Filters

Apache Log4jA deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

First published (updated )

Apache Log4jSQL injection in JDBC Appender in Apache Log4j V1

First published (updated )

Apache Log4jDeserialization of untrusted data in JMSSink in Apache Log4j 1.x

First published (updated )

Oracle Retail Integration BusApache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability

First published (updated )

redhat/log4jDeserialization of untrusted data in JMSAppender in Apache Log4j 1.2

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Retail Financial IntegrationBypass of the secureValidation property

7.5
First published (updated )

redhat/eap7-apache-cxfCrafted input may cause the jsoup HTML and XML parser to get stuck, timeout, or throw unchecked exceptions

7.5
First published (updated )

Oracle Insurance Policy AdministrationApache Commons Compress 1.6 to 1.20 denial of service vulnerability

7.5
First published (updated )

Oracle Banking Digital ExperienceApache Commons Compress 1.6 to 1.20 denial of service vulnerability

7.5
First published (updated )

Oracle Banking ApisApache Commons Compress 1.0 to 1.20 denial of service vulnerability

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Banking ApisApache Commons Compress 1.1 to 1.20 denial of service vulnerability

7.5
First published (updated )

Oracle Business IntelligenceApache CXF Denial of service vulnerability in parsing JSON via JsonMapObjectReaderWriter

7.5
First published (updated )

Oracle Primavera UnifierA carefully crafted PDF file can trigger an OutOfMemory-Exception while loading a tiny file

First published (updated )

Oracle Banking Corporate Lending Process ManagementA carefully crafted PDF file can trigger an infinite loop while loading the file

First published (updated )

Apache SolrXEE

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Primavera UnifierInfinite loop in Apache Tika's MP3 parser

First published (updated )

redhat/eap7-elytron-webPossible request smuggling in HTTP/2 due missing validation of content-length

First published (updated )

Oracle Retail Xstore Point of ServiceA carefully crafted PDF file can trigger an infinite loop while loading the file

First published (updated )

Oracle Retail Xstore Point of ServiceA carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file

First published (updated )

redhat/eap7-artemis-wildfly-integrationLocal Information Disclosure Vulnerability in Netty on Unix-Like systems due temporary files

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Utilities FrameworkAn issue was discovered in Legion of the Bouncy Castle BC Java 1.65 and 1.66. The OpenBSDBCrypt.chec…

8.1
First published (updated )

Oracle Business IntelligenceApache CXF Reflected XSS in the services listing page via the styleSheetPath

First published (updated )

Oracle Banking Corporate Lending Process ManagementFasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Banking Liquidity ManagementCode Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apple macOS Big SurBuffer Overflow, SQL Injection

First published (updated )

Oracle Communications Network Charging And ControlUse after free in SQLite

7.5
First published (updated )

Oracle Primavera UnifierA carefully crafted or corrupt file may trigger a System.exit in Tika's OneNote Parser. Crafted or c…

First published (updated )

Canonical Ubuntu LinuxSQL Injection

7.5
First published (updated )

Oracle Communications Network Charging And ControlUse After Free, SQL Injection

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Business Process Management SuiteA carefully crafted or corrupt PSD file can cause an infinite loop in Apache Tika's PSDParser in ver…

First published (updated )

Oracle Business Process Management SuiteA carefully crafted or corrupt PSD file can cause excessive memory usage in Apache Tika's PSDParser …

First published (updated )

Canonical Ubuntu LinuxNull Pointer Dereference, SQL Injection

7.5
First published (updated )

redhat/qpid-cppBuffer Overflow

7.5
First published (updated )

Oracle Banking PlatformXEE

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Retail Price ManagementXSS

First published (updated )

Oracle Banking Corporate Lending Process ManagementXEE

First published (updated )

Oracle Policy AutomationIn Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive s…

First published (updated )

Oracle Communications Messaging ServerUnspecified vulnerability in the Oracle Communications Messaging Server component in Oracle Communic…

First published (updated )

openSUSE openSUSE The Regular Expressions package in International Components for Unicode (ICU) allows remote attacke…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

openSUSE openSUSE The Regular Expressions package in International Components for Unicode (ICU) allows remote attacke…

7.5
First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203