Filters
Veritas NetBackup ApplianceSpring Framework JDK 9+ Remote Code Execution Vulnerability
First published (updated )
Oracle Communications Cloud Native Core Network Function Cloud Native EnvironmentVMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability
First published (updated )
Oracle Communications Cloud Native Core Network Repository FunctionVMware Spring Cloud Gateway Code Injection Vulnerability
First published (updated )
Oracle Retail Integration BusApache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/rh-sso7-keycloakHTTP fails to validate against control chars in header names which may lead to HTTP request smuggling
6.5
First published (updated )
redhat/nssA remote code execution flaw was found in the way NSS verifies certificates. This flaw allows an att…
9.8
First published (updated )
Quarkus QuarkusMySQL Connector/J has no security check when external general entities are included in XML sources, …
7.9
First published (updated )
Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.
6.1
First published (updated )
Oracle Communications Cloud Native Core Network Repository Functioncurl. Multiple issues were addressed by updating to curl version 7.79.1.
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Banking Digital ExperienceLast updated 24 July 2024
7.5
First published (updated )
Splunk Universal Forwardercurl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake i…
5.3
First published (updated )
Oracle Communications Cloud Native Core Network Repository FunctionLibgcrypt before 1.8.8 and 1.9.x before 1.9.3 mishandles ElGamal encryption because it lacks exponen…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/libthriftIn Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result…
7.5
First published (updated )
redhat/kotlinIn JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for temporary file and folder crea…
5.3
First published (updated )
Oracle Communications Pricing Design CenterCSRF in MediaWiki Report extension
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle Utilities FrameworkAn issue was discovered in Legion of the Bouncy Castle BC Java 1.65 and 1.66. The OpenBSDBCrypt.chec…
8.1
First published (updated )
redhat/atomic-openshiftKubernetes man in the middle using LoadBalancer or ExternalIPs
6.3
First published (updated )
Oracle Primavera UnifierTemp directory permission issue in Guava
5.4
First published (updated )
Oracle Utilities Frameworkjackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a lar…
7.5
First published (updated )
Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.2 lacks certain net.sf.ehcache blocking.
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/eap7-activemq-artemisIn Apache Thrift 0.9.3 to 0.12.0, a server implemented in Go using TJSONProtocol or TSimpleJSONProto…
7.5
First published (updated )
redhat/eap7-activemq-artemisApache Thrift is vulnerable to a denial of service, caused by an error when processing untrusted Thr…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.