XZ 漏洞列表

共找到 4 个与 XZ 相关的漏洞

📅 加载漏洞趋势中...

CVE-2024-3094: XZ - Embedded Malicious Code POC

日期: 2025-08-01 | 影响软件: XZ

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in the liblzma code. This results in a modified liblzma library that can be used by any software linked against this library, intercepting and modifying the data interaction with this library.
CVE-2024-3094: XZ - Embedded Malicious Code POC

日期: 2025-08-01 | 影响软件: XZ

Malicious code was discovered in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific functions in the liblzma code. This results in a modified liblzma library that can be used by any software linked against this library, intercepting and modifying the data interaction with this library.
通天星主动安全监控云平台 xz_center 信息泄露漏洞无POC

日期: 2024-07-26 | 影响软件: 通天星主动安全监控云平台xz_center

通天星主动安全监控云平台存在信息泄露漏洞，该漏洞是由于xz_center接口对用户发送的请求验证不当导致的。
liblzma/XZ-Utils 后门漏洞无POC

日期: 2024-04-02 | 影响软件: liblzma XZ Utils

liblzma/XZ-Utils 后门漏洞

CVE-2024-3094: XZ - Embedded Malicious Code POC

CVE-2024-3094: XZ - Embedded Malicious Code POC

通天星主动安全监控云平台 xz_center 信息泄露漏洞 无POC

liblzma/XZ-Utils 后门漏洞 无POC

通天星主动安全监控云平台 xz_center 信息泄露漏洞无POC

liblzma/XZ-Utils 后门漏洞无POC