| | | | | | |
| Dell BSAFE Micro Edition Suite和Dell BSAFE 输入验证错误漏洞 | | | | | https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities |
| | | | | | https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities |
| | | | | | https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities |
| | | | | | https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities |
| | | | | | https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities |
| | | | | | https://github.com/h2database/h2database/security/advisories/GHSA-h376-j262-vhq6 |
| | | | | | https://owasp.org/www-project-java-html-sanitizer/ |
| Mozilla Network Security Services 缓冲区错误漏洞 | | | | | https://packetstormsecurity.com/files/165110/NSS-Signature-Validation-Memory-Corruption.html |
| | | | | | https://gitlab.com/gnutls/libtasn1/-/commit/44a700d2051a666235748970c2df047ff207aeb5 |
| | | | | | https://github.com/google/security-research/security/advisories/GHSA-mjmj-j48q-9wg2 |
| | | | | | https://github.com/h2database/h2database/releases/tag/version-2.1.210 |
| | | | | | https://bugs.openldap.org/show_bug.cgi?id=9815 |
| VMware Spring Security 安全漏洞 | | | | | https://tanzu.vmware.com/security/cve-2022-31692 |
| | | | | | https://www.scala-lang.org/download/ |
| | | | | | https://github.com/madler/zlib/ |
| Apache Commons Text 代码注入漏洞 | | | | | https://lists.apache.org/thread/n2bd4vdsgkqh2tm14l1wyc3jyol7s1om |
| Apache Commons BCEL 缓冲区错误漏洞 | | | | | https://lists.apache.org/thread/lfxk7q8qmnh5bt9jm6nmjlv5hsxjhrz4 |
| | | | | | https://lists.apache.org/thread/q23kvvtoohgzwybxpwozmvvk17rp0td3 |
| | | | | | https://bugs.busybox.net/show_bug.cgi?id=15216 |
| | | | | | |
| | | | | | https://github.com/xerial/sqlite-jdbc/security/advisories/GHSA-6phf-6h5g-97j2 |
| VMware Spring Security 安全漏洞 | | | | | https://spring.io/security/cve-2023-34034 |
| | | | | | https://github.com/php/php-src/security/advisories/GHSA-jqcx-ccgc-xwhv |
| | | | | | https://github.com/curl/curl/commit/fb4415d8aee6c1 |
| | | | | | https://github.com/golang/go/issues/62198 |
| | | | | | https://lists.apache.org/thread/wf0yrk84dg1942z1o74kd8nycg6pgm5b |
| | | | | | https://activemq.apache.org/security-advisories.data/CVE-2023-46604-announcement.txt |
| | | | | | https://lists.apache.org/thread/yhy7tdfjf9hrl9vfrtzo8p2cyjq87v7n |
| | | | | | https://www.htmlunit.org/changes-report.html#a3.9 |
| | | | | | https://struts.apache.org/download.cgi#struts-ga |
| Apache Commons Beanutils 代码问题漏洞 | | | | | https://issues.apache.org/jira/browse/BEANUTILS-520 |
| | | | | | https://www.dell.com/support/kbdoc/en-us/000181115/dsa-2020-286-dell-bsafe-crypto-c-micro-edition-4-1-5-and-dell-bsafe-micro-edition-suite-4-6-multiple-security-vulnerabilities |
| VMware Spring Cloud Config 路径遍历漏洞 | | | | | https://tanzu.vmware.com/security/cve-2020-5410 |
| | | | | | https://github.com/codemirror/CodeMirror/commit/55d0333907117c9231ffdf555ae8824705993bbb |
| | | | | | https://source.android.com/security/bulletin/2021-02-01 |
| | | | | | https://github.com/hunterhacker/jdom。 |
| Apache Commons Compress 安全漏洞 | | | | | https://lists.apache.org/thread.html/r19ebfd71770ec0617a9ea180e321ef927b3fefb4c81ec5d1902d20ab%40%3Cuser.commons.apache.org%3E |
| Apache Commons Compress 安全漏洞 | | | | | https://lists.apache.org/thread.html/rf68442d67eb166f4b6cf0bbbe6c7f99098c12954f37332073c9822ca%40%3Cuser.commons.apache.org%3E |
| Apache Commons Compress 安全漏洞 | | | | | https://lists.apache.org/thread.html/r605d906b710b95f1bbe0036a53ac6968f667f2c249b6fbabada9a940%40%3Cuser.commons.apache.org%3E |
| Apache Commons Compress 安全漏洞 | | | | | https://lists.apache.org/thread.html/rc4134026d7d7b053d4f9f2205531122732405012c8804fd850a9b26f%40%3Cuser.commons.apache.org%3E |
| | | | | | https://logging.apache.org/log4j/2.x/security.html |
| npm jquery-validation 安全漏洞 | | | | | https://www.npmjs.com/package/jquery-validation |
| | | | | | https://tanzu.vmware.com/security/cve-2022-22979 |
| | | | | | https://github.com/sparklemotion/nekohtml/commit/a800fce3b079def130ed42a408ff1d09f89e773d |
| | | | | | https://github.com/google/gson/pull/1991/files |
| | | | | | https://github.com/jquery-validation/jquery-validation/security/advisories/GHSA-ffmh-x56j-9rc3 |
| VMware Spring Security 安全漏洞 | | | | | https://tanzu.vmware.com/security/cve-2022-31690 |
| | | | | | https://lists.apache.org/thread/12pxy4phsry6c34x2ol4fft6xlho4kyw |
| | | | | | https://bugzilla.mozilla.org/show_bug.cgi?id=1774654 |
| | | | | | https://github.com/protocolbuffers/protobuf/commit/db7c17803320525722f45c1d26fc08bc41d1bf48 |
| | | | | | https://www.openssl.org/news/secadv/20221101.txt |
| | | | | | https://www.openssl.org/news/secadv/20221101.txt |
| | | | | | https://github.com/x-stream/xstream/issues/304 |
| | | | | | https://github.com/PCRE2Project/pcre2/commit/94e1c001761373b7d9450768aa15d04c25547a35 |
| Apache XML Graphics Batik 代码问题漏洞 | | | | | https://lists.apache.org/thread/hplhx0o74jb7blj39fm4kw3otcnjd6xf |
| FasterXML jackson-databind 代码问题漏洞 | | | | | https://github.com/FasterXML/jackson-databind/commit/d78d00ee7b5245b93103fef3187f70543d67ca33 |
| FasterXML jackson-databind 代码问题漏洞 | | | | | https://github.com/FasterXML/jackson-databind/commit/063183589218fec19a9293ed2f17ec53ea80ba88 |
| Apache XML Graphics Batik 代码问题漏洞 | | | | | https://lists.apache.org/thread/pkvhy0nsj1h1mlon008wtzhosbtxjwly |
| | | | | | https://www.openssl.org/news/secadv/20230207.txt |
| Apache XML Graphics Batik 代码问题漏洞 | | | | | https://lists.apache.org/thread/hco2nw1typoorz33qzs0fcdx0ws6d6j2 |
| | | | | | https://github.com/h2database/h2database/ |
| | | | | | https://lists.apache.org/thread/1dj60hg5nr36kjr4p1100dwjrqookps8 |
| | | | | | https://sqlite.org/src/info/cefc032473ac5ad2 |
| | | | | | https://www.openssl.org/news/secadv/20230322.txt |
| Red Hat JBoss Enterprise Application Platform 安全漏洞 | | | | | https://github.com/ICEPAY/REST-API-NET/commit/61f6b8758e5c971abff5f901cfa9f231052b775f |
| | | | | | https://netplex.github.io/json-smart/ |
| | | | | | https://research.jfrog.com/vulnerabilities/jettison-json-array-dos-xray-427911/ |
| Spring Framework 资源管理错误漏洞 | | | | | https://spring.io/security/cve-2023-20883 |
| Apache Commons FileUpload 安全漏洞 | | | | | https://lists.apache.org/thread/4xl4l09mhwg4vgsk7dxqogcjrobrrdoy |
| | | | | | https://lists.apache.org/thread/vy1c7fqcdqvq5grcqp6q5jyyb302khyz |
| | | | | | https://github.com/opencv/opencv_contrib/pull/3480 |
| | | | | | https://github.com/opencv/opencv_contrib/pull/3484/commits/2b62ff6181163eea029ed1cab11363b4996e9cd6 |
| Intel oneAPI Toolkits 代码问题漏洞 | | | | | http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00890.html |
| | | | | | https://github.com/google/guava |
| | | | | | https://github.com/pallets/flask/releases/tag/2.3.2 |
| Apache HTTP Server 缓冲区错误漏洞 | | | | | https://httpd.apache.org/security/vulnerabilities_24.html |
| Comprehensive Perl Archive Network 信任管理问题漏洞 | | | | | https://github.com/andk/cpanpm/releases/tag/2.35 |
| | | | | | https://perldoc.perl.org/HTTP::Tiny |
| | | | | | https://bitbucket.org/b_c/jose4j/commits/1929fe3 |
| | | | | | https://nodejs.org/en/blog/vulnerability/august-2023-security-releases |
| | | | | | https://nodejs.org/en/blog/vulnerability/august-2023-security-releases |
| | | | | | https://github.com/spring-projects/spring-framework/releases/tag/v6.0. |
| | | | | | https://github.com/xerial/snappy-java/security/advisories/GHSA-pqr6-cmr2-h8hf |
| | | | | | https://github.com/xerial/snappy-java/security/advisories/GHSA-fjpj-2g6w-x25r |
| | | | | | https://github.com/xerial/snappy-java/security/advisories/GHSA-qcwq-55hx-v3vh |
| | | | | | https://github.com/amplafi/htmlcleaner/issues/13 |
| | | | | | https://lists.apache.org/thread/j1ksjh9m9gx1q60rtk1sbzmxhvj5h5qz |
| | | | | | https://www.jenkins.io/security/advisory/2023-06-14/#SECURITY-3135 |
| | | | | | https://github.com/square/okio/commit/81bce1a30af244550b0324597720e4799281da7b |
| | | | | | https://github.com/eclipse/jetty.project/security/advisories/GHSA-wgh7-54f2-x98r |
| | | | | | https://docs.python.org/3/library/email.html |
| HCL BigFix Platform 输入验证错误漏洞 | | | | | https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0107791 |
| | | | | | https://github.com/curl/curl |
| | | | | | https://github.com/php/php-src/security/advisories/GHSA-3qrf-m4j2-pcrr |
| python-cryptography 信任管理问题漏洞 | | | | | https://github.com/pyca/cryptography/issues/9207 |
| | | | | | https://github.com/golang/go/issues/62266 |
| | | | | | https://github.com/golang/go/issues/62266 |
| | | | | | https://lists.apache.org/thread/q142wj99cwdd0jo5lvdoxzoymlqyjdds |
| | | | | | https://github.com/krb5/krb5/commit/88a1701b423c13991a8064feeb26952d3641d840 |
| | | | | | https://github.com/eclipse-ee4j/parsson/commit/9dd5ad5f871f7b93654073a3f8ce3e1d9b8d9b31 |
| | | | | | https://github.com/python/cpython/pull/107982 |
| | | | | | https://www.jenkins.io/security/advisory/2023-09-20/#SECURITY-3072 |
| | | | | | https://www.jenkins.io/security/advisory/2023-09-20/#SECURITY-3073 |
| | | | | | https://www.jenkins.io/security/advisory/2023-09-20/#SECURITY-3073 |
| Apache HTTP Server 资源管理错误漏洞 | | | | | https://httpd.apache.org/security/vulnerabilities_24.html |
| | | | | | https://github.com/xerial/snappy-java/security/advisories/GHSA-55g7-9cwv-5qfv |
| | | | | | https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q |
| | | | | | https://lists.apache.org/thread/0rqq6ktozqc42ro8hhxdmmdjm1k1tpxr |
| | | | | | https://www.gnu.org/software/libc/ |
| | | | | | https://github.com/stleary/JSON-java/ |
| | | | | | https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=0df40630850fb2740e6be6890bb905d3fc623b2d |
| | | | | | https://github.com/junit-team/junit4/blob/7852b90cfe1cea1e0cdaa19d490c83f0d8684b50/doc/ReleaseNotes4.13.1.md |
| | | | | | https://github.com/cure53/DOMPurify/commit/02724b8eb048dd219d6725b05c3000936f11d62d |
| Vmware Spring Framework 安全漏洞 | | | | | https://tanzu.vmware.com/security/cve-2020-5421 |
| | | | | | https://issues.apache.org/jira/browse/IO-556 |
| Apache Commons Net 输入验证错误漏洞 | | | | | https://lists.apache.org/thread/o6yn9r9x6s94v97264hmgol1sf48mvx7 |
| | | | | | https://github.com/jquery/jquery-ui/security/advisories/GHSA-9gj3-hwp5-pmwc |
| | | | | | https://github.com/jquery/jquery-ui/security/advisories/GHSA-j7qv-pgf6-hvh4 |
| | | | | | https://github.com/jquery/jquery-ui/security/advisories/GHSA-gpqq-952q-5327 |
| Vmware Spring Framework 安全漏洞 | | | | | https://tanzu.vmware.com/security/cve-2022-22950 |
| Pivotal Spring Security OAuth 资源管理错误漏洞 | | | | | https://tanzu.vmware.com/security/cve-2022-22969 |
| Apache Portable Runtime 输入验证错误漏洞 | | | | | https://lists.apache.org/thread/np5gjqlohc4f62lr09vrn61vl44cylh8 |
| | | | | | https://github.com/jquery/jquery-ui/security/advisories/GHSA-h6gj-6jjq-h8g9 |
| | | | | | https://github.com/jhy/jsoup/security/advisories/GHSA-gp7f-rwcx-9369 |
| Matthäus G. Chajdas pygments 代码问题漏洞 | | | | | https://pypi.org/project/Pygments/ |
| | | | | | https://www.openssl.org/news/secadv/20230207.txt |
| Apache XML Graphics Batik 代码问题漏洞 | | | | | https://lists.apache.org/thread/58m5817jr059f4v1zogh0fngj9pwjyj0 |
| | | | | | https://www.openssl.org/news/secadv/20230328.txt |
| | | | | | https://www.openssl.org/news/secadv/20230328.txt |
| | | | | | https://spring.io/security/cve-2023-20863 |
| | | | | | https://www.debian.org/security/2023/ |
| | | | | | https://github.com/pyca/cryptography/security/advisories/GHSA-w7pp-m8wf-vj6r |
| | | | | | https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=db779b0e10b047f2585615e0b8f2acdf21f8544a |
| Intel oneAPI Toolkits 安全漏洞 | | | | | http://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00890.html |
| | | | | | https://github.com/ckeditor/ckeditor4/security/advisories/GHSA-vh5c-xwqv-cv9g |
| | | | | | https://gitlab.gnome.org/GNOME/libxml2/-/commit/647e072ea0a2f12687fa05c172f4c4713fdb0c4f |
| | | | | | https://www.ruby-lang.org/en/news/2023/03/28/redos-in-uri-cve-2023-28755/ |
| | | | | | https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/ |
| | | | | | https://gitlab.gnome.org/GNOME/libxml2/-/commit/09a2dd453007f9c7205274623acdd73747c22d64 |
| | | | | | https://www.openssl.org/news/secadv/20230714.txt |
| | | | | | https://github.com/bcgit/bc-java/commit/e8c409a8389c815ea3fda5e8b94c92fdfe583bcc |
| | | | | | https://spring.io/security/cve-2023-34035 |
| | | | | | https://github.com/spring-projects/spring-boot/releases/tag/v3.0. |
| | | | | | https://www.openssl.org/news/secadv/20230719.txt |
| | | | | | https://github.com/netty/netty/security/advisories/GHSA-6mjq-h674-j845 |
| | | | | | https://lists.apache.org/thread/b9qgtqvhnvgfpn0w1gz918p21p53tqk2 |
| | | | | | https://github.com/krb5/krb5/commit/ef08b09c9459551aabbe7924fb176f1583053cdd |
| | | | | | https://github.com/eclipse/jetty.project/security/advisories/GHSA-3gh6-v5v9-6v9j |
| | | | | | https://www.openssl.org/news/secadv/20230731.txt |
| | | | | | https://www.jenkins.io/security/advisory/2023-07-26/#SECURITY-3188 |
| | | | | | https://github.com/golang/go/issues/62196 |
| | | | | | https://github.com/golang/go/issues/62197 |
| | | | | | https://github.com/eclipse/jetty.project/security/advisories/GHSA-hmr7-m48g-48f6 |
| | | | | | https://github.com/eclipse/jetty.project/security/advisories/GHSA-pwh8-58vv-vw48 |
| Apache Commons Compress 资源管理错误漏洞 | | | | | https://lists.apache.org/thread/5xwcyr600mn074vgxq92tjssrchmc93c |
| | | | | | https://lists.apache.org/thread/vvbr2ms7lockj1hlhz5q3wmxb2mwcw82 |
| | | | | | https://lists.apache.org/thread/065jfyo583490r9j2v73nhpyxdob56lw |
| | | | | | https://www.jenkins.io/security/advisory/2023-09-20/#SECURITY-3261 |
| | | | | | https://www.jenkins.io/security/advisory/2023-09-20/#SECURITY-3245 |
| | | | | | https://github.com/nahsra/antisamy/security/advisories/GHSA-pcf2-gh6g-h5r2 |
| Apache Santuario 日志信息泄露漏洞 | | | | | https://lists.apache.org/thread/vmqbp9mfxtrf0kmbnnmbn3h9j6dr9q55 |
| | | | | | https://lists.apache.org/thread/2pv8yz1pyp088tsxfb7ogltk9msk0jdp |
| Apache HTTP Server 资源管理错误漏洞 | | | | | https://httpd.apache.org/security/vulnerabilities_24.html |
| | | | | | https://www.openssh.com/openbsd.html |
| | | | | | https://lists.apache.org/thread/wfno8mf5nlcvbs78z93q9thgrm30wwfh |
| | | | | | https://github.com/curl/curl/releases |
| | | | | | https://github.com/redis/redis/commit/9e505e6cd842338424e05883521ca1fb7d0f47f6 |
| | | | | | https://github.com/nodejs/undici/commit/e041de359221ebeae04c469e8aff4145764e6d76 |
| | | | | | https://github.com/redis/redis/security/advisories/GHSA-ghmp-889m-7cvx |