2026年3月3日星期二

Android 多個漏洞

Android 多個漏洞

發佈日期: 2026年03月03日

風險: 中度風險

類型: 操作系統 - 流動裝置及操作系統

於 Android 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發執行任意程式碼、洩露敏感資料、阻斷服務狀況及權限提升。

影響

  • 權限提升
  • 阻斷服務
  • 資料洩露
  • 遠端執行程式碼

受影響之系統或技術

  • 2026-03-05 前的 Android 保安更新級別

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

漏洞識別碼

資料來源

相關連結

沒有留言:

Android Multiple Vulnerabilities

Android Multiple Vulnerabilities

Release Date: 3 Mar 2026

RISK: Medium Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Android. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, sensitive information disclosure, denial of service condition and elevation of privilege on the targeted system.

Impact

  • Elevation of Privilege
  • Denial of Service
  • Information Disclosure
  • Remote Code Execution

System / Technologies affected

  • Android security patch level prior to 2026-03-05

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Vulnerability Identifier

Source

Related Link

沒有留言:

三星產品多個漏洞

三星產品多個漏洞

發佈日期: 2026年03月03日

風險: 中度風險

類型: 操作系統 - 流動裝置及操作系統

於三星產品發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發敏感資料洩露、繞過保安限制、阻斷服務狀況、權限提升及遠端執行程式碼。

 

 

影響

  • 阻斷服務
  • 權限提升
  • 遠端執行程式碼
  • 繞過保安限制
  • 資料洩露

受影響之系統或技術

  • 運行 Android 13, 14, 15, 16 的三星產品
  • Exynos 1280, 1380, 1480, 1580, 2200, 2400, 2500

有關受影響產品,請參閱以下連結:

https://security.samsungmobile.com/securityUpdate.smsb

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

解決方案

在安裝軟件之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

 

安裝軟件供應商提供的修補程式:

漏洞識別碼

資料來源

相關連結

沒有留言:

Samsung Products Multiple Vulnerabilities

Samsung Products Multiple Vulnerabilities

Release Date: 3 Mar 2026

RISK: Medium Risk

TYPE: Operating Systems - Mobile & Apps

Multiple vulnerabilities were identified in Samsung Products. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, security restriction bypass, denial of service condition, elevation of privilege and remote code execution on the targeted system.

 

Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Samsung mobile devices running Android 13, 14, 15, 16
  • Exynos 1280, 1380, 1480, 1580, 2200, 2400, 2500

For affected products, please refer to the link below:

https://security.samsungmobile.com/securityUpdate.smsb

https://semiconductor.samsung.com/support/quality-support/product-security-updates/

Solutions

Before installation of the software, please visit the vendor website for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

沒有留言:

2026年3月2日星期一

RedHat Linux Kernel Multiple Vulnerabilities

RedHat Linux Kernel Multiple Vulnerabilities

Release Date: 2 Mar 2026

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in RedHat Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger data manipulation, denial of service condition, elevation of privilege, remote code execution and sensitive information disclosure on the targeted system.

Impact

  • Remote Code Execution
  • Denial of Service
  • Elevation of Privilege
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
  • Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
  • Red Hat CodeReady Linux Builder for x86_64 8 x86_64
  • Red Hat Enterprise Linux Server - AUS 8.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 8 aarch64
  • Red Hat Enterprise Linux for IBM z Systems 8 s390x
  • Red Hat Enterprise Linux for Power, little endian 8 ppc64le
  • Red Hat Enterprise Linux for x86_64 8 x86_64

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

沒有留言:

SUSE Linux 內核多個漏洞

SUSE Linux 內核多個漏洞

發佈日期: 2026年03月02日

風險: 中度風險

類型: 操作系統 - LINUX

於 SUSE Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況及權限提升。

影響

  • 阻斷服務
  • 權限提升

受影響之系統或技術

  • SUSE Linux Enterprise Live Patching 15-SP7
  • SUSE Linux Enterprise Real Time 15 SP7
  • SUSE Linux Enterprise Server 11 SP4
  • SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
  • SUSE Linux Enterprise Server 15 SP7
  • SUSE Linux Enterprise Server for SAP Applications 15 SP7

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

 

安裝供應商提供的修補程式:

漏洞識別碼

資料來源

相關連結

沒有留言:

SUSE Linux Kernel Multiple Vulnerabilities

SUSE Linux Kernel Multiple Vulnerabilities

Release Date: 2 Mar 2026

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and elevation of privilege on the targeted system.

Impact

  • Denial of Service
  • Elevation of Privilege

System / Technologies affected

  • SUSE Linux Enterprise Live Patching 15-SP7
  • SUSE Linux Enterprise Real Time 15 SP7
  • SUSE Linux Enterprise Server 11 SP4
  • SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
  • SUSE Linux Enterprise Server 15 SP7
  • SUSE Linux Enterprise Server for SAP Applications 15 SP7

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

沒有留言:

Ubuntu Linux 核心多個漏洞

Ubuntu Linux 核心多個漏洞

發佈日期: 2026年03月02日

風險: 中度風險

類型: 操作系統 - LINUX

於 Ubuntu Linux 核心發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況及遠端執行任意程式碼。

影響

  • 阻斷服務
  • 遠端執行程式碼

受影響之系統或技術

  • Ubuntu 22.04 LTS
  • Ubuntu 24.04 LTS

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

 

安裝供應商提供的修補程式:

漏洞識別碼

資料來源

相關連結

沒有留言:

Ubuntu Linux Kernel Multiple Vulnerabilities

Ubuntu Linux Kernel Multiple Vulnerabilities

Release Date: 2 Mar 2026

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in Ubuntu Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition and remote code execution on the targeted system.

Impact

  • Denial of Service
  • Remote Code Execution

System / Technologies affected

  • Ubuntu 22.04 LTS
  • Ubuntu 24.04 LTS

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

沒有留言:

2026年2月28日星期六

Juniper Junos OS 遠端執行程式碼漏洞

Juniper Junos OS 遠端執行程式碼漏洞

發佈日期: 2026年02月27日

風險: 中度風險

類型: 操作系統 - Network

於 Juniper Junos OS 發現一個漏洞。遠端攻擊者可利用此漏洞,於目標系統觸發執行程式碼。

影響

  • 遠端執行程式碼

受影響之系統或技術

  • Junos OS Evolved on PTX Series 25.4 的 25.4R1-S1-EVO 之前的版本
  • Junos OS Evolved on PTX Series 25.4 的 25.4R2-EVO 之前的版本

詳情請參閱以下連結﹕

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

 

漏洞識別碼

資料來源

相關連結

沒有留言:

Juniper Junos OS Remote Code Execution Vulnerability

Juniper Junos OS Remote Code Execution Vulnerability

Release Date: 27 Feb 2026

RISK: Medium Risk

TYPE: Operating Systems - Networks OS

A vulnerability has been identified in Juniper Junos OS. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

Impact

  • Remote Code Execution

System / Technologies affected

  • Junos OS Evolved on PTX Series 25.4 versions before 25.4R1-S1-EVO
  • Junos OS Evolved on PTX Series 25.4 versions before 25.4R2-EVO

Please refer to the link below for detail:

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Vulnerability Identifier

Source

Related Link

沒有留言:

Microsoft Edge 多個漏洞

Microsoft Edge 多個漏洞

發佈日期: 2026年02月27日

風險: 中度風險

類型: 用戶端 - 瀏覽器

於 Microsoft Edge 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發繞過保安限制、資料篡改及洩露敏感資料。

影響

  • 繞過保安限制
  • 資料洩露
  • 篡改

受影響之系統或技術

  • Microsoft Edge 145.0.3800.82 之前的版本

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

安裝軟件供應商提供的修補程式:

  • 更新至 145.0.3800.82 或之後版本

漏洞識別碼

資料來源

相關連結

沒有留言:

Microsoft Edge Multiple Vulnerabilities

Microsoft Edge Multiple Vulnerabilities

Release Date: 27 Feb 2026

RISK: Medium Risk

TYPE: Clients - Browsers

Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, data manipulation and sensitive information disclosure on the targeted system.

Impact

  • Security Restriction Bypass
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Microsoft Edge version prior to 145.0.3800.82

Solutions

Before installation of the software, please visit the software vendor web-site for more details.

Apply fixes issued by the vendor:

  • Update to version 145.0.3800.82 or later

Vulnerability Identifier

Source

Related Link

沒有留言:

Trend Micro Apex One 多個漏洞

Trend Micro Apex One 多個漏洞

發佈日期: 2026年02月27日

風險: 中度風險

類型: 保安軟件及應用設備 - 保安軟件及應用設備

於 Trend Micro Apex One 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發遠端執行任意程式碼及權限提升。

影響

  • 權限提升
  • 遠端執行程式碼

受影響之系統或技術

  • Trend Micro Apex One - 2019 (On-prem)
  • Trend Micro Apex One as a Service (SaaS)
  • Trend Vision One Endpoint - Standard Endpoint Protection (SaaS)

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

 

安裝供應商提供的修補程式:

漏洞識別碼

資料來源

相關連結

沒有留言:

Trend Micro Apex One Multiple Vulnerabilities

Trend Micro Apex One Multiple Vulnerabilities

Release Date: 27 Feb 2026

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

Multiple vulnerabilities were identified in Trend Micro Apex One. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution and elevation of privilege on the targeted system.

 

Impact

  • Elevation of Privilege
  • Remote Code Execution

System / Technologies affected

  • Trend Micro Apex One - 2019 (On-prem)
  • Trend Micro Apex One as a Service (SaaS)
  • Trend Vision One Endpoint - Standard Endpoint Protection (SaaS)

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

沒有留言:

2026年2月26日星期四

思科產品多個漏洞

思科產品多個漏洞

發佈日期: 2026年02月26日

風險: 中度風險

類型: 保安軟件及應用設備 - 保安軟件及應用設備

於思科產品發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、跨網站指令碼、遠端執行任意程式碼及權限提升。

影響

  • 阻斷服務
  • 權限提升
  • 遠端執行程式碼
  • 跨網站指令碼

受影響之系統或技術

  • Cisco FXOS Software
  • Cisco NX-OS Software
  • Cisco UCS Manager Software

請參考供應商發佈的連結以了解受影響的版本:

解決方案

在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。

 

安裝供應商提供的修補程式:

漏洞識別碼

資料來源

相關連結

沒有留言:

Cisco Products Multiple Vulnerabilities

Cisco Products Multiple Vulnerabilities

Release Date: 26 Feb 2026

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

Multiple vulnerabilities were identified in Cisco products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, cross-site scripting, remote code execution and elevation of privilege on the targeted system.

Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Cross-Site Scripting

System / Technologies affected

  • Cisco FXOS Software
  • Cisco NX-OS Software
  • Cisco UCS Manager Software

For affected versions, please refer to the link issued by the vendor:

 

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

Vulnerability Identifier

Source

Related Link

沒有留言:

2026年2月25日星期三

Mozilla 產品多個漏洞

Mozilla 產品多個漏洞

發佈日期: 2026年02月25日

風險: 中度風險

類型: 用戶端 - 瀏覽器

於 Mozilla 產品發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼、繞過保安限制、仿冒及敏感資料洩露。

影響

  • 阻斷服務
  • 遠端執行程式碼
  • 權限提升
  • 繞過保安限制
  • 資料洩露
  • 仿冒

受影響之系統或技術

以下版本之前的版本﹕

 

  • Firefox 148
  • Firefox ESR 115.33
  • Firefox ESR 140.8
  • Thunderbird 140.8
  • Thunderbird 148

解決方案

在安裝軟體之前,請先瀏覽供應商之官方網站,以獲得更多詳細資料。

更新至版本:

 

  • Firefox 148
  • Firefox ESR 115.33
  • Firefox ESR 140.8
  • Thunderbird 140.8
  • Thunderbird 148

漏洞識別碼

資料來源

相關連結

沒有留言:

Mozilla Products Multiple Vulnerabilities

Mozilla Products Multiple Vulnerabilities

Release Date: 25 Feb 2026

RISK: Medium Risk

TYPE: Clients - Browsers

Multiple vulnerabilities were identified in Mozilla Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, security restriction bypass, spoofing and sensitive information disclosure on the targeted system.

Impact

  • Denial of Service
  • Remote Code Execution
  • Elevation of Privilege
  • Security Restriction Bypass
  • Information Disclosure
  • Spoofing

System / Technologies affected

Versions prior to:

 

  • Firefox 148
  • Firefox ESR 115.33
  • Firefox ESR 140.8
  • Thunderbird 140.8
  • Thunderbird 148

Solutions

Before installation of the software, please visit the vendor web-site for more details.

Apply fixes issued by the vendor:

 

  • Firefox 148
  • Firefox ESR 115.33
  • Firefox ESR 140.8
  • Thunderbird 140.8
  • Thunderbird 148

Vulnerability Identifier

Source

Related Link

沒有留言:
訂閱: 留言 (Atom)

Android 多個漏洞

Android 多個漏洞 發佈日期: 2026年03月03日 風險: 中度風險 類型: 操作系統 - 流動裝置及操作系統 於 Android 發...