Latest high severity vulnerabilities for "oracle communications cloud native core network function cloud native environment"

Apple Mac OS XUse After Free

high

8.1

First published (updated )

CVE-2022-23308

redhat/cyrus-saslSQL Injection, Input Validation

high

8.8

First published (updated )

CVE-2022-24407

Oracle Enterprise Operations MonitorIn iconvdata/iso-2022-jp-3.c in the GNU C Library (aka glibc) 2.34, remote attackers can force iconv…

high

7.5

First published (updated )

CVE-2021-43396

Debian Debian Linuxmod_proxy_uwsgi out of bound read

high

7.5

First published (updated )

CVE-2021-36160

Debian Debian LinuxNULL pointer dereference in httpd core

high

7.5

First published (updated )

CVE-2021-34798

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.

high

7.5

First published (updated )

CVE-2021-22946

Oracle Enterprise Operations MonitorNull Pointer Dereference

high

7.5

First published (updated )

CVE-2021-38604

Oracle Communications Cloud Native Core Network Repository FunctionLibgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponen…

high

7.5

First published (updated )

CVE-2021-33560

IBM QRadar SIEMInfoleak

high

7.5

First published (updated )

CVE-2021-22898

Splunk Universal ForwarderUse After Free

high

8.1

First published (updated )

CVE-2021-22901

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Redhat Enterprise LinuxNull Pointer Dereference

high

7.5

First published (updated )

CVE-2021-3537

IBM Cloud Pak for Security (CP4S)Buffer Overflow

high

8.6

First published (updated )

CVE-2021-3517

IBM Cloud Pak for Security (CP4S)Use After Free

high

8.8

First published (updated )

CVE-2021-3518

redhat/opensslEDIPARTYNAME NULL pointer dereference

high

7.5

First published (updated )

CVE-2020-1971

redhat/nodejs-ua-parser-jsRegular Expression Denial of Service (ReDoS)

high

7.5

First published (updated )

CVE-2020-7733

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fedoraproject FedoraBuffer Overflow

high

7.8

First published (updated )

CVE-2020-24977

Nodejs Node.jsLast updated 24 July 2024

high

7.5

First published (updated )

CVE-2019-15604

Agendaless WaitressHTTP Request Smuggling: Content-Length Sent Twice in Waitress

high

7.5

First published (updated )

CVE-2019-16792

IBM Security GuardiumLast updated 24 July 2024

high

7.5

First published (updated )

CVE-2020-7595

Oracle Real User Experience InsightxmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

high

7.5

First published (updated )

CVE-2019-20388

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Fedoraproject FedoraHTTP Request Smuggling in Waitress: Invalid whitespace characters in headers

high

8.2

First published (updated )

CVE-2019-16789

Fedoraproject FedoraHTTP Request Smuggling: Invalid Transfer-Encoding in Waitress

high

7.5

First published (updated )

CVE-2019-16786

Fedoraproject FedoraHTTP Request Smuggling: LF vs CRLF handling in Waitress

high

7.5

First published (updated )

CVE-2019-16785

redhat/python-pipPath Traversal

high

8.2

First published (updated )

CVE-2019-20916

Canonical Ubuntu Linuxsystemd: reexec state injection: fgets() on overlong lines leads to line splitting

high

7.8

First published (updated )

CVE-2018-15686

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Versions

Apple Mac OS XUse After Free

redhat/cyrus-saslSQL Injection, Input Validation

Oracle Enterprise Operations MonitorIn iconvdata/iso-2022-jp-3.c in the GNU C Library (aka glibc) 2.34, remote attackers can force iconv…

Debian Debian Linuxmod_proxy_uwsgi out of bound read

Debian Debian LinuxNULL pointer dereference in httpd core

Never miss a vulnerability like this again

Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.

Oracle Enterprise Operations MonitorNull Pointer Dereference

Oracle Communications Cloud Native Core Network Repository FunctionLibgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponen…

IBM QRadar SIEMInfoleak

Splunk Universal ForwarderUse After Free

Never miss a vulnerability like this again

Redhat Enterprise LinuxNull Pointer Dereference

IBM Cloud Pak for Security (CP4S)Buffer Overflow

IBM Cloud Pak for Security (CP4S)Use After Free

redhat/opensslEDIPARTYNAME NULL pointer dereference

redhat/nodejs-ua-parser-jsRegular Expression Denial of Service (ReDoS)

Never miss a vulnerability like this again

Fedoraproject FedoraBuffer Overflow

Nodejs Node.jsLast updated 24 July 2024

Agendaless WaitressHTTP Request Smuggling: Content-Length Sent Twice in Waitress

IBM Security GuardiumLast updated 24 July 2024

Oracle Real User Experience InsightxmlSchemaPreRun in xmlschemas.c in libxml2 2.9.10 allows an xmlSchemaValidateStream memory leak.

Never miss a vulnerability like this again

Fedoraproject FedoraHTTP Request Smuggling in Waitress: Invalid whitespace characters in headers

Fedoraproject FedoraHTTP Request Smuggling: Invalid Transfer-Encoding in Waitress

Fedoraproject FedoraHTTP Request Smuggling: LF vs CRLF handling in Waitress

redhat/python-pipPath Traversal

Canonical Ubuntu Linuxsystemd: reexec state injection: fgets() on overlong lines leads to line splitting

Never miss a vulnerability like this again

Company

Resources

Contact