Filter
-Infinity
0
Trending
Red Hat FedoraScala could allow a remote authenticated attacker to execute arbitrary code on the system, caused by…
9.8
First published (updated )
IBM Engineering Requirements Management DOORS Web AccessAn undisclosed vulnerability in IBM Rational DOORS 9.5.1 through 9.6.1.10 application allows an atta…
9.8
First published (updated )
Apache Portable RuntimeApache Portable Runtime (APR): Windows out-of-bounds write in apr_socket_sendv function
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal ForwarderUsing its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Engineering Requirements Management DOORS Web AccessIBM Engineering Requirements Management DOORS XML external entity injection
8.2
First published (updated )
Oracle Banking APIsAdvanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML
8.2
First published (updated )
Oracle Banking APIsHTML comments vulnerability allowing to execute JavaScript code
8.2
First published (updated )
TomcatApache Tomcat: Leaking of unrelated request bodies in default error page
7.5
EPSS
0.69%
First published (updated )
maven/org.apache.tomcat.embed:tomcat-embed-coreApache Tomcat request smuggling via malformed content-length
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.xerial.snappy:snappy-javaMissing upper bound check on chunk length in snappy-java
7.5
First published (updated )
TomcatApache Tomcat: Request header mix-up between HTTP/2 streams
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Splunk Universal ForwarderUse After Free, Double Free
7.5
First published (updated )
Splunk Universal ForwarderBuffer Overflow, Input Validation
7.5
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureIt was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim …
7.5
First published (updated )
Splunk Universal ForwarderUsing its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …
7.5
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureRegular expression Denial of Service in dialog plugin
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat FedoraExecution of JavaScript code using malformed HTML in ckeditor
7.3
First published (updated )
IBM Engineering Requirements Management DOORS Web AccessIBM Doors Web Access 9.5 and 9.6 could allow an attacker with physical access to the system to log i…
6.8
First published (updated )
IBM Engineering Requirements Management DOORS Web AccessIBM Engineering Requirements Management cross-site request forgery
6.5
First published (updated )
redhat/apr-utilApache Portable Runtime Utility (APR-util): out-of-bounds writes in the apr_base64 family of functions
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.