10 matches found
NeteaseCloudMusicRustApi (=0.1.1), RustMusic (=0.1.0) +535 more potentially affected by unknown CVE via actix-http (>=0.1.5 <=3.0.0)
actix-http CARGO version =0.1.5, =0.1.0, =0.1.0, =0.8.0, =0.1.8, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.3.1 - actix-delay =0.1.0 and more Source cves: unknown CVE Source advisory: OSV:GHSA-XHJ4-VRGC-HR34...
ncmdump 安全漏洞
ncmdump is a software developed by TaurusXin, a personal developer in China. It allows converting downloaded NetEase Cloud Music cache files ncm into MP3 or FLAC formats. Versions of ncmdump prior to 1.4.0 contained security vulnerabilities; these vulnerabilities were caused by null pointer...
ncmdump 安全漏洞
ncmdump is a software that converts downloaded NetEase Cloud Music cache files ncm to mp3 or flac format by the individual developer TaurusXin in China. A security vulnerability exists in ncmdump version v1.3.2, which originated from allowing an attacker to cause a denial of service via memory...
NetEase Cloud Music has a flawed logic vulnerability
NetEase Cloud Music is a music product that focuses on discovery and sharing. A logic flaw vulnerability exists in NetEase Cloud Music, which can be exploited by attackers to obtain sensitive information...
dll hijacking vulnerability in NetEase Cloud Music (Windows client)
NetEase Cloud Music is a music player that focuses on discovery and sharing. A dll hijacking vulnerability exists in NetEase Cloud Music Windows client, which can be exploited by attackers to load a malicious dll and execute malicious code...
Command Execution Vulnerability in NetEase Cloud Music (Windows Client) of Guangzhou NetEase Computer System Co.
NetEase Cloud Music is a music player that focuses on discovery and sharing. A command execution vulnerability exists in NetEase Cloud Music Windows client of Guangzhou NetEase Computer Systems Co. that can be exploited by an attacker to gain server control privileges...
NeteaseCloudMusicRustApi (=0.1.1), RustMusic (=0.1.0) +171 more potentially affected by CVE-2020-35899 via actix-service (>=0.1.6 <=0.4.2)
actix-service CARGO version =0.1.6, =0.8.0, =0.1.8, =0.1.0, =0.1.0, =0.1.0, =0.4.0, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.1.1 and more Source cves: CVE-2020-35899 Source advisory: OSV:RUSTSEC-2020-0046...
NetEase cloud music software suffers from dll hijacking vulnerability
NetEase Cloud Music is a music player that focuses on discovery and sharing. A dll hijacking vulnerability exists in the NetEase Cloud Music PC client when handling wav and other files. An attacker can exploit this vulnerability to load a malicious dll and execute malicious code...
Arbitrary File Read Vulnerability in NetEase Cloud RDS Service
NetEase Cloud RDS is a stable, reliable and elastic scalable online relational database service. An arbitrary file read vulnerability exists in the NetEase Cloud RDS service, which can be exploited by an attacker to read arbitrary files...
Upgrade Checksum Vulnerability in NetEase Cloud Classroom Android App
Netease Cloud Classroom app is a professional knowledge learning software. An upgrade checksum vulnerability exists in NetEase Cloud Classroom Android App. Allow attackers to exploit the vulnerability to replace the upgrade packet to induce users to download malware...