.jpg)
.jpg)
CVE-2018-7318, CVE-2018-7319, CVE-2018-0015
CVE-2018-6488, CVE-2018-6489
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 2¿ù 22ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 22ÀÏ¿¡¼ 23ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
.jpg)
1. CVE-2018-7318
CheckList 1.1.1 ¿ä¼ÒÀÇ title_search, tag_search, name_search, description_search, filter_order ¸Å°³º¯¼öÀÇ SQL ÀÎÁ§¼Ç Ãë¾àÁ¡ÀÌ´Ù.
2. CVE-2018-7319
OS Property Real Estate 3.12.7 ¿ä¼ÒÀÇ cooling_system1, heating_system1, laundry ¸Å°³º¯¼öÀÇ SQL ÀÎÁ§¼Ç Ãë¾àÁ¡ÀÌ´Ù.
3. CVE-2018-0015
AppFormix ¾ÖÇø®ÄÉÀÌ¼Ç °ü¸® Ç÷§ÆûÀÇ Ãë¾àÁ¡À¸·Î ¾Ç¼º »ç¿ëÀÚ°¡ Á¢±Ù ±ÇÇÑÀ» ³ô¿© ÆÄÀ̼± µð¹ö±× Äֿܼ¡ Á¢±Ù, ½Ã½ºÅÛ ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù.
4. CVE-2018-6488
Micro Focus Universal CMDB 4.10, 4.11, 4.12 ¹öÀüÀÇ ÀÓÀÇ ÄÚµå ½ÇÇà Ãë¾àÁ¡À¸·Î ¿ø°Ý¿¡¼ ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù.
5. CVE-2018-6489
Micro Focus Project and Portfolio Management Center 9.32 ¹öÀüÀÇ XXE Ãë¾àÁ¡ÀÌ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
CVE-2018-6488, CVE-2018-6489
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 2¿ù 22ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 22ÀÏ¿¡¼ 23ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
[À̹ÌÁö = iclickart]
1. CVE-2018-7318
CheckList 1.1.1 ¿ä¼ÒÀÇ title_search, tag_search, name_search, description_search, filter_order ¸Å°³º¯¼öÀÇ SQL ÀÎÁ§¼Ç Ãë¾àÁ¡ÀÌ´Ù.
2. CVE-2018-7319
OS Property Real Estate 3.12.7 ¿ä¼ÒÀÇ cooling_system1, heating_system1, laundry ¸Å°³º¯¼öÀÇ SQL ÀÎÁ§¼Ç Ãë¾àÁ¡ÀÌ´Ù.
3. CVE-2018-0015
AppFormix ¾ÖÇø®ÄÉÀÌ¼Ç °ü¸® Ç÷§ÆûÀÇ Ãë¾àÁ¡À¸·Î ¾Ç¼º »ç¿ëÀÚ°¡ Á¢±Ù ±ÇÇÑÀ» ³ô¿© ÆÄÀ̼± µð¹ö±× Äֿܼ¡ Á¢±Ù, ½Ã½ºÅÛ ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù.
4. CVE-2018-6488
Micro Focus Universal CMDB 4.10, 4.11, 4.12 ¹öÀüÀÇ ÀÓÀÇ ÄÚµå ½ÇÇà Ãë¾àÁ¡À¸·Î ¿ø°Ý¿¡¼ ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù.
5. CVE-2018-6489
Micro Focus Project and Portfolio Management Center 9.32 ¹öÀüÀÇ XXE Ãë¾àÁ¡ÀÌ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
¹®°¡¿ë±âÀÚ ±â»çº¸±â
[2024-11-01] 
