漏洞研究-奇安信

立即拨打95015

漏洞研究

未知攻，焉知防。安全漏洞研究是网络安全攻防实践的基础性工作。奇安信集团长期关注安全漏洞的挖掘与监测，奇安信代码安全实验室、技术研究院、威胁情报中心、A-TEAM等团队已累计向CVE、CNVD、CNNVD、NVDB、第三方漏洞平台及其他国内外大型政企机构报告0day漏洞数百个。

序号	漏洞名	公布时间	发现团队	CVE编号	查看链接	致谢截图
33	远程拒绝服务 DIR-823G SetFactoryDefault DoS	-	-	CVE-2019-7389	http://www.securityfocus.com/bid/106853 https://github.com/leonW7/D-Link/blob/master/Vul_4.md	点击查看
32	远程信息泄露 DIR-823G GetClientInfo InfoLeak	-	-	CVE-2019-7388	http://www.securityfocus.com/bid/106852 https://github.com/leonW7/D-Link/blob/master/Vul_3.md	点击查看
31	远程命令注入 DIR-823G HNAP_Entry_Func CMD Injection	-	-	CVE-2019-7298	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7298 http://www.securityfocus.com/bid/106814	点击查看
30	远程命令注入 DIR-823G GetNetwork TomographyResult CMD Injection	-	-	CVE-2019-7297	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7297 http://www.securityfocus.com/bid/106815	点击查看
29	Win32k Elevation of Privilege Vulnerability	-	-	CVE-2019-0960	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0960	点击查看
28	Windows NTLM Tampering Vulnerability	-	-	CVE-2019-1040	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1040	点击查看
27	Microsoft Exchange Server Elevation of Privilege Vulnerability	-	-	CVE-2019-0724	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0724	点击查看
26	Microsoft Exchange Server Elevation of Privilege Vulnerability	-	-	CVE-2019-0686	https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0686	点击查看
25	Motorola SetSmartQoSSettings CMD Injection	-	-	CVE-2019-9121	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9121 https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetSmartQoSSettings.md	点击查看
24	Motorola SetWLanACLSettings CMD Injection	-	-	CVE-2019-9120	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9120 https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetWLanACLSettings.md	点击查看

远程拒绝服务 DIR-823G SetFactoryDefault DoS

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-7389

查看链接：: http://www.securityfocus.com/bid/106853 https://github.com/leonW7/D-Link/blob/master/Vul_4.md

致谢截图：: 点击查看

远程信息泄露 DIR-823G GetClientInfo InfoLeak

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-7388

查看链接：: http://www.securityfocus.com/bid/106852 https://github.com/leonW7/D-Link/blob/master/Vul_3.md

致谢截图：: 点击查看

远程命令注入 DIR-823G HNAP_Entry_Func CMD Injection

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-7298

查看链接：: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7298 http://www.securityfocus.com/bid/106814

致谢截图：: 点击查看

远程命令注入 DIR-823G GetNetwork TomographyResult CMD Injection

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-7297

查看链接：: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-7297 http://www.securityfocus.com/bid/106815

致谢截图：: 点击查看

Win32k Elevation of Privilege Vulnerability

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-0960

查看链接：: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0960

致谢截图：: 点击查看

Windows NTLM Tampering Vulnerability

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-1040

查看链接：: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-1040

致谢截图：: 点击查看

Microsoft Exchange Server Elevation of Privilege Vulnerability

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-0724

查看链接：: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0724

致谢截图：: 点击查看

Microsoft Exchange Server Elevation of Privilege Vulnerability

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-0686

查看链接：: https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2019-0686

致谢截图：: 点击查看

Motorola SetSmartQoSSettings CMD Injection

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-9121

查看链接：: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9121 https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetSmartQoSSettings.md

致谢截图：: 点击查看

Motorola SetWLanACLSettings CMD Injection

公布时间：: -

发现团队：: -

CVE编号：: CVE-2019-9120

查看链接：: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9120 https://github.com/lieanu/vuls/blob/master/motorola/M2_C1/SetWLanACLSettings.md

致谢截图：: 点击查看

您对奇安信的任何疑问可用以下方式告诉我们

将您对奇安信的任何疑问

用以下方式告诉我们

联系客服提交信息网络安全服务热线:95015