Search

94 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

CRITICAL9.8CVE-2022-24816⚠ KEVEPSS 94.0%Improper Control of Generation of Code ('Code Injection') in jai-ext9/19/2023
HIGH8.8CVE-2023-4863⚠ KEVEPSS 93.3%libwebp: OOB write in BuildHuffmanTable9/12/2023
CRITICAL9.8CVE-2023-33246⚠ KEVEPSS 94.4%Apache RocketMQ may have remote code execution vulnerability when using update configuration function7/6/2023
HIGH8.6CVE-2023-32315⚠ KEVEPSS 94.4%Administration Console authentication bypass in openfire xmppserver5/23/2023
HIGH8.9CVE-2023-27524⚠ KEVEPSS 84.0%Apache superset missing check for default SECRET_KEY4/24/2023
CRITICAL9.6CVE-2022-4135⚠ KEVEPSS 0.08%Heap buffer overflow in GPU11/25/2022
HIGH7.5CVE-2022-36537⚠ KEVEPSS 93.9%ZK Framework vulnerable to malicious POST8/27/2022
HIGH8.8CVE-2022-33891⚠ KEVEPSS 93.5%Apache Spark UI can allow impersonation if ACLs enabled7/19/2022
CRITICAL9.8CVE-2020-16846⚠ KEVEPSS 94.4%salt - security update5/24/2022
CRITICAL9.8CVE-2020-11651⚠ KEVEPSS 94.2%salt - security update5/24/2022
MEDIUM6.5CVE-2020-11652⚠ KEVEPSS 93.7%SaltStack Salt is vulnerable Arbitrary Directory Access5/24/2022
CRITICAL9.8CVE-2020-7961⚠ KEVEPSS 94.4%Deserialization of Untrusted Data in Liferay Portal5/24/2022
HIGH8.1CVE-2014-3120⚠ KEVEPSS 84.2%Elasticsearch Improper Access Control vulnerability5/17/2022
—CVE-2015-1427⚠ KEVEPSS 92.3%Improper Access Control in Elasticsearch5/14/2022
CRITICAL9.8CVE-2016-4437⚠ KEVEPSS 94.3%Improper Access Control in Apache Shiro5/14/2022
CRITICAL9.8CVE-2016-3088⚠ KEVEPSS 94.3%Improper Input Validation in Apache ActiveMQ5/14/2022
HIGH8.1CVE-2017-12617⚠ KEVEPSS 94.4%tomcat7 - security update5/14/2022
HIGH7.5CVE-2015-5317⚠ KEVEPSS 39.7%Jenkins discloses project names via fingerprints5/13/2022
CRITICAL9.8CVE-2017-9791⚠ KEVEPSS 94.1%Code execution in Apache Struts 1 plugin5/13/2022
CRITICAL9.8CVE-2018-14667⚠ KEVEPSS 89.5%Richfaces vulnerable to arbitrary code execution5/13/2022
CRITICAL9.8CVE-2016-8735⚠ KEVEPSS 93.8%Apache Tomcat Improper Access Control vulnerability5/13/2022
CRITICAL9.9CVE-2019-1003030⚠ KEVEPSS 91.8%Sandbox bypass in Jenkins Pipeline: Groovy Plugin5/13/2022
CRITICAL9.8CVE-2013-2251⚠ KEVEPSS 94.3%Code injection in Apache Struts5/13/2022
CRITICAL9.8CVE-2017-1000353⚠ KEVEPSS 94.5%Deserialization of Untrusted Data in Jenkins5/13/2022
CRITICAL9.8CVE-2018-1000861⚠ KEVEPSS 94.5%Deserialization of Untrusted Data in Jenkins5/13/2022

← PrevPage 2 of 4Next →