有没有办法通过编程语言搜索 CVE 数据库?
例如,我认为CVE-2015-4852是一个特定于 Java 的漏洞,因为该漏洞的范围是commons-collectionsJava 编程语言库,而CVE-2016-4009是一个影响用 Python 编写的程序的 C 漏洞。
CVE 是否以某种方式被它们所针对的基础编程语言索引?除了通过每个搜索之外,还有什么方法可以搜索?
按编程语言聚合的 CVE?
信息安全
脆弱性
漏洞扫描器
cve
漏洞管理
2021-08-15 07:33:18
3个回答
最初为JEE应用程序编写的OWASP 依赖检查将扫描组件(例如,框架默认、contrib 或第三方库)以查找 CVE 级漏洞,并且最近添加了对 C/C++、Java、.NET 的支持、PHP、Python、Node.js 和 Ruby 组件。它还集成到构建环境,例如流行的 Java 环境(例如,maven)和CI门户,包括Jenkins。
还有一个用于 OWASP 依赖检查的 Web 前端,称为Dependency Track。这些都是免费的开源软件 (FOSS) 解决方案,可从广泛的 OWASP 安全社区获得。
这里还有一个非常非正统的使用 Linux grep 命令的 metasploit-framework 搜索,显示所有与 Java 相关的 CVE 都可以使用此方法搜索:
$ msfconsole -qx "search cve:CVE; exit" | grep -i java | grep -vi javascript
auxiliary/server/jsse_skiptls_mitm_proxy 2015-01-20 normal Java Secure Socket Extension (JSSE) SKIP-TLS MITM Proxy
exploit/linux/misc/jenkins_java_deserialize 2015-11-18 excellent Jenkins CLI RMI Java Deserialization Vulnerability
exploit/multi/browser/java_atomicreferencearray 2012-02-14 excellent Java AtomicReferenceArray Type Violation Vulnerability
exploit/multi/browser/java_calendar_deserialize 2008-12-03 excellent Sun Java Calendar Deserialization Privilege Escalation
exploit/multi/browser/java_getsoundbank_bof 2009-11-04 great Sun Java JRE getSoundbank file:// URI Buffer Overflow
exploit/multi/browser/java_jre17_driver_manager 2013-01-10 excellent Java Applet Driver Manager Privileged toString() Remote Code Execution
exploit/multi/browser/java_jre17_exec 2012-08-26 excellent Java 7 Applet Remote Code Execution
exploit/multi/browser/java_jre17_glassfish_averagerangestatisticimpl 2012-10-16 excellent Java Applet AverageRangeStatisticImpl Remote Code Execution
exploit/multi/browser/java_jre17_jaxws 2012-10-16 excellent Java Applet JAX-WS Remote Code Execution
exploit/multi/browser/java_jre17_jmxbean 2013-01-10 excellent Java Applet JMX Remote Code Execution
exploit/multi/browser/java_jre17_jmxbean_2 2013-01-19 excellent Java Applet JMX Remote Code Execution
exploit/multi/browser/java_jre17_method_handle 2012-10-16 excellent Java Applet Method Handle Remote Code Execution
exploit/multi/browser/java_jre17_provider_skeleton 2013-06-18 great Java Applet ProviderSkeleton Insecure Invoke Method
exploit/multi/browser/java_jre17_reflection_types 2013-01-10 excellent Java Applet Reflection Type Confusion Remote Code Execution
exploit/multi/browser/java_rhino 2011-10-18 excellent Java Applet Rhino Script Engine Remote Code Execution
exploit/multi/browser/java_rmi_connection_impl 2010-03-31 excellent Java RMIConnectionImpl Deserialization Privilege Escalation
exploit/multi/browser/java_setdifficm_bof 2009-11-04 great Sun Java JRE AWT setDiffICM Buffer Overflow
exploit/multi/browser/java_storeimagearray 2013-08-12 great Java storeImageArray() Invalid Array Indexing Vulnerability
exploit/multi/browser/java_trusted_chain 2010-03-31 excellent Java Statement.invoke() Trusted Method Chain Privilege Escalation
exploit/multi/browser/java_verifier_field_access 2012-06-06 excellent Java Applet Field Bytecode Verifier Cache Remote Code Execution
exploit/multi/browser/mozilla_navigatorjava 2006-07-25 normal Mozilla Suite/Firefox Navigator Object Code Execution
exploit/multi/browser/qtjava_pointer 2007-04-23 excellent Apple QTJava toQTPointer() Arbitrary Memory Access
exploit/multi/elasticsearch/script_mvel_rce 2013-12-09 excellent ElasticSearch Dynamic Script Arbitrary Java Execution
exploit/multi/http/jboss_deploymentfilerepository 2010-04-26 excellent JBoss Java Class DeploymentFileRepository WAR Deployment
exploit/multi/http/sun_jsws_dav_options 2010-01-20 great Sun Java System Web Server WebDAV OPTIONS Buffer Overflow
exploit/multi/misc/java_jmx_server 2013-05-22 excellent Java JMX Server Insecure Configuration Java Code Execution
exploit/windows/browser/java_basicservice_impl 2010-10-12 excellent Sun Java Web Start BasicServiceImpl Code Execution
exploit/windows/browser/java_cmm 2013-03-01 normal Java CMM Remote Code Execution
exploit/windows/browser/java_codebase_trust 2011-02-15 excellent Sun Java Applet2ClassLoader Remote Code Execution
exploit/windows/browser/java_docbase_bof 2010-10-12 great Sun Java Runtime New Plugin docbase Buffer Overflow
exploit/windows/browser/java_mixer_sequencer 2010-03-30 great Java MixerSequencer Object GM_Song Structure Handling Vulnerability
exploit/windows/browser/java_ws_arginject_altjvm 2010-04-09 excellent Sun Java Web Start Plugin Command Line Argument Injection
exploit/windows/browser/java_ws_double_quote 2012-10-16 excellent Sun Java Web Start Double Quote Injection
exploit/windows/browser/java_ws_vmargs 2012-02-14 excellent Sun Java Web Start Plugin Command Line Argument Injection
exploit/windows/http/hp_nnm_webappmon_ovjavalocale 2010-08-03 great HP NNM CGI webappmon.exe OvJavaLocale Buffer Overflow
可以使用不同的利用框架搜索引擎,例如来自 Core Security 的搜索引擎,来执行类似的广泛搜索——https://www.coresecurity.com/products/core-impact/recent-exploits-and-updates ?title=java&field_exploit_type_tid=All&field_vulnerabilty_id_value=CVE&field_operating_system_tid=All——甚至是来自 Immunity Security 的那个——http: //exploitlist.immunityinc.com/home/exploitpack/CANVAS/browse
这不完全是您要问的,但这里有一个按关键字搜索的选项。您可以按单词“java”搜索
您可能正在寻找的是应用程序编程接口 (API)。您可能需要查看以下内容:
- circle.lu cve 搜索 API
- nvd.nist.gov数据馈送
- GitHub 上的vFeed
- GitHub 上的 cve 搜索
这个 API 和项目可能是一个好的开始。您基本上可以使用任何编程语言与 API 对话。这使您能够按照您的建议构建自定义搜索。
其它你可能感兴趣的问题