查看最近更新的CVE列表 (90883)

CVE-2016-4617(发布:2017-02-20 03:59:00)NMS
CVSS4.6

[原文]An issue was discovered in certain Apple products. macOS before 10.12 is affected. The issue involves a sandbox escape related to launchctl process spawning in the "libxpc" component.

CVE-2015-2272(发布:2015-06-01 15:59:15)NMCS
CVSS4.0

[CNNVD]Moodle 权限许可和访问控制漏洞--Moodle是澳大利亚马丁-多基马(Martin Dougiamas)博士开发的一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle的login/token.php脚本中存在安全漏洞。远程攻击者可通过创建web-services令牌利用该...

CVE-2015-6123(发布:2015-11-11 07:59:48)NMS
CVSS4.3

[原文]Cross-site scripting (XSS) vulnerability in Microsoft Excel for Mac 2011 and Excel 2016 for Mac allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message that is mishandled by Outlook for Mac, aka "Microsoft Outlook for Mac Spoofing Vulnerability."

CVE-2015-7201(发布:2015-12-16 06:59:00)NMP
CVSS10.0

[原文]Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via unknown vectors.

CVE-2015-7205(发布:2015-12-16 06:59:05)NMP
CVSS10.0

[原文]Integer underflow in the RTPReceiverVideo::ParseRtpPacket function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 might allow remote attackers to obtain sensitive information, cause a denial of service, or possibly have unspecified other impact by triggering a crafted WebRTC RTP packet.

CVE-2015-7212(发布:2015-12-16 06:59:10)NMP
CVSS7.5

[原文]Integer overflow in the mozilla::layers::BufferTextureClient::AllocateForSurface function in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.5 allows remote attackers to execute arbitrary code by triggering a graphics operation that requires a large texture allocation.

首页上一页4567891011下一页尾页 第6页 / 共15148页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站