关键字 的搜索结果 (14239)

CVE-2016-3053(发布:2017-02-01 15:59:00)NMPS
CVSS7.2

[原文]IBM AIX contains an unspecified vulnerability that would allow a locally authenticated user to obtain root level privileges.

CVE-2016-1417(发布:2017-01-23 16:59:01)NMPS
CVSS6.8

[原文]Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed.

CVE-2016-4010(发布:2017-01-23 16:59:01)NMP
CVSS7.5

[原文]Magento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks and execute arbitrary PHP code via crafted serialized shopping cart data.

CVE-2016-4338(发布:2017-01-23 16:59:01)NMP
CVSS6.8

[原文]The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix before 2.0.18, 2.2.x before 2.2.13, and 3.0.x before 3.0.3, when used with a shell other than bash, allows context-dependent attackers to execute arbitrary code or SQL commands via the mysql.size parameter.

CVE-2016-4340(发布:2017-01-23 16:59:01)NMP
CVSS6.5

[原文]The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows remote authenticated users to "log in" as any other user via unspecified vectors.

CVE-2015-7743(发布:2017-01-23 16:59:00)NMPS
CVSS4.0

[原文]XML external entity vulnerability in PRTG Network Monitor before 16.2.23.3077/3078 allows remote authenticated users to read arbitrary files by creating a new HTTP XML/REST Value sensor that accesses a crafted XML file.

首页上一页12345678下一页尾页 第3页 / 共2374页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站