语言:
https://alas.aws.amazon.com/ALAS-2023-1743.html
https://alas.aws.amazon.com/cve/html/CVE-2017-16931.html
https://alas.aws.amazon.com/cve/html/CVE-2020-24977.html
https://alas.aws.amazon.com/cve/html/CVE-2021-3516.html
https://alas.aws.amazon.com/cve/html/CVE-2021-3517.html
https://alas.aws.amazon.com/cve/html/CVE-2021-3518.html
https://alas.aws.amazon.com/cve/html/CVE-2021-3537.html
https://alas.aws.amazon.com/cve/html/CVE-2021-3541.html
https://alas.aws.amazon.com/cve/html/CVE-2022-23308.html
https://alas.aws.amazon.com/cve/html/CVE-2022-29824.html
https://alas.aws.amazon.com/cve/html/CVE-2022-40303.html
https://alas.aws.amazon.com/cve/html/CVE-2022-40304.html
https://alas.aws.amazon.com/cve/html/CVE-2023-28484.html
严重性: Critical
ID: 175091
文件名: ala_ALAS-2023-1743.nasl
版本: 1.1
类型: local
代理: unix
发布时间: 2023/5/4
最近更新时间: 2023/5/5
支持的传感器: Frictionless Assessment AWS, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
风险因素: Medium
分数: 6.7
风险因素: High
基本分数: 7.5
时间分数: 6.2
矢量: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS 分数来源: CVE-2021-3517
风险因素: Critical
基本分数: 9.8
时间分数: 9.1
矢量: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
时间矢量: CVSS:3.0/E:F/RL:O/RC:C
CVSS 分数来源: CVE-2017-16931
CPE: p-cpe:/a:amazon:linux:libxml2, p-cpe:/a:amazon:linux:libxml2-debuginfo, p-cpe:/a:amazon:linux:libxml2-devel, p-cpe:/a:amazon:linux:libxml2-python26, p-cpe:/a:amazon:linux:libxml2-python27, p-cpe:/a:amazon:linux:libxml2-static, cpe:/o:amazon:linux
必需的 KB 项: Host/local_checks_enabled, Host/AmazonLinux/release, Host/AmazonLinux/rpm-list
可利用: true
易利用性: Exploits are available
补丁发布日期: 2023/4/27
漏洞发布日期: 2017/11/23
CVE: CVE-2017-16931, CVE-2020-24977, CVE-2021-3516, CVE-2021-3517, CVE-2021-3518, CVE-2021-3537, CVE-2021-3541, CVE-2022-23308, CVE-2022-29824, CVE-2022-40303, CVE-2022-40304, CVE-2023-28484, CVE-2023-29469