Filters

Apache Log4jA deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

First published (updated )

Apache Log4jSQL injection in JDBC Appender in Apache Log4j V1

First published (updated )

IBM Cloud Pak for Security (CP4S)Buffer Overflow

First published (updated )

Oracle Communications Eagle Lnp Application ProcessorInteger Overflow

First published (updated )

Oracle Communications Eagle Lnp Application ProcessorInteger Overflow, Buffer Overflow

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/camelApache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.2…

First published (updated )

Apache CamelApache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, …

First published (updated )

Oracle Enterprise Manager Base PlatformVulnerability in the Enterprise Manager Base Platform product of Oracle Enterprise Manager (componen…

First published (updated )

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.

First published (updated )

redhat/cxfA flaw was found in cxf in versions prior to 3.2.11 and 3.3.4. The access token services do not prop…

First published (updated )

Oracle PeopleSoft Enterprise PeopleToolsConnect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, wh…

First published (updated )

Atlassian Jira Service ManagementXEE

First published (updated )

redhat/eap7-elytron-webXEE

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache StrutsApache Struts Remote Code Execution Vulnerability

First published (updated )

Oracle Communications Diameter Signaling RouterLegion of the Bouncy Castle Java Cryptography APIs could allow a remote attacker to execute arbitrar…

First published (updated )

Oracle Policy AutomationIn Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive s…

First published (updated )

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203