Filter
AND
maven/org.postgresql:postgresqlpgjdbc SQL Injection via line comment generation
10
First published (updated )
Go-git Project Go-gitMaliciously crafted Git server replies can lead to path traversal and RCE on go-git clients
9.8
First published (updated )
Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…
9.8
First published (updated )
Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…
9.8
First published (updated )
maven/com.fasterxml.jackson.core:jackson-databindSSRF
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Banking Corporate Lending Process ManagementFasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization gadg…
9.8
First published (updated )
maven/org.apache.derby:derbyApache Derby: LDAP injection vulnerability in authenticator
9.8
First published (updated )
redhat/openshift-gitops-kamAuthorization Bypass Through User-Controlled Key in emicklei/go-restful
9.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/runcrunc container breakout through process.cwd trickery and leaked fds
8.6
EPSS
5.06%
First published (updated )
Oracle Primavera GatewayA flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gad…
8.1
First published (updated )
maven/com.fasterxml.jackson.core:jackson-databindThe com.fasterxml.jackson.core:jackson-databind library before version 2.9.10.4 is vulnerable to an …
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
pip/GitPythonUntrusted search path under some conditions on Windows allows arbitrary code execution
7.8
EPSS
0.05%
First published (updated )
maven/org.apache.tomcat:tomcat-coyoteApache Tomcat: HTTP/2 header handling DoS
7.5
EPSS
0.04%
First published (updated )
maven/org.eclipse.jetty.http2:http2-hpackHTTP/2 HPACK integer overflow and buffer allocation
7.5
First published (updated )
Go-git Project Go-gitMaliciously crafted Git server replies can cause DoS on go-git clients
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM IBM® Db2® on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for DataIBM Db2U could allow a user with access to the kubernetes pod, to make system calls compromising the…
7.4
First published (updated )
IBM IBM® Db2® on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for DataIBM Db2 for Linux, UNIX and Windows information disclosure
6.8
First published (updated )
redhat/eap7-nettyPossible request smuggling in HTTP/2 due missing validation
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM IBM® Db2® on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for DataIBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) stores potentially sensitive infor…
6.2
First published (updated )
pip/ansible-coreAnsible-core: possible information leak in tasks that ignore ansible_no_log configuration
5.5
First published (updated )
IBM IBM® Db2® on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for DataIBM Db2 for Linux, UNIX and Windows denial of service
5.3
First published (updated )
IBM IBM® Db2® on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for DataIBM Db2 for Linux, UNIX and Windows denial of service
5.3
First published (updated )
IBM IBM® Db2® on Cloud Pak for Data and Db2 Warehouse on Cloud Pak for DataIBM Db2 for Linux, UNIX and Windows denial of service
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.