📡 每日漏洞情报简报 2026-05-06
📡 每日漏洞情报简报 — 2026-05-06
📊 共 10 篇 | 🔴 高危 0 | 🆔 CVE 0
📋 漏洞分类汇总
其他 (10)
- [webapps] SUSE Manager 4.3.15 - Code Execution—
- [local] Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation—
- [local] Linux nf_tables 6.19.3 - Local Privilege Escalation—
- [hardware] Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE)—
- [webapps] MindsDB 25.9.1.1 - Path Traversal—
🆕 新增 Semgrep 规则
auth_bypass_auto_202605060803_1(auth) — Session access - verify authorization - 来源: [local] Linux Keauth_bypass_auto_202605060803_2(auth) — Cookie access - ensure proper validation - 来源: [local] Linuxauth_bypass_auto_202605060803_3(auth) — Authentication check - verify proper authorization - 来源: [locommand_injection_auto_202605060803_1(injection) — os.system() - command injection risk - 来源: [hardware] Linksycommand_injection_auto_202605060803_2(injection) — subprocess.run() - check shell parameter - 来源: [hardware] Licommand_injection_auto_202605060803_3(injection) — subprocess.Popen() - check shell parameter - 来源: [hardware]command_injection_auto_202605060803_4(injection) — os.popen() - command injection risk - 来源: [hardware] Linksyscommand_injection_auto_202605060803_5(injection) — eval() - code injection risk - 来源: [hardware] Linksys E1200command_injection_auto_202605060803_6(injection) — exec() - code injection risk - 来源: [hardware] Linksys E1200buffer_overflow_auto_202605060803_1(memory) — strcpy() - buffer overflow risk, use strncpy instead - 来源: [
生成时间: 2026-05-06 08:04:13 | 订阅源: 57 个安全博客 | 仅供技术研究