ÿÖÜÉý¼¶²¼¸æ-2023-05-16

°ä²¼¹¦·ò 2023-05-16

ÐÂÔöÊÂÎñ

ÊÂÎñÃû³Æ£º

TCP_·ì϶ÀûÓÃ_·´ÐòÁл¯_Oracle_Weblogic_T3ºÍ̸[CVE-2020-2883]

°²È«ÀàÐÍ£º

°²È«·ì϶

ÊÂÎñÃèÊö£º

OracleWebLogicServerÊÇÒ»¸öͳһµÄ¿ÉÀ©´óƽ̨ £¬ÓÃÓÚÔÚ±¾µØºÍÔÆ¶Ë¿ª·¢¡¢²¿ÊðºÍÔËÐÐÆóÒµÀûÓ÷¨Ê½ £¬ÀýÈçJava¡£WebLogicServerÌṩÁËJavaEnterpriseEdition(EE)ºÍJakartaEEµÄ¿¿µÃס¡¢³ÉÊìºÍ¿ÉÀ©´óµÄʵÏÖ¡£CVE-2020-2555·ì϶Äܹ»Í¨¹ý·´ÐòÁл¯´¥·¢ExtractorÖв»°²È«µÄextract²½Öè £¬ÔÊÐíδ¾­Éí·ÝÑéÖ¤µÄÔ¶³Ì¹¥»÷Õßͨ¹ýT3ºÍÌ¸ÍøÂç½Ó¼û²¢·ÛËéÒ×Êܹ¥»÷µÄWebLogic·þÎñÆ÷ £¬³É¹¦ÀûÓô˷ì϶¿ÉÄܵ¼ÖÂOracleWebLogic·þÎñÆ÷±»ÊÕÊÜ»òÃô¸ÐÐÅϢй¶¡£Ó°ÏìÁìÓò£ºOracleCoherence10.3.6.0.0OracleCoherence12.1.3.0.0OracleCoherence12.2.1.3.0OracleCoherence12.2.1.4.0

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_·ì϶ÀûÓÃ_ÐÅϢй¶_YONYOUNFIDA

°²È«ÀàÐÍ£º

CGI¹¥»÷

ÊÂÎñÃèÊö£º

ufidaÐÅϢй¶·ì϶¹¥»÷³¢ÊÔ

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

DNS_¿ÉÒÉÐÐΪ_Ëí·´úÀí¹¤¾ß_nat123³¢ÊÔת·¢

°²È«ÀàÐÍ£º

¿ÉÒÉÐÐΪ

ÊÂÎñÃèÊö£º

nat123ÊÇÒ»¸öÄÚÍø¶Ë¿ÚÓ³ÉäÈí¼þ £¬ÔÚÄÚÍøÆô¶¯Ó³Éäºó £¬¿ÉÔÚ±íÍøÇáËɽӼûÏνÓÄÚÍøÍøÕ¾µÅצÓà £¬ÊµÏÖÄÚÍø´©Í¸¡£

³£±»ÍøÕ¾¿ª·¢²âÊÔÈËÔ±»ò¹¥»÷ÕßʹÓá£

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_°²È«·çÏÕ_¿ÉÒÉÐÐΪ_SNETCracker_·µ»ØÖ÷»úÐÅÏ¢/ÒªÇó¸üÐÂ

°²È«ÀàÐÍ£º

¿ÉÒÉÐÐΪ

ÊÂÎñÃèÊö£º

SNETCracker(³¬µÈÈõ¿ÚÁî)³¬ÊÇÒ»¿îWindowsƽ̨µÄÈõ¿ÚÁîÉ󼯹¤¾ß £¬Ö§³ÖÅúÁ¿¶àÏ̲߳鳭 £¬¿É¼±¾ç·¢ÏÖÈõÃÜÂë¡¢Èõ¿ÚÁîÕ˺Å £¬ÃÜÂëÖ§³ÖºÍÓû§Ãû½áºÏ½øÐв鳭 £¬´ó´óÌá¸ß³É¹¦ÂÊ £¬Ö§³Ö×Ô½ç˵·þÎñ¶Ë¿ÚºÍ×ֵ䡣

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_ľÂí_Win_Lokibot_LokiPWS_ÏνÓ

°²È«ÀàÐÍ£º

ľÂíºóÃÅ

ÊÂÎñÃèÊö£º

¼ì²âµ½Ä¾ÂíÊÔͼÏνÓÔ¶³Ì·þÎñÆ÷ £¬Ô´IPµØµãµÄÖ÷»ú¿ÉÄܱ»Ö²ÈëÁËľÂíLokibot_LokiPWSÃÜÂëÇÔÈ¡Æ÷¡£LokiPWSÊÇÒ»¸öÇÔÃÜľÂí £¬»á½«Êܺ¦ÕßÖ÷»úÉÏ´æ´¢µÄÃÜÂë¡¢ä¯ÀÀÆ÷µÇ½ƾ֤¡¢¼ÓÃÜÇ®±ÒÇ®°üµÈÐÅÏ¢ÉÏ´«µ½Ô¶³Ì·þÎñÆ÷¡£

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

TCP_Éó¼ÆÊÂÎñ_SMTP_먦Æô¿Í»§¶ËÊÚȨ½Ó¼û±»»Ø¾ø

°²È«ÀàÐÍ£º

°²È«·ì϶

ÊÂÎñÃèÊö£º

¼ì²âµ½smtpºÍ̸503ÃýÎó·µ»Ø £¬µ±smtpºÍ̸ʹÓÃʱ £¬Ã»ÓнøÐÐÉí·ÝÑéÖ¤»òÉí·ÝÑéÖ¤²»Õýȷʱ»á³öÏÖ503ÃýÎó¡£

¸üй¦·ò£º

20230516

 

Åú¸ÄÊÂÎñ

 

ÊÂÎñÃû³Æ£º

TCP_Oracle_WebLogic_·´ÐòÁл¯·ì϶[CVE-2020-2883][CVE-2020-14645][CVE-2020-14841][CVE-2020-14825][CVE-2020-14825/CVE-2020-2883/CVE-2020-14645/CVE-2020-14841]

°²È«ÀàÐÍ£º

°²È«·ì϶

ÊÂÎñÃèÊö£º

¼ì²âµ½Ô´ipÔÚÀûÓÃ10.3.6.0.0¡¢12.1.3.0.0¡¢12.2.1.3.0¡¢12.2.1.4.0ºÍ14.1.1.0.0°æ±¾µÄweblogicÖдæÔڵķ´ÐòÁл¯·ì϶ £¬´Ó¶ø»ñȡָ±êϵͳµÄȨÏÞ¡£

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_×¢Èë¹¥»÷_Sinapsi_eSolar_Light_Photovoltaic_System_Monitor_SQL×¢Èë[CVE-2012-5861]

°²È«ÀàÐÍ£º

×¢Èë¹¥»÷

ÊÂÎñÃèÊö£º

¼ì²âµ½Ô´IPÖ÷»úÕýÊÔͼͨ¹ýSinapsieSolarLightPhotovoltaicSystemMonitorSQL×¢Èë·ì϶¹¥»÷Ö÷ÕÅIPÖ÷»ú¡£SinapsieSolarLightÊÇÌ«ÑôÄÜÀûÓÃÄÚʹÓÃµÄ¼à¿ØÏµÍ³¡£SinapsieSolar £¬SinapsieSolarDUO¹Ì¼þ2.0.2870_2.2.12֮ǰ°æ±¾ÖдæÔÚ¶à¸öSQL×¢Èë·ì϶¡£Ô¶³Ì¹¥»÷ÕßÀûÓø÷ì϶ͨ¹ý(1)primo²Ù×÷Öеġ®inverterselect¡¯²ÎÊý´«Ë͵½dettagliinverter.php¾ç±¾»ò(2)¡®lingua¡¯²ÎÊý´«Ë͵½changelanguagesession.php¾ç±¾ £¬Ö´ÐÐËÁÒâSQLºÅÁî¡£¹¥»÷Õ߿ɻñµÃÃô¸ÐÐÅÏ¢»ò²Ù×÷Êý¾Ý¿â¡£

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_ÐÅϢй¶_Atlassian-Jira[CVE-2019-8449]

°²È«ÀàÐÍ£º

CGI¹¥»÷

ÊÂÎñÃèÊö£º

¼ì²âµ½Ô´IPÖ÷»úÕýÊÔͼͨ¹ýHTTP_Atlassian-Jira_ÐÅϢй¶[CVE-2019-8449]·ì϶¹¥»÷Ö÷ÕÅIPÖ÷»ú¡£AtlassianJira8.4.0֮ǰ°æ±¾/rest/api/latest/groupuserpicker½Ó¿ÚÔÊÐíδÊÚȨ²éÎÊÔ±¹¤ÐÅÏ¢ £¬¹¥»÷ÕßÄܹ»Í¨¹ý±¬ÆÆÓû§ÃûÃûµ¥µÈ²½Öè»ñÈ¡Óû§ÐÅϢδÊÚȨµÄ¹¥»÷Õß¿ÉÀûÓ÷ì϶»ñÈ¡ÊÜÓ°Ïì×é¼þÃô¸ÐÐÅÏ¢¡£

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_ÌáȨ¹¥»÷_Linux¿ÉÒɺÅÁîÖ´Ðй¥»÷

°²È«ÀàÐÍ£º

°²È«·ì϶

ÊÂÎñÃèÊö£º

ºÅÁî×¢Èë¹¥»÷ £¬ÊÇÖ¸ÕâÑùÒ»ÖÖ¹¥»÷¼¿Á© £¬ºÚ¿Íͨ¹ý°ÑϵͳºÅÁî²ÎÓëµ½webÒªÇóÒ³ÃæÍ·²¿ÐÅÏ¢ÖÐ £¬Ò»¸ö¶ñÒâºÚ¿ÍÒÔÀûÓÃÕâÖÖ¹¥»÷²½ÖèÀ´·¸·¨»ñÈ¡Êý¾Ý»òÕßÍøÂ硢ϵͳ×ÊÔ´¡£null

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_ºÅÁîÓë½ÚÔì_Ô¶¿ØºóÃÅ_FiveSys_ÏνÓC2·þÎñÆ÷

°²È«ÀàÐÍ£º

ľÂíºóÃÅ

ÊÂÎñÃèÊö£º

¼ì²âµ½FiveSysľÂíºóÃÅÊÔͼÏνÓÔ¶³Ì·þÎñÆ÷¡£FiveSysľÂíÖØÒªÖ°ÄÜÊǽ«Ê¹ÓÃÕßÁ÷Á¿µ¼Òýµ½Ìض¨¶ñÒâ´úÀí·þÎñÆ÷ £»FiveSysÖ÷ÕÅÊÇÔÚÓû§ÏνÓÏßÉÏÓÎϷʱ £¬½«Óû§Á÷Á¿µ¼Ïò´úÀí·þÎñÆ÷ʱ £¬½è´ËÀ¹½Ø¡¢ÇÔÈ¡Óû§ÕÊÃܵÈÑéÖ¤ÐÅÏ¢¡£

¸üй¦·ò£º

20230516

 

ÊÂÎñÃû³Æ£º

HTTP_ºÅÁî½ÚÔì_Ô¶¿ØºóÃÅ_Agentb_ÏνÓC2·þÎñÆ÷

°²È«ÀàÐÍ£º

ľÂíºóÃÅ

ÊÂÎñÃèÊö£º

¼ì²âµ½AgentbľÂíºóÃÅÊÔͼÏνÓÔ¶³Ì·þÎñÆ÷¡£Agentb»áÍøÂçÊܺ¦Ö÷»ú¸ù»ùÐÅÏ¢ £¬²¢´æÔÚ½«Êܺ¦Ö÷»ú½ÚÔì³ÉΪ´úÀí·þÎñÆ÷µÄ¿ÉÄÜ¡£

¸üй¦·ò£º

20230516