Filter
-Infinity
0
redhat/eap7-jettisonStack Buffer Overflow in Jettison
7.5
First published (updated )
redhat/eap7-woodstox-coreStack Buffer Overflow in Woodstox
7.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataInput Validation
7.3
First published (updated )
IBM Data Virtualization on Cloud Pak for DataInfinite loop in JSON unmarshaling in google.golang.org/protobuf
7.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataProxy-Authorization header kept across hosts in follow-redirects
6.5
EPSS
0.04%
First published (updated )
IBM Data Virtualization on Cloud Pak for DataExpress.js Open Redirect in malformed URLs
6.1
EPSS
0.04%
First published (updated )
IBM Data Virtualization on Cloud Pak for DataAsync <= 2.6.4 and <= 3.2.5 are vulnerable to ReDoS (Regular Expression Denial of Service) whi…
7.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataTampering by prototype polution in DOMPurify
7.3
First published (updated )
IBM Data Virtualization on Cloud Pak for DataDOMPurify nesting-based mXSS
10
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataDOMPurify vulnerable to tampering by prototype polution
9.1
EPSS
0.07%
First published (updated )
IBM Data Virtualization on Cloud Pak for DataPostCSS could allow a remote attacker to bypass security restrictions, caused by improper input vali…
5.3
First published (updated )
IBM Data Virtualization on Cloud Pak for DataDenial of service via crafted HTTP/2 stream in net/http and golang.org/x/net
7.5
First published (updated )
Apache Tomcat- Rapid Reset HTTP/2 vulnerability
First published (updated )
IBM Data Virtualization on Cloud Pak for DataHTTP/2 rapid reset can cause excessive work in net/http
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataVersions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to impro…
9.8
First published (updated )
IBM Data Virtualization on Cloud Pak for DataInput Validation
7.5
First published (updated )
IBM Data Virtualization on Cloud Pak for Datacookie accepts cookie name, path, and domain with out of bounds characters
6.9
First published (updated )
F5 BIG-IP and BIG-IQ Centralized ManagementProxy-Authorization request header isn't stripped during cross-origin redirects in urllib3
4.4
First published (updated )
IBM Data Virtualization on Cloud Pak for DataRequest smuggling due to improper request handling in golang.org/x/net/http2/h2c
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.apache.cxf:cxf-rt-rs-service-descriptionApache CXF: SSRF vulnerability via WADL stylesheet parameter
9.1
First published (updated )
IBM Data Virtualization on Cloud Pak for DataExcessive memory growth in net/http and golang.org/x/net/http2
5.3
First published (updated )
IBM Data Virtualization on Cloud Pak for DataDoS Vulnerability in JSON-Java
7.5
First published (updated )
IBM Data Virtualization on Cloud Pak for DataBouncy Castle for Java is vulnerable to a denial of service, caused by a flaw in the org.bouncycastl…
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Data Virtualization on Cloud Pak for DataAn issue was discovered jackson-databind thru 2.15.2 allows attackers to cause a denial of service o…
4.7
First published (updated )
IBM Data Virtualization on Cloud Pak for DataBuffer Overflow
7.5
First published (updated )
IBM Data Virtualization on Cloud Pak for Datajsoup may not sanitize Cross-Site Scripting (XSS) attempts if SafeList.preserveRelativeLinks is enabled
6.1
First published (updated )
IBM Data Virtualization on Cloud Pak for Datanetty-handler SniHandler 16MB allocation
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.