VMWare 產品多個漏洞
最後更新
2015年12月23日
發佈日期:
2015年12月22日
856
觀看次數
風險: 中度風險
類型: 操作系統 - 網絡操作系統
- Oracle JRE is updated in VMware products to address critical security issue that existed in earlier releases of Oracle JRE.
- VMware products that use Flex BlazeDS may be affected by a flaw the processing of XML External Entity (XXE) requests. A crafted XML request sent to the server could lead to information be disclosed.
影響
- 跨網站指令碼
- 繞過保安限制
- 資料洩露
- 篡改
受影響之系統或技術
Please refer to the following links for the full list of affected products:
解決方案
Before installation of the software, please visit the software manufacturer web-site for more details.
- Vendor has issued patches
漏洞識別碼
資料來源
相關連結
分享至