Lucene search
K

7 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Axis

UNSUPPORTED WHEN ASSIGNED When integrating Apache Axis 1.x in an application, it might not have been obvious that using “ServiceFactory.getService” could lead to potentially dangerous operations, such as LDAP queries. Passing untrusted input to this API method could expose the application to DoS,...

9.8CVSS7.2AI score0.01931EPSS
Exploits0References2
OSV
OSV
added 2024/01/06 12:15 p.m.6 views

UBUNTU-CVE-2023-51441

UNSUPPORTED WHEN ASSIGNED Improper Input Validation vulnerability in Apache Axis allowed users with access to the admin service to perform possible SSRF This issue affects Apache Axis: through 1.3. As Axis 1 has been EOL we recommend you migrate to a different SOAP engine, such as Apache Axis...

7.2CVSS7AI score0.01213EPSS
Exploits0References5
OSV
OSV
added 2023/09/05 3:15 p.m.1 views

DEBIAN-CVE-2023-40743

UNSUPPORTED WHEN ASSIGNED When integrating Apache Axis 1.x in an application, it may not have been obvious that looking up a service through "ServiceFactory.getService" allows potentially dangerous lookup mechanisms such as LDAP. When passing untrusted input to this API method, this could expose...

9.8CVSS8.1AI score0.01931EPSS
Exploits0References1
OSV
OSV
added 2023/09/05 3:15 p.m.7 views

UBUNTU-CVE-2023-40743

UNSUPPORTED WHEN ASSIGNED When integrating Apache Axis 1.x in an application, it may not have been obvious that looking up a service through "ServiceFactory.getService" allows potentially dangerous lookup mechanisms such as LDAP. When passing untrusted input to this API method, this could expose...

9.8CVSS7.3AI score0.01931EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:19 a.m.4 views

SUSE CVE-2019-0227

A Server Side Request Forgery SSRF vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to build from source. The successor to Axis 1.x is Axis2...

7.5CVSS7.5AI score0.86503EPSS
Exploits7References3
CNNVD
CNNVD
added 2022/11/21 12:0 a.m.6 views

Maggioli SpA Appalti & Contratti 安全漏洞

Maggioli SpA Appalti & Contratti is a modular platform of Maggioli SpA. It consists of several integrated web applications to support Italian public administrations in the computerization and telematics management of their processes. A security vulnerability exists in Maggioli SpA Appalti &...

8.8CVSS8.1AI score0.00984EPSS
Exploits1References2
OSV
OSV
added 2019/05/01 9:29 p.m.8 views

UBUNTU-CVE-2019-0227

A Server Side Request Forgery SSRF vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to build from source. The successor to Axis 1.x is Axis2...

7.5CVSS6.7AI score0.86503EPSS
Exploits7References3
Rows per page
Query Builder