Filter
AND
AND
FasterXML jackson-databindAn unsafe deserialization vulnerability was found due to incomplete blacklisting of the unsafe eleme…
9.8
First published (updated )
Redhat Jboss Enterprise Application PlatformInput Validation
9.8
First published (updated )
Oracle Utilities FrameworkAn XML deserialization vulnerability was discovered in slf4j's EventData, which accepts an XML seria…
9.8
First published (updated )
Redhat Jboss Enterprise Application PlatformA deserialization flaw was discovered in the jackson-databind which could allow an unauthenticated u…
9.8
First published (updated )
Redhat Enterprise Linux Server EusInput Validation, Infoleak
9.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache TomcatApache Tomcat Remote Code Execution Vulnerability
First published (updated )
Redhat Jboss Enterprise Application PlatformIt was discovered that the jboss init script performed unsafe file handling which could result in lo…
7.8
First published (updated )
redhat/apache-cxfIt was discovered that EAP packages in certain versions of Red Hat Enterprise Linux use incorrect pe…
7.8
First published (updated )
Redhat Jboss Enterprise Application PlatformIt was found that when Artemis and HornetQ before 2.4.0 are configured with UDP discovery and JGroup…
7.8
First published (updated )
Redhat Jboss Enterprise Application PlatformPath Traversal
7.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Jboss Enterprise Application PlatformA vulnerability was found in the way RemoteMessageChannel, introduced in jboss-remoting versions 3.3…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/eap7-activemq-artemisIt was found that use of a JMS ObjectMessage does not safely handle user supplied data when deserial…
7.2
First published (updated )
Redhat Jboss Enterprise Application PlatformIn Hibernate Validator 5.2.x before 5.2.5 final, 5.3.x, and 5.4.x, it was found that when the securi…
7
First published (updated )
Redhat Jboss Enterprise Application PlatformInfoleak
6.5
First published (updated )
Redhat Jboss Enterprise Application PlatformPotential EAP resource starvation DOS attack via GET requests for server log files
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oracle FLEXCUBE Investor ServicingGoogle Guava is vulnerable to a denial of service, caused by improper eager allocation checks in the…
5.9
First published (updated )
Redhat Jboss Enterprise Application PlatformInfoleak
5.9
First published (updated )
Oracle HTTP Servermod_rewrite.c in the mod_rewrite module in the Apache HTTP Server 2.2.x before 2.2.25 writes data to…
5.1
First published (updated )
Canonical Ubuntu Linuxmod_dav.c in the Apache HTTP Server before 2.2.25 does not properly determine whether DAV is enabled…
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Apache HTTP serverThe deflate_in_filter function in mod_deflate.c in the mod_deflate module in the Apache HTTP Server …
4.3
First published (updated )