Filter
AND

Software

quarkus quarkus
21

Oracle Banking Digital ExperienceLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2021-37136

redhat/eap7-jackson-databindIn FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a ch…

high
7.5
First published (updated )
CVE-2022-42004

Quarkus QuarkusQuarkus: http security policy bypass

high
8.1
First published (updated )
CVE-2023-4853

Quarkus QuarkusQuarkus CORS filter allows simple GET and POST requests with invalid Origin to proceed. Simple GET o…

high
7.5
First published (updated )
CVE-2022-4147

Oracle Banking Digital ExperienceLast updated 24 July 2024

high
7.5
First published (updated )
CVE-2021-37137

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Quarkus QuarkusMySQL Connector/J has no security check when external general entities are included in XML sources, …

high
7.9
First published (updated )
CVE-2021-2471

redhat/candlepinIn FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, resource exhaustion can occur …

high
7.5
First published (updated )
CVE-2022-42003

Oracle Peoplesoft Enterprise Pt PeopletoolsThe Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a relate…

high
7.5
First published (updated )
CVE-2017-18640

FasterXML jackson-dataformats-binaryDenial of Service (DoS)

high
7.5
First published (updated )
CVE-2020-28491

Oracle Banking PlatformXEE

high
7.5
First published (updated )
CVE-2020-25649

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

redhat/eap7-hibernateSQL Injection

high
7.4
First published (updated )
CVE-2020-25638

Oracle Primavera UnifierInput Validation

high
7.5
First published (updated )
CVE-2020-13956

redhat/postgresql-jdbcXEE

high
7.7
First published (updated )
CVE-2020-13692

maven/org.keycloak:keycloak-commonInput Validation

high
8.8
First published (updated )
CVE-2020-1714

redhat/eap7-apache-cxfCrafted input may cause the jsoup HTML and XML parser to get stuck, timeout, or throw unchecked exceptions

high
7.5
First published (updated )
CVE-2021-37714

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Gradle GradleRepository content filters do not work in Settings pluginManagement

high
8
First published (updated )
CVE-2021-29427

Gradle GradleLocal privilege escalation through system temporary directory

high
8.8
First published (updated )
CVE-2021-29428

redhat/eap7-apache-commons-ioInput Validation

high
7.5
First published (updated )
CVE-2021-28170

redhat/quarkusA flaw was found in Quarkus. The state and potentially associated permissions can leak from one web …

high
8.8
First published (updated )
CVE-2022-0981

Quarkus QuarkusQuarkus: build env information disclosure via gradle plugin

high
7.7
EPSS
0.09%
First published (updated )
CVE-2023-5720

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

maven/io.quarkus:quarkus-oidcQuarkus-oidc: id and access tokens leak via the authorization code flow

high
7.5
First published (updated )
CVE-2023-1584

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203