Filters

Versions

13.4.0.0
23
13.3.0.0
18
13.2.0.0
3
13.2.1.0
2
13.5.0.0
2
12.1.0.5
1
12.1.0.5.0
1

Apache Log4jA deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

critical
9.8
Zeroday
First published (updated )
CVE-2022-23307

Apache Log4jSQL injection in JDBC Appender in Apache Log4j V1

critical
9.8
Zeroday
First published (updated )
CVE-2022-23305

IBM Cloud Pak for Security (CP4S)Buffer Overflow

critical
9.8
First published (updated )
CVE-2020-12723

Oracle Communications Eagle Lnp Application ProcessorInteger Overflow

critical
9.8
First published (updated )
CVE-2020-10878

Oracle Communications Eagle Lnp Application ProcessorInteger Overflow, Buffer Overflow

critical
9.8
First published (updated )
CVE-2020-10543

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/camelApache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.2…

critical
9.8
First published (updated )
CVE-2020-11973

Apache CamelApache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, …

critical
9.8
First published (updated )
CVE-2020-11972

Oracle Enterprise Manager Base PlatformVulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (componen…

critical
9.8
First published (updated )
CVE-2020-2961

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11620

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11619

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11113

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11112

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11111

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10968

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10673

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10672

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10969

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-9548

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-9547

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-9546

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.

critical
9.8
First published (updated )
CVE-2019-20330

redhat/cxfA flaw was found in cxf in versions prior to 3.2.11 and 3.3.4. The access token services do not prop…

critical
9.8
First published (updated )
CVE-2019-12419

Oracle PeopleSoft Enterprise PeopleToolsConnect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, wh…

critical
9.8
First published (updated )
CVE-2019-17195

Atlassian Jira Service ManagementXEE

critical
9.8
First published (updated )
CVE-2019-13990

redhat/eap7-elytron-webXEE

critical
9.8
First published (updated )
CVE-2020-10683

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache StrutsApache Struts Remote Code Execution Vulnerability

critical
9.3
Exploited
First published (updated )
CVE-2018-11776

Oracle Communications Diameter Signaling RouterLegion of the Bouncy Castle Java Cryptography APIs could allow a remote attacker to execute arbitrar…

critical
9.8
First published (updated )
CVE-2018-1000613

Oracle Policy AutomationIn Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive s…

critical
9.8
First published (updated )
CVE-2017-5645

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203