Filters

npm/set-valuePrototype Pollution

critical
9.8
First published (updated )
CVE-2021-23440

Oracle Utilities FrameworkXStream Remote Code Execution Vulnerability

high
8.5
Exploited
First published (updated )
CVE-2021-39144

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.8
First published (updated )
CVE-2021-39139

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39147

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39151

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39148

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39145

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39146

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39149

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39153

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Utilities FrameworkA Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling

high
8.5
First published (updated )
CVE-2021-39150

Oracle Utilities FrameworkA Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling

high
8.5
First published (updated )
CVE-2021-39152

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39154

Oracle Utilities FrameworkXStream is vulnerable to an Arbitrary Code Execution attack

high
8.5
First published (updated )
CVE-2021-39141

Oracle Utilities FrameworkXStream can cause a Denial of Service

medium
6.5
First published (updated )
CVE-2021-39140

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Mock-server MockserverArbitrary code execution in MockServer

critical
9.6
First published (updated )
CVE-2021-32827

redhat/tomcatAuth weakness in JNDIRealm

high
7.5
First published (updated )
CVE-2021-30640

McAfee ePolicy OrchestratorIncorrect Transfer-Encoding handling with HTTP/1.0

medium
5.3
First published (updated )
CVE-2021-33037

Vmware Spring SecurityInput Validation

high
7.5
First published (updated )
CVE-2021-22119

redhat/jettyInfoleak

medium
5.3
First published (updated )
CVE-2021-28169

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Websockets Project Websockets PythonThe aaugustin websockets library before 9.1 for Python has an Observable Timing Discrepancy on serve…

medium
5.9
First published (updated )
CVE-2021-33880

Oracle Insurance Rules PaletteIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux app…

high
7.8
First published (updated )
CVE-2021-22118

Splunk Universal ForwarderInteger Overflow

critical
9.8
First published (updated )
CVE-2021-3520

Oracle Banking ApisPossible limited path traversal vulnerabily in Apache Commons IO

medium
5.8
First published (updated )
CVE-2021-29425

maven/org.eclipse.jetty:jetty-serverIn Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage ca…

high
7.8
First published (updated )
CVE-2021-28165

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/eap7-apache-commons-ioInput Validation

high
7.5
First published (updated )
CVE-2021-28170

redhat/eap7-elytron-webPossible request smuggling in HTTP/2 due missing validation of content-length

medium
5.9
First published (updated )
CVE-2021-21409

redhat/eap7-nettyPossible request smuggling in HTTP/2 due missing validation

medium
6.5
First published (updated )
CVE-2021-21295

Oracle Banking Enterprise Default ManagementVelocity Sandbox Bypass

critical
9.8
First published (updated )
CVE-2020-13936

Apache TomcatIncomplete fix for CVE-2020-9484

high
7
First published (updated )
CVE-2021-25329

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Apache TomcatApache Tomcat h2c request mix-up

high
7.5
First published (updated )
CVE-2021-25122

Oracle Utilities FrameworkInfoleak

critical
9.1
First published (updated )
CVE-2021-27568

redhat/libthriftIn Apache Thrift 0.9.3 to 0.13.0, malicious RPC clients could send short messages which would result…

high
7.5
First published (updated )
CVE-2020-13949

redhat/kotlinIn JetBrains Kotlin before 1.4.21, a vulnerable Java API was used for temporary file and folder crea…

medium
5.3
First published (updated )
CVE-2020-29582

IBM Cloud Pak for Security (CP4S)Regular Expression Denial of Service (ReDoS)

high
7.5
First published (updated )
CVE-2020-28469

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36180

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36182

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36183

Oracle Primavera GatewayFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36179

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36181

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36189

Oracle Primavera GatewayA flaw was found in jackson-databind. FasterXML mishandles the interaction between serialization gad…

high
8.1
First published (updated )
CVE-2020-35728

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36188

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36185

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36186

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36184

Oracle Primavera UnifierFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

critical
9.8
First published (updated )
CVE-2020-36187

IBM Cloud Pak for Security (CP4S)Buffer Overflow

high
7.5
First published (updated )
CVE-2020-29363

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

high
8.1
First published (updated )
CVE-2020-35490

Oracle Banking PlatformFasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization gadg…

high
8.1
First published (updated )
CVE-2020-35491

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203