16 matches found
CVE-2019-10219
creationtimestamp| type| source ---|---|--- 2024-02-11 07:56:42+00:00| seen| https://t.me/ctinow/182704 2026-06-30 03:22:28+00:00| seen| https://gist.github.com/hypergalois/e7077b83b2dbb66313dd9cc387d14c0c...
Security Bulletin:IBM TRIRIGA discloses CVE-2019-10219
Summary IBM TRIRIGA discloses CVE-2019-10219 Vulnerability Details CVEID:CVE-2019-10219 DESCRIPTION: Hibernate-Validator is vulnerable to cross-site scripting, caused by improper validation of user-supplied input by the SafeHtml validator annotation A remote attacker could exploit this...
Security Bulletin: Due to use of Hibernate Validator version 6.1.2.Final IBM Tivoli Network Manager is vulnerable which allows attackers to bypass input sanitation (escaping, stripping) controls(CVE-2020-10693, CVE-2019-10219).
Summary A flaw was found in Hibernate Validator version 6.1.2.Final. A bug in the message interpolation processor enables invalid EL expressions to be evaluated as if they were valid. This flaw allows attackers to bypass input sanitation escaping, stripping controls that developers may have put i...
Important: Red Hat Security Advisory: Red Hat Fuse 7.8.0 release and security update
A minor version update from 7.7 to 7.8 is now available for Red Hat Fuse. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...
Important: Red Hat Security Advisory: Red Hat Data Grid 7.3.6 security update
An update for Red Hat Data Grid is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 7 (RHSA-2020:0160)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0160 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 (RHSA-2020:0161)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0161 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 6 (RHSA-2020:0159)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:0159 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.6 on RHEL 8 security update
An update is now available for Red Hat JBoss Enterprise Application Platform 7.2 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...
com.hack23.cia:service.api (>=2018.12.15 <=2019.6.23), com.hack23.cia:service.data.impl (>=2018.12.15 <=2019.6.23) +5 more potentially affected by CVE-2019-10219 via org.hibernate.validator:hibernate-validator (>=6.1.0.Alpha1 <=6.1.0.Alpha5)
org.hibernate.validator:hibernate-validator MAVEN version =6.1.0.Alpha1, =2018.12.15, =2018.12.15, =2018.12.15, =0.11.0, =0.13.0, =0.11.0, =6.1.0.Alpha1, =6.1.0.Alpha5 Source cves: CVE-2019-10219 Source advisory: OSV:GHSA-M8P2-495H-CCMH...
com.sbuslab:model (>=1.0.12 <=1.0.14) potentially affected by CVE-2019-10219 via org.hibernate:hibernate-validator (=6.1.0.Alpha3)
org.hibernate:hibernate-validator MAVEN version =6.1.0.Alpha3 is affected by a known vulnerability. The following packages have a transitive dependency on org.hibernate:hibernate-validator and may be impacted: - com.sbuslab:model =1.0.12, =1.0.14 Source cves: CVE-2019-10219 Source advisory:...
ch.dvbern.oss.cdipersistence:cdi-persistence-test (=2.0.7), club.javafamily:notification-manager-all (>=2.3.2-beta.6 <=2.3.2-beta.14) +668 more potentially affected by CVE-2019-10219 via org.hibernate:hibernate-validator (>=6.0.0.Beta2 <=6.0.17.Final)
org.hibernate:hibernate-validator MAVEN version =6.0.0.Beta2, =2.3.2-beta.6, =2.3.2-beta.5, =0.8.2-release, =0.6-release, =0.8.2-release, =0.8.0-release, =0.8.2.9-release, =0.8.4.0-release, =0.8.0-release, =0.6-release, =0.8.0-release, =0.6-release, =0.6-release, =0.8.4.4-release and more Source...
UBUNTU-CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack...
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack...
CVE-2019-10219
The CVE-2019-10219 entry affects Hibernate Validator: SafeHtml validator annotation fails to sanitize HTML comments/instructions, enabling XSS in affected code paths. Affected CP4S versions are 1.7.2.0, 1.8.0.0, and 1.8.1.0. Remediation is to upgrade to Cloud Pak for Security 1.9.0.0 per IBM guid...
CVE-2019-10219
A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack...