Filter
AND
Versions
Oracle OpenJDKAn unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JS…
7.4
First published (updated )
Oracle GraalVMVulnerability in the Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: LLVM In…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle OpenJDKApache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets
7.5
First published (updated )
ubuntu/libgoogle-gson-javaDeserialization of Untrusted Data
7.7
First published (updated )
Oracle OpenJDKA flaw was found in Apache Santuario (XML Security for Java) in the way it processed some paths. A r…
7.5
First published (updated )
Azul ZuluAn unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenti…
7.5
First published (updated )
redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by a string injection …
7.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…
7.4
First published (updated )
redhat/nodeA flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Nam…
7.4
First published (updated )
redhat/javaAn unspecified vulnerability in Java SE related to the JSSE component could allow an unauthenticated…
7.1
First published (updated )
Oracle GraalVMUNIX Symbolic Link (Symlink) Following in @npmcli/arborist
8.2
First published (updated )
Oracle GraalVMUNIX Symbolic Link (Symlink) Following in @npmcli/arborist
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Npmjs TarArbitrary File Creation/Overwrite on Windows via insufficient relative path sanitization
8.6
First published (updated )
Npmjs TarArbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links
8.6
First published (updated )
Npmjs TarArbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning using symbolic links
8.6
First published (updated )
Tar Project TarArbitrary File Creation/Overwrite due to insufficient absolute path sanitization
8.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Tar Project TarArbitrary File Creation/Overwrite via insufficient symlink protection due to directory cache poisoning
8.2
First published (updated )
redhat/javaAn unspecified vulnerability in Java SE related to the VM component could allow an unauthenticated a…
7.5
First published (updated )
Tenable Nessus Network MonitorCA certificate check bypass with X509_V_FLAG_X509_STRICT
7.4
First published (updated )
Nodejs Node.jsNULL pointer deref in signature_algorithms processing
7.5
First published (updated )
Oracle Communications Unified Inventory ManagementA Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host
8.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
npm/ssriA flaw was found in ssri package. A malicious string provided by an attacker may lead to Regular Exp…
7.5
First published (updated )
IBM Cloud Pak for Security (CP4S)Node.js is vulnerable to a denial of service, caused by a file descriptor leak. By making multiple a…
7.8
First published (updated )
McAfee ePolicy OrchestratorInteger overflow in CipherUpdate
7.5
First published (updated )
Tenable Nessus Network MonitorNull pointer deref in X509_issuer_and_serial_hash()
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.