Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Glassfish Security Vulnerabilities

cve
cve

CVE-2023-5763

In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote attackers to load malicious code on the server via access to insecure ORB...

9.8CVSS

7.7AI Score

0.001EPSS

2023-11-03 07:15 AM
27
cve
cve

CVE-2022-2712

In Eclipse GlassFish versions 5.1.0 to 6.2.5, there is a vulnerability in relative path traversal because it does not filter request path starting with './'. Successful exploitation could allow an remote unauthenticated attacker to access critical data, such as configuration files and deployed...

7.5CVSS

7.5AI Score

0.002EPSS

2023-01-27 10:15 AM
40
cve
cve

CVE-2018-3210

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Java Server Faces). The supported version that is affected is 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish...

5.3CVSS

5.8AI Score

0.002EPSS

2018-10-17 01:31 AM
35
cve
cve

CVE-2018-2911

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Java Server Faces). The supported version that is affected is 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish...

8.3CVSS

7.9AI Score

0.002EPSS

2018-10-17 01:31 AM
34
cve
cve

CVE-2018-3152

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Administration). The supported version that is affected is 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish Server....

7.5CVSS

7.5AI Score

0.002EPSS

2018-10-17 01:31 AM
34
cve
cve

CVE-2017-10400

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Administration Graphical User Interface). The supported version that is affected is 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

5.4CVSS

4.5AI Score

0.002EPSS

2017-10-19 05:29 PM
43
cve
cve

CVE-2017-10393

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 3.0.1 and 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish...

6.3CVSS

5.6AI Score

0.001EPSS

2017-10-19 05:29 PM
37
cve
cve

CVE-2017-10391

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Administration). Supported versions that are affected are 3.0.1 and 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish.....

7.3CVSS

6.3AI Score

0.001EPSS

2017-10-19 05:29 PM
47
cve
cve

CVE-2017-10385

Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 3.0.1 and 3.1.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle GlassFish...

6.3CVSS

5.6AI Score

0.001EPSS

2017-10-19 05:29 PM
37