Filter
AND

VMware Spring FrameworkInput Validation

7.5
First published (updated )

Veritas NetBackup ApplianceSpring Framework JDK 9+ Remote Code Execution Vulnerability

First published (updated )

Oracle Communications Cloud Native Core Network Function Cloud Native EnvironmentVMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability

First published (updated )

Apache TomcatLocal privilege escalation with FileStore

First published (updated )

Apache Log4jA deserialization flaw in the Chainsaw component of Log4j 1 can lead to malicious code execution.

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache Log4jSQL injection in JDBC Appender in Apache Log4j V1

First published (updated )

Apache Log4jDeserialization of untrusted data in JMSSink in Apache Log4j 1.x

First published (updated )

redhat/nodeNode.js could provide weaker than expected security, caused by an error related to the formatting lo…

8.2
First published (updated )

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by a string injection …

7.4
First published (updated )

redhat/nodeNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…

7.4
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/nodeA flaw was found in node.js, where it did not properly handle multi-value Relative Distinguished Nam…

7.4
First published (updated )

Oracle Retail Integration BusApache Log4j StrSubstitutor Uncontrolled Recursion Denial-of-Service Vulnerability

First published (updated )

redhat/log4jDeserialization of untrusted data in JMSAppender in Apache Log4j 1.2

8.1
First published (updated )

Oracle Primavera GatewayXSS in `*Text` options of the Datepicker widget

7.2
First published (updated )

Oracle Primavera UnifierXSS in the `altField` option of the Datepicker widget

7.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

McAfee ePolicy OrchestratorRead buffer overruns processing ASN.1 strings

7.4
First published (updated )

Oracle PeopleSoft Enterprise PeopleToolsSM2 Decryption Buffer Overflow

First published (updated )

McAfee ePolicy OrchestratorIncorrect Transfer-Encoding handling with HTTP/1.0

First published (updated )

Oracle Insurance Rules PaletteIn Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux app…

7.8
First published (updated )

Apache TomcatIncomplete fix for CVE-2020-9484

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Apache TomcatApache Tomcat h2c request mix-up

7.5
First published (updated )

Pivotal Software Spring SecuritySpring Security 5.4.x prior to 5.4.4, 5.3.x prior to 5.3.8.RELEASE, 5.2.x prior to 5.2.9.RELEASE, an…

First published (updated )

Tenable Nessus Network MonitorNull pointer deref in X509_issuer_and_serial_hash()

7.5
First published (updated )

Oracle Communications Diameter Intelligence HubApache Struts Remote Code Execution Vulnerability

First published (updated )

Apache TomcatApache Tomcat: Request header mix-up between HTTP/2 streams

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

redhat/highlight.jsPrototype Pollution in highlight.js

8.7
First published (updated )

Oracle Retail Xstore Point of ServiceRFD Protection Bypass via jsessionid

8.7
First published (updated )

Oracle Financial Services Data Integration HubAn access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when pe…

7.5
First published (updated )

Oracle Financial Services Data Integration HubApache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag…

First published (updated )

Apache TomcatLast updated 24 July 2024

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203