Lucene search
K

113 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : java-11-openjdk-11.0.13.0.8-1.el8 (AXSA:2021-2492:13)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2492:13 advisory. OpenJDK: Loop in HttpsServer triggered during TLS session close JSSE, 8254967 CVE-2021-35565 OpenJDK: Incorrect principal selection when using...

7.1CVSS6.5AI score0.14839EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/01/09 10:40 a.m.7 views

CVE-2022-35559

A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.94122, which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution...

9.8CVSS8.1AI score0.10886EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/09 12:0 a.m.5 views

Siemens Ruggedcom ROX Uncontrolled Resource Consumption (CVE-2021-35559)

Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Easily exploitable vulnerability allows unauthenticated...

5.3CVSS6.9AI score0.14839EPSS
Exploits0References3
Chainguard
Chainguard
added 2025/08/23 2:16 p.m.3 views

CVE-2021-35559 vulnerabilities

Vulnerabilities for packages: openjdk-26-openj9, openjdk-21-openj9, openjdk-17-openj9, openjdk-25-openj9, openjdk-11-openj9, openjdk-8-openj9...

5.3CVSS6.7AI score0.14839EPSS
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-35559 Malicious code in test-mlw2-inkle-jinns (npm)

The package test-mlw2-inkle-jinns was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:33 p.m.9 views

CVE-2020-35559

An issue was discovered in MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 through 2.6.2. There is an unused function that allows an authenticated attacker to use up all available IPs of an account and thus not allow creation of new devices and users...

4.3CVSS6.7AI score0.00781EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/02/14 12:41 a.m.11 views

CVE-2024-35559

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/infoMovedeal.php?mudi=rev=close...

8.8CVSS7.5AI score0.00295EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.36 views

CentOS 7 : java-1.8.0-ibm (RHSA-2021:5030)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:5030 advisory. - Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are...

9.8CVSS6.5AI score0.14839EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/05/31 12:0 a.m.31 views

Amazon Linux 2 : java-11-openjdk (ALASJAVA-OPENJDK11-2024-009)

The version of java-11-openjdk installed on the remote host is prior to 11.0.13.0.8-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2JAVA-OPENJDK11-2024-009 advisory. Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE...

7.1CVSS6.3AI score0.14839EPSS
Exploits0References22
Vulnrichment
Vulnrichment
added 2024/05/22 1:38 p.m.17 views

CVE-2024-35559

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/infoMovedeal.php?mudi=rev&nohrefStr=close...

7.5AI score0.00295EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/22 1:38 p.m.20 views

CVE-2024-35559

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/infoMovedeal.php?mudi=rev&nohrefStr=close...

7.1AI score0.00295EPSS
Exploits1References1
CVE
CVE
added 2024/05/22 1:38 p.m.57 views

CVE-2024-35559

idccms v1.35 contains a Cross-Site Request Forgery (CSRF) vulnerability in the admin/infoMove_deal.php endpoint (parameters mudi and nohrefStr=close). CVSS v3.1 base score 8.8 (HIGH): Network attack vector, no privileges required, user interaction required, and with high confidentiality, integrit...

8.8CVSS7.4AI score0.00295EPSS
Exploits1References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/07/13 12:0 a.m.33 views

SUSE SLES12: java-1_7_0-openjdk / java-1_7_0-openjdk-demo / etc (SUSE-SU-2021:3797-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3797-1 advisory. Update to OpenJDK 7u321 October 2021 CPU: - CVE-2021-35550: Fixed weak ciphers preferred over stronger ones for TLS bsc1191901. -...

7.1CVSS6.5AI score0.14839EPSS
Exploits0References28
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/07 4:1 p.m.60 views

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK affect Liberty for Java for IBM Cloud October 2021 CPU

Summary There are multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition that is shipped with Liberty for Java for IBM Cloud. These might affect some configurations of Liberty for Java for IBM Cloud. These products have addressed the applicable CVEs. If you run your own Java code usin...

9.8CVSS8.9AI score0.14839EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/07 1:49 p.m.49 views

Security Bulletin: Multiple vulnerabilities have been identified in Oracle October 2021 CPU for Java 8 shipped with IBM® Intelligent Operations Center (CVE-2021-35560, CVE-2021-35586, CVE-2021-35578, CVE-2021-35564, CVE-2021-35559, CVE)

Summary Multiple vulnerabilities have been identified in Oracle October 2021 CPU for Java 8 which is shipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs...

9.8CVSS9.1AI score0.14839EPSS
Exploits0Affected Software1
CloudLinux
CloudLinux
added 2022/08/22 1:56 p.m.105 views

Fixed 50 CVEs in java-1.7.0-openjdk

Bump to 2.6.28 and OpenJDK 7u351-b01. - Security fixes in 7u351: - CVE-2022-21540: Improve class compilation JDK-8281859 - CVE-2022-21541: Enhance MethodHandle invocations JDK-8281866 - CVE-2022-34169: Improve Xalan supports JDK-8285407 - Security fixes in 7u341: - CVE-2022-21426: Better XPath...

8.3CVSS1AI score0.17673EPSS
Exploits2References1
OSV
OSV
added 2022/08/12 3:15 p.m.5 views

CVE-2022-35559

A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.94122, which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution...

9.8CVSS7.8AI score0.10886EPSS
Exploits1References1
NVD
NVD
added 2022/08/12 3:15 p.m.24 views

CVE-2022-35559

A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.94122, which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution...

9.8CVSS0.10886EPSS
Exploits1References1
Cvelist
Cvelist
added 2022/08/11 4:39 p.m.32 views

CVE-2022-35559

A stack overflow vulnerability exists in /goform/setAutoPing in Tenda W6 V1.0.0.94122, which allows an attacker to construct ping1 parameters and ping2 parameters for a stack overflow attack. An attacker can use this vulnerability to execute arbitrary code execution...

10AI score0.10886EPSS
Exploits1References1
CVE
CVE
added 2022/08/11 4:39 p.m.51 views

CVE-2022-35559

CVE-2022-35559 is a stack overflow in Tenda W6’s /goform/setAutoPing (v1.0.0.9(4122)) that could allow a remote attacker to trigger arbitrary code execution. Multiple sources (NVD, Red Hat, CNVD, PT Security) describe a vulnerability in the setAutoPing endpoint causing buffer overflow. The primar...

9.8CVSS9.8AI score0.10886EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder