Filters

Apache Log4jA deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

critical
9.8
Zeroday
First published (updated )
CVE-2022-23307

Apache Log4jSQL injection in JDBC Appender in Apache Log4j V1

critical
9.8
Zeroday
First published (updated )
CVE-2022-23305

IBM Cloud Pak for Security (CP4S)Buffer Overflow

critical
9.8
First published (updated )
CVE-2020-12723

Oracle Communications Eagle Lnp Application ProcessorInteger Overflow

critical
9.8
First published (updated )
CVE-2020-10878

Oracle Communications Eagle Lnp Application ProcessorInteger Overflow, Buffer Overflow

critical
9.8
First published (updated )
CVE-2020-10543

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/camelApache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.2…

critical
9.8
First published (updated )
CVE-2020-11973

Apache CamelApache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, …

critical
9.8
First published (updated )
CVE-2020-11972

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11620

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11619

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11113

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11112

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-11111

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10968

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10673

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10672

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Banking Digital ExperienceFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-10969

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-9548

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-9547

redhat/eap7-elytron-webFasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-9546

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.

critical
9.8
First published (updated )
CVE-2019-20330

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle PeopleSoft Enterprise PeopleToolsConnect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, wh…

critical
9.8
First published (updated )
CVE-2019-17195

redhat/eap7-elytron-webXEE

critical
9.8
First published (updated )
CVE-2020-10683

Apache StrutsApache Struts Remote Code Execution Vulnerability

critical
9.3
Exploited
First published (updated )
CVE-2018-11776

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203