ai.grakn:grakn-test (>=0.13.0 <=0.15.0), ai.grakn:test-integration (>=0.16.0 <=v1.1.0-226-g847ecff2d8e26f249422247d7665fe15f07b1744) +838 more potentially affected by CVE-2022-24615 via net.lingala.zip4j:zip4j (>=1.2.3 <=2.0.2)

net.lingala.zip4j:zip4j MAVEN version =1.2.3, =0.13.0, =0.16.0, =1.5.0, =1.0.0, =1.0.1, =1.0.4, =2.5.7, =1.1.13, =1.0.7, =1.1.4, =2.1.0, =1.0.0, =3.0.2, =1.0.3, =3.3.0, =3.3.9 and more Source cves: CVE-2022-24615 Source advisory: OSV:GHSA-Q62H-JW38-24VH...

fr.jetoile.hadoop:hadoop-unit-client-alluxio (>=2.2 <=3.8), io.minio:spark-benchmarks-dfsio_2.11 (=0.2.0) +57 more potentially affected by CVE-2022-23848 via org.alluxio:alluxio-core-common (>=1.0.0 <=2.7.2)

org.alluxio:alluxio-core-common MAVEN version =1.0.0, =2.2, =1.0.0, =1.5.0, =1.8.2, =1.1.0, =1.5.0, =1.5.0, =1.0.0, =1.5.0, =1.0.0, =1.5.0, =1.8.2, =1.8.2, =295 and more Source cves: CVE-2022-23848 Source advisory: OSV:GHSA-J3CH-VJPH-8Q6V...

CVE-2022-23053

Openmct versions 1.3.0 to 1.7.7 are vulnerable against stored XSS via the “Condition Widget” element, that allows the injection of malicious JavaScript into the ‘URL’ field. This issue affects: nasa openmct 1.7.7 version and prior versions; 1.3.0 version and later versions...

DEBIAN-CVE-2022-23647

Prism is a syntax highlighting library. Starting with version 1.14.0 and prior to version 1.27.0, Prism's command line plugin can be used by attackers to achieve a cross-site scripting attack. The command line plugin did not properly escape its output, leading to the input text being inserted int...

@kamilic-pkg/toolbox (>=1.0.0 <=1.1.0), @q7/cli (>=0.0.2 <=0.2.0) +8 more potentially affected by CVE-2022-0748 via post-loader (>=1.1.2 <=2.0.0)

post-loader NPM version =1.1.2, =1.0.0, =0.0.2, =0.0.2, =0.1.0, =0.0.4, =0.0.1, =2.6.21, =0.0.2, =0.0.4 Source cves: CVE-2022-0748 Source advisory: SNYK:JS-POSTLOADER-2403737...

Qt 安全漏洞

Qt is a cross-platform C++ application development framework from the Norwegian company Qt. It is widely used to develop GUI programs, in which case it is also known as the widget toolkit. It can also be used to develop non-GUI programs, such as console tools and servers. A security vulnerability...

Vmware Cloud Foundation 资源管理错误漏洞

Vmware VMware Cloud Foundation is an all-in-one hybrid cloud platform from Vmware. The platform includes features such as operations automation, infrastructure auto-configuration, and integrated lifecycle management. A resource management error vulnerability exists in Vmware Cloud Foundation, whi...

PT-2022-12329 · Sqlite3 +1 · Sqlite3 +1

Name of the Vulnerable Software and Affected Versions: SQLite3 versions 3.35.1 through 3.37.0 Description: A Memory Leak issue exists in SQLite Project via maliciously crafted SQL Queries, made by editing the Database File. It is possible to query a record and leak subsequent bytes of memory that...

com.ericsson.bss.cassandra.ecaudit:ecaudit_c4.0 (=3.1.3), com.instaclustr:cassandra-lucene-index-plugin (=4.0.0-1.0.0) +18 more potentially affected by CVE-2021-44521 via org.apache.cassandra:cassandra-all (>=4.0.0 <=4.0.19)

org.apache.cassandra:cassandra-all MAVEN version =4.0.0, =4.4.0.0, =4.4.0.0, =1.0.31, =1.0.31, =1.0.86, =4.0.18.0, =4.0.18.0, =1.2.0, =1.5.0, =1.7.0 and more Source cves: CVE-2021-44521 Source advisory: OSV:GHSA-8FFC-79XG-29W8...

cc.akkaha:pea-dubbo_2.12 (>=0.1.5 <=0.2.0), cc.akkaha:pea_2.12 (>=0.1.0 <=0.2.0) +43 more potentially affected by CVE-2018-21234 via org.jodd:jodd-json (>=3.6.6 <=5.0.3)

org.jodd:jodd-json MAVEN version =3.6.6, =0.1.5, =0.1.0, =0.4.0, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.0.3, =1.2.1 and more Source cves: CVE-2018-21234 Source advisory: OSV:GHSA-JRG3-QQ99-35G7...

cloudron (>=0.1.2 <=0.9.4), cloudron-manifestformat (>=1.3.0 <=5.10.1) +8 more potentially affected by CVE-2020-7737 via safetydance (>=0.0.15 <=1.0.0)

safetydance NPM version =0.0.15, =0.1.2, =1.3.0, =1.0.0, =1.0.0, =0.8.7, =1.3.0, =0.0.2, =0.2.1 Source cves: CVE-2020-7737 Source advisory: OSV:GHSA-6M85-WVCR-PGW3...

CVE-2021-37613

Stormshield Network Security SNS 1.0.0 through 4.2.3 allows a Denial of Service...

alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +42 more potentially affected by CVE-2022-23582 via tensorflow (>=2.6.0 <=2.6.2)

tensorflow PYPI version =2.6.0, =0.0.2, =1.0.1, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =1.1.2 - imgtovar =0.8.5 and more Source cves: CVE-2022-23582 Source advisory: OSV:GHSA-4J82-5CCR-4R8V...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23575 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-23575 Source advisory: OSV:GHSA-C94W-C95P-PHF8...

125softnlp (=0.0.1), a2 (>=0.10.11 <=0.10.13) +4847 more potentially affected by CVE-2022-23577 via tensorflow (>=1.0.1 <=2.5.2)

tensorflow PYPI version =1.0.1, =0.10.11, =0.1.0, =0.0.0, =0.6.0, =0.1.6, =1.0.0, =2.0.0, =1.0.0, =0.0.1, =0.0.7 and more Source cves: CVE-2022-23577 Source advisory: OSV:GHSA-8CXV-76P7-JXWR...

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +38 more potentially affected by CVE-2022-21731 via tensorflow (>=2.7.0 <=2.7.0rc1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-21731 Source advisory: OSV:GHSA-M4HF-J54P-P353...

alwakeupword (=1.0.0), armadillin (>=0.0.2 <=0.53.0) +42 more potentially affected by CVE-2022-23566 via tensorflow (>=2.6.0 <=2.6.2)

tensorflow PYPI version =2.6.0, =0.0.2, =1.0.1, =0.0.9, =0.2.0, =4.4.0, =1.1.2, =0.2.0, =0.0.1, =1.0.0, =1.1.2 - imgtovar =0.8.5 and more Source cves: CVE-2022-23566 Source advisory: OSV:GHSA-5QW5-89MW-WCG2...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23566 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-23566 Source advisory: OSV:GHSA-5QW5-89MW-WCG2...

aadhaar-detection (=0.5.0), accuinsight (>=1.0.84 <=1.0.87) +38 more potentially affected by CVE-2022-23561 via tensorflow (>=2.7.0 <=2.7.0rc1)

tensorflow PYPI version =2.7.0, =1.0.84, =3.0.22, =0.1.11, =0.1.11, =0.1.11, =0.1.0, =0.0.1, =0.1.5.dev202303131412, =0.1.0, =0.1.1 and more Source cves: CVE-2022-23561 Source advisory: OSV:GHSA-9C78-VCQ7-7VXQ...

a62-emotion (>=0.10.12 <=0.11.4), aiproteomics (=0.2.1) +97 more potentially affected by CVE-2022-23561 via tensorflow-cpu (>=1.15.0 <=2.4.4)

tensorflow-cpu PYPI version =1.15.0, =0.10.12, =2.0.0, =2.0.0, =1.0.0, =0.0.5, =0.3.0, =0.0.1, =0.8.1, =0.1.1, =1.3.0, =0.1.0.dev1, =0.0.1, =0.3.3 and more Source cves: CVE-2022-23561 Source advisory: OSV:GHSA-9C78-VCQ7-7VXQ...