公告ID: KYLIN-2019-10181
安全等级: 中等
产品: Kylin V3
发布日期: 2019年7月31日
CVE: CVE-2019-10181
CVSS3评分: 6.3
概述:
None 描述:
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. It was found that executable code could be injected in a JAR file without compromising the signature verification. An attacker could use this flaw to inject code in a trusted JAR. The code would be executed inside the sandbox. 系统版本:
KYLIN 3.2.x
KYLIN 3.3.x
KYLIN 3.4.x
受影响包列表:
icedtea-web
icedtea-web
icedtea-web