|
 |
| 99 |
红帽网络数据包处理组件中QEMU断言失败 |
2020-08-25 |
奇安信代码安全实验室 |
CVE-2020-16092 |
https://access.redhat.com/security/cve/CVE-2020-16092
|
|
| 98 |
红帽QEMU拒绝服务 |
2020-08-25 |
奇安信代码安全实验室 |
CVE-2020-14415 |
https://access.redhat.com/security/cve/CVE-2020-14415
|
|
| 97 |
红帽QEMU 仿真器的 SM501 显示驱动实现中存在一个整数溢出漏洞 |
2020-08-25 |
奇安信代码安全实验室 |
CVE-2020-12829 |
https://access.redhat.com/security/cve/CVE-2020-12829
|
|
| 96 |
红帽QEMU 的 USB 仿真器中存在越界读/写访问问题 |
2020-08-25 |
奇安信代码安全实验室 |
CVE-2020-14364 |
https://access.redhat.com/security/cve/CVE-2020-14364
|
|
| 95 |
华为 Switch 系列设备漏洞 |
2020-05-22 |
奇安信代码安全实验室 |
CVE-2019-5285 |
https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20190522-01-switch-cn
|
 |
| 94 |
Oracle VM VirtualBox 拒绝服务漏洞 |
2020-05-22 |
奇安信代码安全实验室 |
CVE-2020-14715 |
https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20190522-01-switch-cn
|
 |
| 93 |
Oracle VM VirtualBox 拒绝服务漏洞 |
2020-07-15 |
奇安信代码安全实验室 |
CVE-2020-14714 |
https://www.oracle.com/security-alerts/cpujul2020verbose.html#OVIR
|
|
| 92 |
Oracle VM VirtualBox 拒绝服务漏洞 |
2020-07-15 |
奇安信代码安全实验室 |
CVE-2020-14707 |
https://www.oracle.com/security-alerts/cpujul2020verbose.html#OVIR
|
|
| 91 |
Oracle VM VirtualBox 整数溢出和越界读取漏洞 |
2020-07-15 |
奇安信代码安全实验室 |
CVE-2020-14700 |
https://www.oracle.com/security-alerts/cpujul2020verbose.html#OVIR
|
|
| 90 |
Oracle VM VirtualBox 整数溢出和越界读取漏洞 |
2020-07-15 |
奇安信代码安全实验室 |
CVE-2020-14699 |
https://www.oracle.com/security-alerts/cpujul2020verbose.html#OVIR
|
|
| 89 |
Oracle VM VirtualBox 整数溢出和越界读取漏洞 |
2020-07-15 |
奇安信代码安全实验室 |
CVE-2020-14698 |
https://www.oracle.com/security-alerts/cpujul2020verbose.html#OVIR
|
|
| 88 |
“重要”级别的微软Windows 内核信息泄露漏洞 |
2020-07-15 |
奇安信代码安全实验室 |
CVE-2020-1426 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1426
|
 |
| 87 |
微软 Graphics Components 远程代码执行漏洞 |
2020-05-13 |
奇安信代码安全实验室 |
CVE-2020-1153 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1153
|
 |
| 86 |
Oracle Virtualbox 拒绝服务漏洞 |
2020-04-15 |
奇安信代码安全实验室 |
CVE-2020-2959 |
https://www.oracle.com/security-alerts/cpuapr2020verbose.html#OVIR
|
 |
| 85 |
微软Microsoft Graphics Component信息泄露漏洞 |
2020-04-15 |
奇安信代码安全实验室 |
CVE-2020-1005 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1005
|
 |
| 84 |
微软Windows DNS 拒绝服务漏洞 |
2020-04-15 |
奇安信代码安全实验室 |
CVE-2020-0993 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0993
|
|
| 83 |
微软Win32k 提权漏洞 |
2020-04-15 |
奇安信代码安全实验室 |
CVE-2020-0958 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0958
|
|
| 82 |
微软Win32k 提权漏洞 |
2020-04-15 |
奇安信代码安全实验室 |
CVE-2020-0957 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0957
|
|
| 81 |
微软Adobe Font Manager Library 远程代码执行漏洞 |
2020-04-15 |
奇安信代码安全实验室 |
CVE-2020-0938 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0938
|
|
| 80 |
微软Win32k 提权漏洞 |
2020-03-11 |
奇安信代码安全实验室 |
CVE-2020-0762 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0762
|
 |
| 79 |
微软WindowsDefender Security Center提权漏洞 |
2020-03-11 |
奇安信代码安全实验室 |
CVE-2020-0877 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0877
|
|
| 78 |
微软ChakraCore 脚本引擎内存损坏漏洞 |
2020-03-11 |
奇安信代码安全实验室 |
CVE-2020-0848 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0848
|
|
| 77 |
Oracle Fusion Middleware WebCenter Sites 安全漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14652 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
 |
| 76 |
Oracle Fusion Middleware WebLogic Server Core组件安全漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14645 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
|
| 75 |
Oracle Fusion Middleware WebLogic Server 安全漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14640 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
|
| 74 |
Oracle Fusion Middleware WebLogic Server 信息泄露漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14739 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
|
| 73 |
Oracle Fusion Middleware WebLogic Server 安全漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14738 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
|
| 72 |
Oracle Fusion Middleware WebLogic Server 安全漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14637 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
|
| 71 |
Oracle Fusion Middleware WebLogic Server 信息泄露漏洞 |
2020-07-01 |
奇安信A-TEAM |
CVE-2020-14636 |
https://www.oracle.com/security-alerts/cpujul2020.html
|
|
| 70 |
FasterXML jackson-databind 代码问题漏洞 |
2020-04-01 |
奇安信 A-TEAM |
CVE-2020-11620 |
https://www.oracle.com/security-alerts/cpuapr2020.html
|
 |
| 69 |
Oracle Virtualization VM VirtualBox 安全漏洞 |
2020-04-01 |
奇安信 A-TEAM |
CVE-2020-2908 |
https://www.oracle.com/security-alerts/cpuapr2020.html
|
 |
| 68 |
Oracle Weblogic Server远程信息泄露漏洞 |
2020-04-01 |
奇安信A-TEAM |
CVE-2020-2829 |
https://www.oracle.com/security-alerts/cpuapr2020.html
|
|
| 67 |
Weblogic 远程代码执行漏洞 |
2020-04-01 |
奇安信 A-TEAM |
CVE-2020-2798 |
https://www.oracle.com/security-alerts/cpuapr2020.html
|
|
| 66 |
Weblogic远程代码执行漏洞 |
2018-11-07 |
奇安信 A-TEAM |
CVE-2018-3245 |
https://www.oracle.com/security-alerts/cpuoct2018.html
|
 |
| 65 |
微软“重要”的WindowsGraphics 组件提权漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0745 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0745
|
 |
| 64 |
微软“重要”的Win32k 信息泄露漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0717 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0717
|
|
| 63 |
微软“重要”的Win32k 信息泄露漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0716 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0716
|
|
| 62 |
微软“重要”的WindowsGraphics 组件提权漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0715 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0715
|
|
| 61 |
微软“严重”的脚本引擎内存损坏漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0712 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0712
|
|
| 60 |
微软“严重”的脚本引擎内存损坏漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0710 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0710
|
|
| 59 |
微软“严重”的远程任意代码可执行漏洞 |
2020-02-12 |
奇安信代码安全实验室 |
CVE-2020-0662 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0662
|
|
| 58 |
微软提权漏洞 |
|
奇安信代码安全实验室 |
CVE-2019-1434 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1434
|
|
| 57 |
微软提权漏洞 |
|
奇安信代码安全实验室 |
CVE-2019-1435 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1435
|
|
| 56 |
微软提权漏洞 |
|
奇安信代码安全实验室 |
CVE-2019-1433 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1433
|
|
| 55 |
微软提权漏洞 |
|
奇安信代码安全实验室 |
CVE-2019-1407 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1407
|
|
| 54 |
微软Win32k 信息泄露漏洞 |
2020-01-15 |
奇安信代码安全实验室 |
CVE-2020-0608 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-0608
|
 |
| 53 |
VMware 声卡设备的uaf漏洞 |
2019-09-19 |
奇安信代码安全实验室 |
CVE-2019-5527 |
https://www.vmware.com/security/advisories/VMSA-2019-0014.html
|
 |
| 52 |
微软Windows 内核信息泄漏漏洞 |
2019-08-13 |
奇安信代码安全实验室 |
CVE-2020-1228 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1228
|
 |
| 51 |
Buffer error |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9704 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
 |
| 50 |
Stack exhaustion |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9703 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
|
| 49 |
Stack exhaustion |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9702 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
|
| 48 |
Buffer error |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9701 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
|
| 47 |
Buffer error |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9700 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
|
| 46 |
Buffer error |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9699 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
|
| 45 |
Buffer error |
2020-08-11 |
奇安信技术研究院 |
CVE-2020-9698 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-48.html
|
|
| 44 |
Stack-based buffer overflow |
2020-03-17 |
奇安信技术研究院 |
CVE-2020-3799 |
https://helpx.adobe.com/si/security/products/acrobat/apsb20-13.html
|
 |
| 43 |
Exim 远程堆溢出漏洞 |
|
|
CVE-2019-16928 |
https://seclists.org/oss-sec/2019/q3/256
|
 |
| 42 |
Windows内核高危漏洞 |
|
|
CVE-2019-1285 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1285
|
 |
| 41 |
Edge浏览器高危漏洞 |
|
|
CVE-2019-1217 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1217
|
|
| 40 |
Chrome浏览器中的UAF漏洞 |
|
|
CVE-2019-5866 |
https://chromereleases.googleblog.com/2019/07/stable-channel--for-desktop.html
|
 |
| 39 |
Vmware 溢出漏洞 |
|
|
CVE-2019-5527 |
https://www.vmware.com/security/advisories/VMSA-2019-0014.html
|
 |
| 38 |
Acrobat Reader DC中的uaf漏洞 |
|
|
CVE-2019-8031 |
https://helpx.adobe.com/security/products/acrobat/apsb19-41.html
|
 |
| 37 |
Acrobat Reader DC中的uaf漏洞 |
|
|
CVE-2019-8030 |
https://helpx.adobe.com/security/products/acrobat/apsb19-41.html
|
|
| 36 |
Acrobat Reader DC中的uaf漏洞 |
|
|
CVE-2019-8029 |
https://helpx.adobe.com/security/products/acrobat/apsb19-41.html
|
|
| 35 |
越权启用WiFi DIR-823G SetWLanRadioSettings Guest-WiFi Enable |
|
|
CVE-2019-8392 |
https://github.com/leonW7/D-Link/blob/master/Vul_6.md
|
 |
| 34 |
局域网DNS劫持 DIR-823G SetWanSettings DNS Hijack |
|
|
CVE-2019-7390 |
http://www.securityfocus.com/bid/106855
https://github.com/leonW7/D-Link/blob/master/Vul_5.md
|
 |
| 33 |
远程拒绝服务 DIR-823G SetFactoryDefault DoS |
|
|
CVE-2019-7389 |
http://www.securityfocus.com/bid/106853
https://github.com/leonW7/D-Link/blob/master/Vul_4.md
|
 |
| 32 |
远程信息泄露 DIR-823G GetClientInfo InfoLeak |
|
|
CVE-2019-7388 |
http://www.securityfocus.com/bid/106852
https://github.com/leonW7/D-Link/blob/master/Vul_3.md
|
 |
| 31 |
远程命令注入 DIR-823G HNAP_Entry_Func CMD Injection |
|
|
CVE-2019-7298 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7298
http://www.securityfocus.com/bid/106814
|
 |
| 30 |
远程命令注入 DIR-823G GetNetwork TomographyResult CMD Injection |
|
|
CVE-2019-7297 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7297
http://www.securityfocus.com/bid/106815
|
 |
| 29 |
Win32k Elevation of Privilege Vulnerability |
|
|
CVE-2019-0960 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0960
|
 |
| 28 |
Windows NTLM Tampering Vulnerability |
|
|
CVE-2019-1040 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1040
|
 |
| 27 |
Microsoft Exchange Server Elevation of Privilege Vulnerability |
|
|
CVE-2019-0724 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0724
|
 |
| 26 |
Microsoft Exchange Server Elevation of Privilege Vulnerability |
|
|
CVE-2019-0686 |
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0686
|
|
| 25 |
Motorola SetSmartQoSSettings CMD Injection |
|
|
CVE-2019-9121 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9121
https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetSmartQoSSettings.md
|
 |
| 24 |
Motorola SetWLanACLSettings CMD Injection |
|
|
CVE-2019-9120 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9120
https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetWLanACLSettings.md
|
 |
| 23 |
Motorola SetStaticRouteSettings CMD Injection |
|
|
CVE-2019-9119 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9119
https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetStaticRouteSettings.md
|
 |
| 22 |
Motorola SetStaticRouteSettings CMD Injection |
|
|
CVE-2019-9118 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9118
https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetNTPServerSettings.md
|
 |
| 21 |
Motorola SetStaticRouteSettings CMD Injection |
|
|
CVE-2019-9117 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9117
https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetNetworkTomographySettings.md
|
 |
| 20 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7461 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7461
|
 |
| 19 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7460 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7460
|
 |
| 18 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7459 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7459
|
 |
| 17 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7458 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7458
|
 |
| 16 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7457 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7457
|
 |
| 15 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7456 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7456
|
 |
| 14 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7455 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7455
|
 |
| 13 |
内存溢出 Mikrotik RouteOS smb remote DOS |
|
|
CVE-2019-7454 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7454
|
|
| 12 |
libsass内存溢出漏洞 |
|
|
CVE-2019-6286 |
https://github.com/sass/libsass/issues/2815
|
 |
| 11 |
yaml-cpp内存溢出漏洞 |
|
|
CVE-2019-6285 |
https://github.com/jbeder/yaml-cpp/issues/660
|
 |
| 10 |
libsass内存溢出漏洞 |
|
|
CVE-2019-6284 |
https://github.com/sass/libsass/issues/2816
|
 |
| 9 |
libsass内存溢出漏洞 |
|
|
CVE-2019-6283 |
https://github.com/sass/libsass/issues/2814
|
 |
| 8 |
D-Link SetStaticRoute CMD Injection |
|
|
CVE-2019-8319 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8319
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/staticrouterv4.md
|
 |
| 7 |
D-Link SetSysEmailSettings CMD Injection |
|
|
CVE-2019-8318 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8318
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/mail.md
|
 |
| 6 |
D-Link SetStaticRoute CMD Injection |
|
|
CVE-2019-8317 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8317
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/staticrouterv6.md
|
 |
| 5 |
D-Link SetWebFilterSettings CMD Injection |
|
|
CVE-2019-8316 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8316
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/webfilter.md
|
 |
| 4 |
D-Link SetStaticRoute CMD Injection |
|
|
CVE-2019-8315 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8315
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/firewallv4.md
|
 |
| 3 |
D-Link SetQoSSettings CMD Injection |
|
|
CVE-2019-8314 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8314
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/qos.md
|
 |
| 2 |
D-Link SetIPv6FirewallSettings CMD Injection |
|
|
CVE-2019-8313 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8313
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/firewallv6.md
|
 |
| 1 |
D-linkSetSysLogSettingsCMD Injection |
|
|
CVE-2019-8312 |
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-8312
https://github.com/lieanu/vuls/blob/master/dlink/DIR-878/syslog.md
|
 |
京公网安备11000002002064号