Filter
AND
-Infinity
0
Trending
Bouncy Castle Crypto PackageLast updated 2 September 2024
7.5
First published (updated )
maven/com.fasterxml.jackson.core:jackson-databindInfoleak
7.5
First published (updated )
redhat/momentThe moment module before 2.19.3 for Node.js is prone to a regular expression denial of service via a…
7.5
First published (updated )
redhat/momentThe duration function in the moment package before 2.11.2 for Node.js allows remote attackers to cau…
7.8
First published (updated )
Apache Groovymain/java/org/apache/directory/groovyldap/LDAP.java in the Groovy LDAP API in Apache allows attacker…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Insurance Rules PaletteCode Injection, Input Validation
9.8
First published (updated )
Oracle Retail Integration BusCode Injection, Input Validation
9.8
First published (updated )
Spring SecurityInsecure Randomness When Using a SecureRandom Instance Constructed by Spring Security
6.5
First published (updated )
Pivotal Software Spring SecurityOpen Redirect in spring-security-oauth2
7.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Spring Batch AdminSpring Batch XML External Entity Injection (XXE)
9.8
First published (updated )
redhat/ansiblerole-insights-clientLast updated 24 July 2024
7.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Communications Diameter Signaling RouterLegion of the Bouncy Castle Java Cryptography APIs could allow a remote attacker to execute arbitrar…
9.8
First published (updated )
Oracle Financial Services Analytical Applications InfrastructureFasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code b…
9.8
First published (updated )
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) stores sensitive information in URL parameters. This may lead to …
5.3
First published (updated )
Oracle Application Testing SuiteSpring Framework version 5.0.5 when used in combination with any versions of Spring Security contain…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Security Guardium Data EncryptionIBM Security Guardium does not perform any authentication for functionality that requires a provable…
7.5
First published (updated )
JBoss Enterprise Application PlatformInput Validation
9.8
First published (updated )
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) could allow a user to bruce force sensitive information due to no…
4.9
First published (updated )
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) discloses sensitive information to unauthorized users. The inform…
5.3
First published (updated )
Connect2id Nimbus JOSE+JWTNimbus JOSE+JWT before 4.39 proceeds improperly after detection of an invalid HMAC in authenticated …
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) stores user credentials in plain in clear text which can be read …
First published (updated )
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) could allow a remote attacker to obtain sensitive information, ca…
7.5
First published (updated )
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) contains hard-coded credentials, such as a password or cryptograp…
9.8
First published (updated )
IBM Security Guardium Data EncryptionIBM Guardium Data Encryption (GDE) allows web pages to be stored locally which can be read by anothe…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.