漏洞描述
X.Org是X.Org基金会的一个开放源代码的自由软件。Xwayland是Xwayland开源的一个通信协议,规定了显示服务器与其客户机之间的通信方式。 X.Org和Xwayland存在资源管理错误漏洞,该漏洞源于更改警报时逐个评估更改掩码值,可能导致释放后重用。
X.Org和Xwayland 资源管理错误漏洞
PoC代码
暂无相关漏洞推荐
- Apache Struts XWork组件 XML外部实体注入漏洞(CVE-2025-68493)
- 时空智友ERP /formservice/wf XML 外部实体注入漏洞
- POC CVE-2012-10018: WordPress Mapplic <= 6.1 / Mapplic Lite <= 1.0 - Authenticated Stored XSS via SVG File Upload
- POC CVE-2011-3600: Apache OFBiz - XML External Entity Injection
- POC CVE-2015-8350: WordPress Calls to Action <=2.4.3 - Authenticated Reflected XSS
- POC CVE-2017-11107: phpLDAPadmin <= 1.2.3 - Reflected XSS
- POC CVE-2017-17762: Episerver 7 - Blind XML External Entity Injection
- POC CVE-2018-6961: VMware NSX SD-WAN Edge - Command Injection
- POC CVE-2021-33829: Drupal 7 CKEditor XSS
- POC CVE-2023-27624: WordPress Redirect After Login <= 0.1.9 - Admin Stored XSS
- POC jboss-jmx-console-unauth: JBoss JMX Console - Unauthenticated Access
- 金和OA QuickMatch.aspx XXE漏洞
- Nagios XI-默认口令漏洞