2023 2024 delta.json deltaLog.json .gitattributes .gitignore README.md Breadcrumbs cvelistV5 /cves /2022 /40xxx / CVE-2022-40955.json Latest commit Cannot retrieve latest commit at this time. HistoryHistory Breadcrumbs cvelistV5 /cves /2022 /40xxx / CVE-2022-40955.jsonTop File...
"name": "https://www.wordfence.com/threat-intel/vulnerabilities/id/4f95bcc3-354e-4016-9a17-945569b076b6?source=cve" }, { "url": "https://themeisle.com/plugins/ppom-pro/", "refsource": "MISC", "name": "https://themeisle.com/plugins/ppom-pro/" }, { "url": "https://plugins...
Secure your Linux systems from SUSE CVE Database. Stay ahead of potential threats with the latest security updates from SUSE.
Secure your Linux systems from SUSE CVE Database. Stay ahead of potential threats with the latest security updates from SUSE.
An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which als...
该服务的dns_packet_new函数中存在缓冲区溢出漏洞,“页对齐数 - sizeof(DnsPacket) + sizeof(iphdr) + sizeof(udphdr)”就可以触发这个溢出,在x86系统上就是“页对齐数 - 80”,也就是说,在x86系统上以4016字节调用dns_packet_new函数会导致分配4096 字节,但其中108字节是分配给DnsPacket struct的。
说明:在处理XML数据时,IBM Maximo Asset Management容易受到XML外部实体注入(XXE)攻击。远程攻击者可能利用此漏洞来泄露敏感信息或消耗内存资源。 此漏洞影响以下版本的IBM Maximo Asset Management核心产品。旧版本的Maximo Asset Management可能会受到影响。建议的操作是更新到最新版本。
保险合同犹豫期一般是10天,从投保人收到保险合同次日起开始计算,具体期限由双方在保险合同中约定。保险合同犹豫期是指投保人、被保险人签收保险单后一定时间内,对所购买的保险不满意,可以无条件要求退保。投保人提出保险要求,经保险人同意承保,保险合同成立,自成立时生效。投保人和保险人可以对合同的效力约定附条件或...
hkong rename preview_cves to cvesMar 28, 2023 4100e8b· Mar 28, 2023 HistoryHistory File metadata and controls Code Blame 29 lines (29 loc) · 996 Bytes Raw { "containers": { "cna": { "providerMetadata": { "dateUpdated": "2019-12-30T16:19:34", "orgId": "9a9592...
Nginx的range过滤器模块中存在安全漏洞,特制的请求可能触发整数溢出,导致泄露敏感信息。 在处理HTTP range请求时,特制的Content-Range头字段参数值可以造成Nginx对range的长度计算溢出。如果这时Nginx是通过缓存返回响应内容,那么缓存文件头部的一些内部数据就会被错误返回给客户端,这些数据可能包含后端服务器IP地址等敏感信息...