Filter
AND
IBM Data Virtualization on Cloud Pak for DataDOMPurify nesting-based mXSS
10
First published (updated )
IBM Data Virtualization on Cloud Pak for DataUnauthenticated remote code injection in cron-utils
10
First published (updated )
IBM Data Virtualization on Cloud Pak for DataCode Injection, Command Injection
9.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataAuthorization Bypass Through User-Controlled Key in unshiftio/url-parse
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/com.fasterxml.jackson.core:jackson-databindInput Validation
9.8
First published (updated )
redhat/eap7-apache-cxfApache CXF SSRF Vulnerability
9.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataRemote Code execution in SnakeYAML
9.8
First published (updated )
Juniper Security Threat Response ManagerApache commons_text(CVE-2022-42889) and commons_configuration (CVE-2022-33980) vulnerability
9.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataPrototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils 2.…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataVersions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to impro…
9.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataStarcounter-Jack JSON-Patch prototype pollution
9.8
First published (updated )
Babel (BabelJS NodeJS)Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code
9.4
First published (updated )
maven/org.apache.cxf:cxf-rt-rs-service-descriptionApache CXF: SSRF vulnerability via WADL stylesheet parameter
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataDOMPurify vulnerable to tampering by prototype polution
9.1
First published (updated )
IBM Data Virtualization on Cloud Pak for DataAuthorization Bypass Through User-Controlled Key in unshiftio/url-parse
9.1
First published (updated )
redhat jboss enterprise application platformLast updated 24 July 2024
9.1
First published (updated )
FedoraGNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simp…
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataAuthorization Bypass Through User-Controlled Key in unshiftio/url-parse
8.8
First published (updated )
redhat/rh-sso7-keycloakA flaw was found in the json5 package. The affected version of the json5 package could allow an atta…
8.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataUse After Free
8.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataNull Pointer Dereference
8.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataLinkedIn dustjs prototype pollution
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataSnowflake JDBC vulnerable to command injection via SSO URL authentication
8.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataInefficient Regular Expression Complexity in get-func-name
8.6
First published (updated )
Oracle Communications EAGLE local number portability Application ProcessorInteger Overflow
8.6
First published (updated )
IBM Data Virtualization on Cloud Pak for DataAn unspecified vulnerability in Oracle MySQL related to the Connectors Connector/J component could a…
8.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataAn unspecified vulnerability in Oracle MySQL Connectors related to the Connector/J component could a…
8.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.