RISK: Medium Risk
TYPE: Clients - Productivity Products
Multiple vulnerabilities were identified in LibreOffice, a remote attacker could exploit some vulnerabilities to trigger information disclosure and security restriction bypass on the targeted system.
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:
風險: 中度風險
類型: 保安軟件及應用設備 - 保安軟件及應用設備
於 Samba 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、繞過保安限制、遠端執行任意程式碼及資料洩露。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
建議運行受影響版本的 Samba 用戶盡快升級或安裝修補程式。
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Samba. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, security restriction bypass, remote code execution and information disclosure on the targeted system.
Before installation of the software, please visit the vendor web-site for more details.
Samba users running affected versions are advised to upgrade or apply the patch as soon as possible.
風險: 中度風險
類型: 伺服器 - 其他伺服器
於 GitLab 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發洩露敏感資料、跨網站指令碼及繞過保安限制。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
RISK: Medium Risk
TYPE: Servers - Other Servers
Multiple vulnerabilities were identified in GitLab. A remote attacker could exploit some of these vulnerabilities to trigger sensitive information disclosure, cross-site scripting and security restriction bypass on the targeted system.
Before installation of the software, please visit the software vendor web-site for more details.
風險: 中度風險
類型: 操作系統 - 其他操作系統
於 ChromeOS 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發權限提升及資料洩露。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
RISK: Medium Risk
TYPE: Operating Systems - Others OS
Multiple vulnerabilities were identified in ChromeOS. A remote attacker could exploit some of these vulnerabilities to trigger elevation of privilege and information disclosure on the targeted system.
Before installation of the software, please visit the vendor web-site for more details.
風險: 中度風險
類型: 操作系統 - LINUX
於 Linux 核心發現多個漏洞。攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、權限提升、篡改及洩露敏感資料。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
RISK: Medium Risk
TYPE: Operating Systems - Linux
Multiple vulnerabilities were identified in Linux Kernel. An attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, data manipulation and sensitive information disclosure on the targeted system.
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
風險: 中度風險
類型: 用戶端 - 瀏覽器
於 Mozilla Firefox 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、彷冒、遠端執行任意程式碼、洩露敏感資料、資料篡改及繞過保安限制。
以下版本之前的版本﹕
在安裝軟體之前,請先瀏覽供應商之官方網站,以獲得更多詳細資料。
更新至版本:
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Mozilla Firefox. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, spoofing, remote code execution, sensitive information disclosure, data manipulation and security restriction bypass on the targeted system.
Versions prior to:
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
風險: 高度風險
類型: 操作系統 - Network
於 思科小型企業路由器 發現多個漏洞。攻擊者可利用這漏洞,於目標系統觸發阻斷服務狀況。
注意﹕
由於受影響產品已經進入產品生命周期終止過程,供應商確認這些產品不會提供解決方案或軟件更新。
要確定產品是否受漏洞影響,請打開網路管理界面,然後選擇“基本設置”>“遠程管理”。 如果已剔選“啟用”,則代表設備受漏洞影響。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
RISK: High Risk
TYPE: Operating Systems - Networks OS
Multiple vulnerabilities were identified in Cisco Small Business Routers. An attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.
Note:
The vendor confirms there are no workarounds or fix as affected products have already entered end of life process.
To determine whether the products is vulnerable, open the web-based management interface and choose Basic Settings > Remote Management. If the Enable check box is checked, the device is vulnerable.
Before installation of the software, please visit the vendor web-site for more details.
風險: 中度風險
類型: 伺服器 - 互聯網應用伺服器
於 Drupal Core 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發資料洩露、遠端執行程式碼、跨網站指令碼及繞過保安限制。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
RISK: Medium Risk
TYPE: Servers - Internet App Servers
Multiple vulnerabilities were identified in Drupal Core. A remote attacker could exploit some of these vulnerabilities to trigger information disclosure, remote code execution, cross-site scripting and security restriction bypass on the targeted system.
Before installation of the software, please visit the vendor web-site for more details.
風險: 中度風險
類型: 操作系統 - 流動裝置及操作系統
於 Apple Products 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發資料洩露、遠端執行程式碼、阻斷服務狀況、權限提升及繞過保安限制。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
RISK: Medium Risk
TYPE: Operating Systems - Mobile & Apps
Multiple vulnerabilities were identified in Apple Products. A remote attacker could exploit some of these vulnerabilities to trigger information disclosure, remote code execution, denial of service condition, elevation of privilege and security restriction bypass on the targeted system.
Before installation of the software, please visit the vendor web-site for more details.
風險: 高度風險
類型: 伺服器 - 數據庫伺服器
於甲骨文產品發現多個漏洞,遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、遠端執行程式碼、繞過保安限制、洩露敏感資料及資料篡改。
有關其他 甲骨文 產品,請參閱以下連結:
https://www.oracle.com/security-alerts/cpujul2022.html
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
甲骨文 Critical Patch Update Advisory
RISK: High Risk
TYPE: Servers - Database Servers
Multiple vulnerabilities were identified in Oracle Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, security restriction bypass, sensitive information disclosure and data manipulation on the targeted system.
For other Oracle products, please refer to the link below:
https://www.oracle.com/security-alerts/cpujul2022.html
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
Oracle Critical Patch Update Advisory
RISK: Medium Risk
TYPE: Clients - Browsers
Multiple vulnerabilities were identified in Google Chrome. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, denial of service condition and sensitive information disclosure on the targeted system.
Before installation of the software, please visit the software vendor web-site for more details.
Apply fixes issued by the vendor:
風險: 中度風險
類型: 操作系統 - LINUX
於 Linux 核心發現多個漏洞。攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、權限提升、洩露敏感資料及遠端執行程式碼。
[更新於 2022-07-20]
更新受影響之系統或技術,解決方案及相關連結。
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
對於 SUSE
對於 Ubuntu
RISK: Medium Risk
TYPE: Operating Systems - Linux
Multiple vulnerabilities were identified in Linux Kernel. A attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, sensitive information disclosure and remote code execution on the targeted system.
[Updated on 2022-07-20]
Updated System / Technologies affected, Solutions and Related Links.
Before installation of the software, please visit the vendor web-site for more details.
For SUSE
For Ubuntu
