2020-12-16
Ðû²¼Ê±¼ä 2020-12-16ÐÂÔöÊÂÎñ
ÊÂÎñÃû³Æ£º | TCP_ZooKeeper_δÊÚȨ»á¼ûÎó²î |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | ¼ì²âµ½Ô´IPÖ÷»úÕýÔÚʹÓÃZooKeeper±£´æµÄδÊÚȨ»á¼ûÎó²î¾ÙÐй¥»÷µÄÐÐΪ¡£ZooKeeperÊÇÒ»¸öÂþÑÜʽµÄ£¬¿ª·ÅÔ´ÂëµÄÂþÑÜʽӦÓóÌÐòе÷·þÎñ£¬ÊÇGoogleµÄChubbyÒ»¸ö¿ªÔ´µÄʵÏÖ£¬ÊÇHadoopºÍHbaseµÄÖ÷Òª×é¼þ¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ | TCP_Çå¾²Îó²î_InfluxDB_δÊÚȨ»á¼ûÎó²î |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | influxdb ÊÇÒ»¿îÖøÃûµÄʱÐòÊý¾Ý¿â£¬ÆäʹÓà jwt ×÷Ϊ¼øȨ·½·¨¡£ÔÚÓû§¿ªÆôÁËÈÏÖ¤£¬µ«Î´ÉèÖòÎÊý shared-secret µÄÇéÐÎÏ£¬jwt µÄÈÏÖ¤ÃÜԿΪ¿Õ×Ö·û´®£¬´Ëʱ¹¥»÷Õß¿ÉÒÔαÔìí§ÒâÓû§Éí·ÝÔÚ influxdb ÖÐÖ´ÐÐ SQL Óï¾ä¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | HTTP_ZoHo_ManageEngine_í§ÒâÎļþÉÏ´«Îó²î[CVE-2019-8394][CNNVD-201902-646] |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | ¼ì²â¼ì²âµ½Ô´IPÖ÷»úÕýÔÚʹÓÃZoHo_ManageEngine ServiceDesk PlusµÄÎó²îÉÏ´«í§ÒâÎļþ£»ZOHO ManageEngine ServiceDesk Plus£¨SDP£©ÊÇÃÀ¹ú׿ºÀ£¨ZOHO£©¹«Ë¾µÄÒ»Ì×»ùÓÚITIL¼Ü¹¹µÄIT·þÎñÖÎÀíÈí¼þ¡£¸ÃÈí¼þ¼¯³ÉÁËÊÂÎñÖÎÀí¡¢ÎÊÌâÖÎÀí¡¢×ʲúÖÎÀíITÏîÄ¿ÖÎÀí¡¢²É¹ºÓëÌõÔ¼ÖÎÀíµÈ¹¦Ð§Ä£¿é¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | HTTP_Struts2_S2-061Ô¶³ÌÏÂÁîÖ´Ðй¥»÷[CVE-2020-17530] |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | ¼ì²âµ½Ô´IPÖ÷»úÕýÊÔͼͨ¹ýApache Struts2¿ò¼ÜÏÂÁîÖ´ÐÐÎó²î¹¥»÷Ä¿µÄIPÖ÷»ú¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | HTTP_Çå¾²Îó²î_FineCMS_í§ÒâÎļþдÈëgetshellÎó²î |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | FineCMS±£´æí§ÒâÎļþÉÏ´«Îó²î£¬¿ÉÒÔͨ¹ý½á¹¹²ÎÊýÇëÇóÖ´ÐÐphp´úÂ룬»ñÈ¡Ä¿µÄȨÏÞ¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | DNS_ÍÚ¿óÈä³æ_WannaMine_ÏÂÔØÐÐΪ |
Çå¾²ÀàÐÍ£º | Èä³æ²¡¶¾ |
ÊÂÎñÐÎò£º | ¼ì²âµ½ÍÚ¿óÈä³æWannaMineÏÂÔØÐÐΪ¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | DNS_ÍÚ¿óÈä³æ_WannaMine_ÅþÁ¬DNS·þÎñÆ÷ͨѶ |
Çå¾²ÀàÐÍ£º | Èä³æ²¡¶¾ |
ÊÂÎñÐÎò£º | ¼ì²âµ½ÍÚ¿óÈä³æWannaMineÅþÁ¬DNS·þÎñÆ÷ͨѶ¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | DNS_APT_Ë÷Â×Ö®ÑÛ(ProjectSauron)_ÅþÁ¬ |
Çå¾²ÀàÐÍ£º | ľÂíºóÃÅ |
ÊÂÎñÐÎò£º | ¼ì²âµ½APT×éÖ¯Ë÷Â×Ö®ÑÛ(ProjectSauron)¹¥»÷ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | DNS_ľÂí_¿ÉÒÉdnsËíµÀ¹¤¾ß_ÅþÁ¬ |
Çå¾²ÀàÐÍ£º | ¿ÉÒÉÐÐΪ |
ÊÂÎñÐÎò£º | ÒÉËÆ·ºÆðÁËdnsËíµÀ¹¤¾ß·¢³öµÄdnsÇëÇó£¬Ô´IP¿ÉÄܱ»Ö²ÈëÁËÖîÈçdnscatÖ®ÀàµÄdnsËíµÀ¹¤¾ß¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | TCP_Apache_Tomcat_Websocket_DoS¹¥»÷[CVE-2020-13935][CNNVD-202007-571] |
Çå¾²ÀàÐÍ£º | ¾Ü¾ø·þÎñ |
ÊÂÎñÐÎò£º | ÔÚÔÚÊÜÓ°Ïì¹æÄ£ÄÚµÄtomcat°æ±¾ÖÐ, Óõ½ÁËwebsocketʱ£¬WebSocket frameÖеÄ"¸ºÔس¤¶È"(payload length)ûÓб»×¼È·µØÑéÖ¤£¬´Ó¶ø"ÎÞЧµÄ¸ºÔس¤¶È"(Invalid payload lengths)ÄÜ´¥·¢Ò»¸ö"ÎÞÏÞÑ»·"(infinite loop)£¬¾ßÓÐ"ÎÞЧµÄ¸ºÔس¤¶È"µÄ¶à¸örequestsÄܹ»µ¼Ö¾ܾø·þÎñ. |
¸üÐÂʱ¼ä£º | 20201215 |
ÐÞ¸ÄÊÂÎñ
ÊÂÎñÃû³Æ£º | HTTP_Çå¾²Îó²î_PaloAlto_GlobalProtect_SSL_VPNÃûÌû¯×Ö·û´®_ÏÂÁîÖ´ÐÐÎó²î |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | ¼ì²âµ½Ô´IPÖ÷»úÕýÔÚʹÓÃPaloAlto GlobalProtect SSL VPNÃûÌû¯×Ö·û´®Îó²î¹¥»÷Ä¿µÄIPÖ÷»úµÄÐÐΪ¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | HTTP_ECShopȫϵÁа汾Զ³Ì´úÂëÖ´ÐÐÎó²î |
Çå¾²ÀàÐÍ£º | Çå¾²Îó²î |
ÊÂÎñÐÎò£º | ¼ì²âµ½Ô´IPÖ÷»úÕýÏòÄ¿µÄÖ÷»ú¾ÙÐÐEcshopµÇ¼ҳÃæ×¢Èë¹¥»÷´úÂë¡£ |
¸üÐÂʱ¼ä£º | 20201215 |
ÊÂÎñÃû³Æ£º | SMTP_¿ÉÒɲ¡¶¾Óʼþ_VBS |
Çå¾²ÀàÐÍ£º | Èä³æ²¡¶¾ |
ÊÂÎñÐÎò£º | ÊÂÎñÔ´IPËùÔÚµÄÖ÷»úÕýÔÚ·¢ËÍVBS²¡¶¾Óʼþ¡£ |
¸üÐÂʱ¼ä£º | 20201215 |