.jpg)
.jpg)
CVE-2018-8767, CVE-2018-8768, CVE-2018-8769
CVE-2018-8770, CVE-2017-18240
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 3¿ù 18ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 18ÀÏ¿¡¼ 19ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
.jpg)
1. CVE-2018-8767
joyplus-cms 1.6.0 ¹öÀüÀÇ manager/admin_ajax.php?action=save&tab={pre}vod_typeÀÇ XSS Ãë¾àÁ¡ÀÌ´Ù.
2. CVE-2018-8768
Jupyter Notebook 5.4.1 ÀÌÀü ¹öÀüÀÇ Ãë¾àÁ¡À¸·Î ¾Ç¼º ³ëÆ®ºÏ ÆÄÀÏÀÌ º¸¾È ÀåÄ¡¸¦ ¿ìȸÈ÷ ÀÚ¹Ù½ºÅ©¸³Æ®¸¦ ½ÇÇà½Ãų ¼ö ÀÖ°Ô ÇØÁØ´Ù.
3. CVE-2018-8769
elfutils 0.170 ¹öÀüÀÇ libebl/ebldynamictagname.cÀÇ ebl_dynamic_tag_name ÇÔ¼öÀÇ ¹öÆÛ ¿À¹ö¸®µå Ãë¾àÁ¡ÀÌ´Ù.
4. CVE-2018-8770
Western Bridge Cobub Razor 0.8.0 ¹öÀüÀÇ generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php, controllers/postusinglogTest.php, fixtures/Controller_fixt.php, fixtures/Controller_fixt2.php, fixtures/view_fixt2.php, libs/ipTest.php, models/commonDbfix.phpÀÇ °æ·Î À¯Ãâ Ãë¾àÁ¡ÀÌ´Ù.
5. CVE-2017-18240
Gentoo app-admin/collectd ÆÐÅ°Áö 5.7.2-rl ÀÌÀü ¹öÀüÀÇ Ãë¾àÁ¡À¸·Î PID ÆÄÀÏ µð·ºÅ丮ÀÇ ÁÖÀÎ ±ÇÇÑÀ» º¯°æ½ÃŲ´Ù. ÀÌ·Î½á ·ÎÄÃÀÇ »ç¿ëÀÚ°¡ ÀÓÀÇÀÇ ÇÁ·Î¼¼½º¸¦ Á×ÀÏ ¼ö ÀÖ°Ô µÈ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
CVE-2018-8770, CVE-2017-18240
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 3¿ù 18ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 18ÀÏ¿¡¼ 19ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
[À̹ÌÁö = iclickart]
1. CVE-2018-8767
joyplus-cms 1.6.0 ¹öÀüÀÇ manager/admin_ajax.php?action=save&tab={pre}vod_typeÀÇ XSS Ãë¾àÁ¡ÀÌ´Ù.
2. CVE-2018-8768
Jupyter Notebook 5.4.1 ÀÌÀü ¹öÀüÀÇ Ãë¾àÁ¡À¸·Î ¾Ç¼º ³ëÆ®ºÏ ÆÄÀÏÀÌ º¸¾È ÀåÄ¡¸¦ ¿ìȸÈ÷ ÀÚ¹Ù½ºÅ©¸³Æ®¸¦ ½ÇÇà½Ãų ¼ö ÀÖ°Ô ÇØÁØ´Ù.
3. CVE-2018-8769
elfutils 0.170 ¹öÀüÀÇ libebl/ebldynamictagname.cÀÇ ebl_dynamic_tag_name ÇÔ¼öÀÇ ¹öÆÛ ¿À¹ö¸®µå Ãë¾àÁ¡ÀÌ´Ù.
4. CVE-2018-8770
Western Bridge Cobub Razor 0.8.0 ¹öÀüÀÇ generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, controllers/posttagTest.php, controllers/postusinglogTest.php, fixtures/Controller_fixt.php, fixtures/Controller_fixt2.php, fixtures/view_fixt2.php, libs/ipTest.php, models/commonDbfix.phpÀÇ °æ·Î À¯Ãâ Ãë¾àÁ¡ÀÌ´Ù.
5. CVE-2017-18240
Gentoo app-admin/collectd ÆÐÅ°Áö 5.7.2-rl ÀÌÀü ¹öÀüÀÇ Ãë¾àÁ¡À¸·Î PID ÆÄÀÏ µð·ºÅ丮ÀÇ ÁÖÀÎ ±ÇÇÑÀ» º¯°æ½ÃŲ´Ù. ÀÌ·Î½á ·ÎÄÃÀÇ »ç¿ëÀÚ°¡ ÀÓÀÇÀÇ ÇÁ·Î¼¼½º¸¦ Á×ÀÏ ¼ö ÀÖ°Ô µÈ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
¹®°¡¿ë±âÀÚ ±â»çº¸±â
[2024-11-01] 
