VulnScope — package-centric CVE lookup

Search

82 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

HIGH8.8CVE-2022-33891⚠ KEVEPSS 93.5%Apache Spark UI can allow impersonation if ACLs enabled7/19/2022
CRITICAL9.8⚠ KEVEPSS 94.4%Deserialization of Untrusted Data in Liferay Portal5/24/2022
HIGH8.1⚠ KEVEPSS 85.3%Elasticsearch Improper Access Control vulnerability5/17/2022
—⚠ KEVEPSS 92.3%Improper Access Control in Elasticsearch5/14/2022
CRITICAL9.8⚠ KEVEPSS 94.3%Improper Access Control in Apache Shiro5/14/2022
CRITICAL9.8⚠ KEVEPSS 94.3%Improper Input Validation in Apache ActiveMQ5/14/2022
HIGH8.1⚠ KEVEPSS 94.4%tomcat7 - security update5/14/2022
HIGH7.5⚠ KEVEPSS 39.7%Jenkins discloses project names via fingerprints5/13/2022
CRITICAL9.8⚠ KEVEPSS 94.1%Code execution in Apache Struts 1 plugin5/13/2022
CRITICAL9.8⚠ KEVEPSS 89.5%Richfaces vulnerable to arbitrary code execution5/13/2022
CRITICAL9.8⚠ KEVEPSS 93.8%Apache Tomcat Improper Access Control vulnerability5/13/2022
CRITICAL9.9⚠ KEVEPSS 91.8%Sandbox bypass in Jenkins Pipeline: Groovy Plugin5/13/2022
CRITICAL9.8⚠ KEVEPSS 94.3%Code injection in Apache Struts5/13/2022
CRITICAL9.8⚠ KEVEPSS 94.5%Deserialization of Untrusted Data in Jenkins5/13/2022
CRITICAL9.8⚠ KEVEPSS 94.5%Deserialization of Untrusted Data in Jenkins5/13/2022
CRITICAL9.9⚠ KEVEPSS 92.6%Sandbox bypass in Script Security Plugin5/13/2022
CRITICAL9.8⚠ KEVEPSS 87.5%Apache Struts Remote Java Code Execution5/4/2022
HIGH7.5⚠ KEVEPSS 15.7%Improper Input Validation in Apache Struts5/1/2022
CRITICAL9.8⚠ KEVEPSS 94.5%Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression4/3/2022
CRITICAL9.8⚠ KEVEPSS 94.4%Remote Code Execution in Spring Framework3/31/2022
CRITICAL10.0⚠ KEVEPSS 94.5%Spring Cloud Gateway vulnerable to Code Injection when Gateway Actuator endpoint enabled, exposed, unsecured3/4/2022
CRITICAL9.8⚠ KEVEPSS 94.4%Remote code execution in Apache Struts2/9/2022
CRITICAL9.0⚠ KEVEPSS 94.3%apache-log4j2 - security update12/14/2021
CRITICAL10.0⚠ KEVEPSS 94.4%apache-log4j2 - security update12/10/2021
CRITICAL9.8⚠ KEVEPSS 94.4%Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)10/7/2021

← PrevPage 2 of 4Next →