Filter
AND
AND

Oracle Utilities FrameworkXStream Remote Code Execution Vulnerability

high
8.5
Exploited
First published (updated )
CVE-2021-39144

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.8
First published (updated )
CVE-2021-39139

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39147

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39151

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39148

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39145

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39146

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39149

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39153

Oracle Utilities FrameworkA Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling

high
8.5
First published (updated )
CVE-2021-39150

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Utilities FrameworkA Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling

high
8.5
First published (updated )
CVE-2021-39152

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39154

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39141

redhat/tomcatAuth weakness in JNDIRealm

high
7.5
First published (updated )
CVE-2021-30640

Vmware Spring SecurityInput Validation

high
7.5
First published (updated )
CVE-2021-22119

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Insurance Rules PaletteIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux app…

high
7.8
First published (updated )
CVE-2021-22118

maven/org.eclipse.jetty:jetty-serverIn Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage ca…

high
7.8
First published (updated )
CVE-2021-28165

redhat/eap7-apache-commons-ioInput Validation

high
7.5
First published (updated )
CVE-2021-28170

Apache TomcatIncomplete fix for CVE-2020-9484

high
7
First published (updated )
CVE-2021-25329

Apache TomcatApache Tomcat h2c request mix-up

high
7.5
First published (updated )
CVE-2021-25122

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/libthriftIn Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result…

high
7.5
First published (updated )
CVE-2020-13949

IBM Cloud Pak for Security (CP4S)Regular Expression Denial of Service (ReDoS)

high
7.5
First published (updated )
CVE-2020-28469

Oracle Primavera GatewayA flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gad…

high
8.1
First published (updated )
CVE-2020-35728

IBM Cloud Pak for Security (CP4S)Buffer Overflow

high
7.5
First published (updated )
CVE-2020-29363

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

high
8.1
First published (updated )
CVE-2020-35490

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

high
8.1
First published (updated )
CVE-2020-35491

Apple Mac OS Xcurl. This issue was addressed with improved checks.

high
7.5
First published (updated )
CVE-2020-8286

Apache TomcatApache Tomcat: Request header mix-up between HTTP/2 streams

high
7.5
First published (updated )
CVE-2020-17527

Apple Mac OS XBuffer Overflow, Input Validation

high
7.5
First published (updated )
CVE-2020-8285

redhat/krb5A flaw was found in krb5. MIT Kerberos 5 allows unbounded recursion via an ASN.1-encoded Kerberos me…

high
7.5
First published (updated )
CVE-2020-28196

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203