Filter
AND
-Infinity
0
Trending
redhat/cxfA flaw was found in cxf in versions prior to 3.2.11 and 3.3.4. The access token services do not prop…
9.8
First published (updated )
redhat/camelApache Camel Netty enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, 2.2…
9.8
First published (updated )
Oracle FLEXCUBE Private BankingSpring Web Services XML External Entity Injection (XXE)
9.8
First published (updated )
redhat/camelApache Camel RabbitMQ enables Java deserialization by default. Apache Camel 2.22.x, 2.23.x, 2.24.x, …
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Banking PlatformOracle ADF Faces Deserialization of Untrusted Data Remote Code Execution Vulnerability
9.8
First published (updated )
VMware Spring IntegrationKryo Configuration Allows Code Execution with Unknown "Serialization Gadgets"
9.8
First published (updated )
Oracle Retail Xstore Office Cloud ServiceRFD Protection Bypass via jsessionid
8.7
First published (updated )
Oracle Primavera P6 Enterprise Project Portfolio ManagementVulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versi…
8.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/org.apache.activemq:activemq-parentActiveMQ: LDAP-Authentication does not verify passwords on servers with anonymous bind
8.1
First published (updated )
Oracle Insurance Policy AdministrationRFD Attack via "Content-Disposition" Header Sourced from Request Input by Spring MVC or Spring WebFlux Application
8
First published (updated )
Oracle UtilitiesA flaw was found in the Apache Commons BeanUtils, where the class property in PropertyUtilsBean is n…
7.5
First published (updated )
Oracle FLEXCUBE Investor ServicingThe file name encoding algorithm used internally in Apache Commons Compress 1.15 to 1.18 can get int…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Retail Xstore Office Cloud Servicec3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration du…
7.5
First published (updated )
Oracle Communications Diameter Intelligence HubInput Validation
7.5
First published (updated )
IBM InfoSphere Guardium z/OSApache CXF could allow a remote attacker to obtain sensitive information, caused by a flaw when ship…
7.5
First published (updated )
Apache TomEEThe ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory all…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Retail Integration BusLast updated 24 July 2024
6.5
First published (updated )
redhat/cxfApache CXF is vulnerable to a denial of service, caused by the failure to restrict the number of mes…
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle FLEXCUBE Investor ServicingGoogle Guava is vulnerable to a denial of service, caused by improper eager allocation checks in the…
5.9
First published (updated )
Oracle FLEXCUBE Private BankingLast updated 24 July 2024
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.