CVE - 标签 - Y4er的博客

CVE

2022

CVE-2022-43781 Bitbucket Server & Data Center 环境变量注入导致RCE 11-28

对ZDI公布的InfraSuite Device Master一揽子漏洞的分析 11-08

CVE-2022-41828 Amazon Redshift JDBC Driver RCE 10-28

CVE-2022-42889 Apache Commons Text RCE (Text4Shell) 10-13

CVE-2022-36923 ManageEngine OpManager getUserAPIKey Authentication Bypass 09-01

CVE-2022-22955 VMware Workspace ONE Access OAuth2TokenResourceController Auth Bypass 08-14

CVE-2022-31656 VMware Workspace ONE Access UrlRewriteFilter 权限绕过 08-14

CVE-2022-35405 Zoho Password Manager Pro XML-RPC RCE 07-21

CVE-2022-2143 Advantech iView NetworkServlet 命令注入RCE 07-06

CVE-2022-28219 Zoho ManageEngine ADAudit Plus XXE到RCE 06-30

CVE-2022-21445 Oracle ADF Faces 反序列化RCE 06-29

CVE-2022-26134 Confluence Server Data Center OGNL RCE 06-08

CVE-2022-22972 VMware Workspace ONE Access Authentication Bypass RCE 05-27

CVE-2022-26503 Veeam Agent for Microsoft Windows LPE 03-22

CVE-2022-26500 Veeam Backup & Replication RCE 03-17

CVE-2022-22947 SpringCloud GateWay SPEL RCE Echo Response 03-03

CVE-2022-23131 Zabbix Web Frontend Bypassing the SAML SSO Authentication 02-22

CVE-2022-22733 Apache ShardingSphere ElasticJob-UI RCE 01-21

CVE-2021-45456 Apache Kylin 命令注入 01-13

2021

CVE-2021-45232 Apache APISIX Dashboard Unauthorized Access Vulnerability 12-28

1
2