Filters

VMware Spring FrameworkInput Validation

7.5
First published (updated )

Veritas NetBackup ApplianceSpring Framework JDK 9+ Remote Code Execution Vulnerability

First published (updated )

Oracle Communications Cloud Native Core Network Function Cloud Native EnvironmentVMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability

First published (updated )

Apache TomcatLocal privilege escalation with FileStore

First published (updated )

Apache Log4jA deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache Log4jSQL injection in JDBC Appender in Apache Log4j V1

First published (updated )

Apache Log4jDeserialization of untrusted data in JMSSink in Apache Log4j 1.x

First published (updated )

redhat/nodeNode.js could provide weaker than expected security, caused by an error related to the formatting lo…

8.2
First published (updated )

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by a string injection …

7.4
First published (updated )

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/nodeA flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Nam…

7.4
First published (updated )

Oracle Retail Integration BusApache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability

First published (updated )

redhat/log4jDeserialization of untrusted data in JMSAppender in Apache Log4j 1.2

8.1
First published (updated )

Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget

7.2
First published (updated )

Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

McAfee ePolicy OrchestratorRead buffer overruns processing ASN.1 strings

7.4
First published (updated )

Oracle PeopleSoft Enterprise PeopleToolsSM2 Decryption Buffer Overflow

First published (updated )

McAfee ePolicy OrchestratorIncorrect Transfer-Encoding handling with HTTP/1.0

First published (updated )

Oracle Insurance Rules PaletteIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux app…

7.8
First published (updated )

Apache TomcatIncomplete fix for CVE-2020-9484

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache TomcatApache Tomcat h2c request mix-up

7.5
First published (updated )

Pivotal Software Spring SecuritySpring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, an…

First published (updated )

Tenable Nessus Network MonitorNull pointer deref in X509_issuer_and_serial_hash()

7.5
First published (updated )

Oracle Communications Diameter Intelligence HubApache Struts Remote Code Execution Vulnerability

First published (updated )

Apache TomcatApache Tomcat: Request header mix-up between HTTP/2 streams

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/highlight.jsPrototype Pollution in highlight.js

8.7
First published (updated )

Oracle Retail Xstore Point of ServiceRFD Protection Bypass via jsessionid

8.7
First published (updated )

Oracle Financial Services Data Integration HubAn access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when pe…

7.5
First published (updated )

Oracle Financial Services Data Integration HubApache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag…

First published (updated )

Apache TomcatLast updated 24 July 2024

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache TomcatNull Pointer Dereference

7.5
First published (updated )

Apache TomcatLast updated 24 July 2024

7.5
First published (updated )

Apache TomcatLast updated 2 August 2024

8.8
First published (updated )

Oracle PeopleSoft Enterprise PeopleToolsSegmentation fault in SSL_check_chain

7.5
First published (updated )

Apache TomcatXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/jws5-tomcatXSS

First published (updated )

redhat/jbosswebApache Tomcat Improper Privilege Management Vulnerability

First published (updated )

Oracle Insurance Policy Administration J2EECSRF Attack via CORS Preflight Requests with Spring MVC or Spring WebFlux

First published (updated )

redhat/log4jLast updated 24 July 2024

First published (updated )

redhat/tomcatLast updated 24 July 2024

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle PeopleSoft Enterprise PeopleToolsrsaz_512_sqr overflow bug on x86_64

First published (updated )

Oracle Communications Diameter Signaling Router0-byte record padding oracle

First published (updated )

Oracle Insurance Rules PaletteDoS Attack via Range Requests

7.5
First published (updated )

Apache StrutsApache Struts Remote Code Execution Vulnerability

First published (updated )

Oracle Retail Financial IntegrationXSS

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Oracle FLEXCUBE Private BankingPivotal Spring Framework could allow a remote attacker to bypass security restrictions, caused by a …

7.5
First published (updated )

Oracle Application Testing SuiteSpring Framework version 5.0.5 when used in combination with any versions of Spring Security contain…

8.8
First published (updated )

IBM Cognos AnalyticsVulnerability in the MySQL Enterprise Monitor component of Oracle MySQL (subcomponent: Monitoring: W…

8.8
First published (updated )

Apache TomcatApache Tomcat Remote Code Execution Vulnerability

First published (updated )

IBM Cognos AnalyticsVulnerability in the MySQL Enterprise Monitor component of Oracle MySQL (subcomponent: Monitoring: S…

3.6
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203