Search

64 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

—CVE-2015-1427⚠ KEVEPSS 92.3%Improper Access Control in Elasticsearch5/14/2022
CRITICAL9.8CVE-2016-4437⚠ KEVEPSS 94.3%Improper Access Control in Apache Shiro5/14/2022
CRITICAL9.8CVE-2016-3088⚠ KEVEPSS 94.3%Improper Input Validation in Apache ActiveMQ5/14/2022
HIGH8.1CVE-2017-12617⚠ KEVEPSS 94.4%tomcat7 - security update5/14/2022
HIGH7.5CVE-2015-5317⚠ KEVEPSS 39.7%Jenkins discloses project names via fingerprints5/13/2022
CRITICAL9.8CVE-2017-9791⚠ KEVEPSS 94.1%Code execution in Apache Struts 1 plugin5/13/2022
CRITICAL9.8CVE-2018-14667⚠ KEVEPSS 89.5%Richfaces vulnerable to arbitrary code execution5/13/2022
CRITICAL9.8CVE-2016-8735⚠ KEVEPSS 93.8%Apache Tomcat Improper Access Control vulnerability5/13/2022
CRITICAL9.9CVE-2019-1003030⚠ KEVEPSS 91.8%Sandbox bypass in Jenkins Pipeline: Groovy Plugin5/13/2022
CRITICAL9.8CVE-2013-2251⚠ KEVEPSS 94.3%Code injection in Apache Struts5/13/2022
CRITICAL9.8CVE-2017-1000353⚠ KEVEPSS 94.5%Deserialization of Untrusted Data in Jenkins5/13/2022
CRITICAL9.8CVE-2018-1000861⚠ KEVEPSS 94.5%Deserialization of Untrusted Data in Jenkins5/13/2022
CRITICAL9.9CVE-2019-1003029⚠ KEVEPSS 92.6%Sandbox bypass in Script Security Plugin5/13/2022
CRITICAL9.8CVE-2012-0391⚠ KEVEPSS 87.5%Apache Struts Remote Java Code Execution5/4/2022
HIGH7.5CVE-2006-1547⚠ KEVEPSS 22.2%Improper Input Validation in Apache Struts5/1/2022
CRITICAL9.8CVE-2022-22963⚠ KEVEPSS 94.5%Spring Cloud Function Code Injection with a specially crafted SpEL as a routing expression4/3/2022
CRITICAL9.8CVE-2022-22965⚠ KEVEPSS 94.4%Remote Code Execution in Spring Framework3/31/2022
CRITICAL10.0CVE-2022-22947⚠ KEVEPSS 94.5%Spring Cloud Gateway vulnerable to Code Injection when Gateway Actuator endpoint enabled, exposed, unsecured3/4/2022
CRITICAL9.8CVE-2020-17530⚠ KEVEPSS 94.4%Remote code execution in Apache Struts2/9/2022
CRITICAL9.0CVE-2021-45046⚠ KEVEPSS 94.3%apache-log4j2 - security update12/14/2021
CRITICAL10.0CVE-2021-44228⚠ KEVEPSS 94.4%apache-log4j2 - security update12/10/2021
HIGH8.5CVE-2021-39144⚠ KEVEPSS 94.3%XStream is vulnerable to a Remote Command Execution attack8/25/2021
CRITICAL9.8CVE-2017-1000486⚠ KEVEPSS 93.9%Inadequate Encryption Strength6/3/2021
HIGH7.8CVE-2021-21315⚠ KEVEPSS 94.0%Command Injection Vulnerability2/16/2021
HIGH7.5CVE-2020-17519⚠ KEVEPSS 94.3%Path Traversal in Apache Flink1/6/2021

← PrevPage 2 of 3Next →