Filter
Versions
Red Hat QuarkusQuarkus: json payload getting processed prior to security checks when rest resources are used with annotations.
9.8
First published (updated )
PostgreSQL JDBC DriverUnchecked Class Instantiation when providing Plugin Classes
9.8
First published (updated )
Red Hat QuarkusIt was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to u…
9.8
First published (updated )
IBM Cloud Pak for Business Automationblock repositories using http by default
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
maven/io.quarkus:quarkus-smallrye-graphql-clientQuarkus: graphql operations over websockets bypass
9.1
EPSS
0.07%
First published (updated )
Red Hat QuarkusCritical: Red Hat build of Quarkus 3.8.6.SP1 Security Update
First published (updated )
Red Hat QuarkusCritical: Red Hat build of Quarkus 3.2.12.SP1 Security Update
First published (updated )
redhat/quarkusA flaw was found in Quarkus. The state and potentially associated permissions can leak from one web …
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
GradleLocal privilege escalation through system temporary directory
8.8
First published (updated )
maven/io.quarkus:quarkus-coreQuarkus-core: tls protocol configured with quarkus.http.ssl.protocols is not enforced, client can enforce weaker supported tls protocol
8.1
First published (updated )
GradleRepository content filters do not work in Settings pluginManagement
8
First published (updated )
Red Hat QuarkusMySQL Connector/J has no security check when external general entities are included in XML sources, …
7.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Red Hat QuarkusQuarkus: build env information disclosure via gradle plugin
7.7
EPSS
0.09%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/eap7-undertowUndertow: infinite loop in sslconduit during close
7.5
First published (updated )
FasterXML Jackson Dataformats BinaryDenial of Service (DoS)
7.5
First published (updated )
redhat/eap7-undertowA flaw was found in Undertow. A potential security issue in flow control handling by the browser ove…
7.5
First published (updated )
Oracle PeopleSoft Enterprise PeopleToolsThe Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a relate…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Banking Digital ExperienceLast updated 24 July 2024
7.5
First published (updated )
Oracle Banking Digital ExperienceLast updated 24 July 2024
7.5
First published (updated )
redhat/candlepinIn FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, resource exhaustion can occur …
7.5
First published (updated )
redhat/eap7-jackson-databindIn FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a ch…
7.5
First published (updated )
redhat/eap7-apache-cxfCrafted input may cause the jsoup HTML and XML parser to get stuck, timeout, or throw unchecked exceptions
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.