Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:40 a.m.7 views

SUSE CVE-2021-34429

For Eclipse Jetty versions 9.4.37-9.4.42, 10.0.1-10.0.5 & 11.0.1-11.0.5, URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. This is a variation of the vulnerability reported in CVE-2021-28164/GHSA-v7ff-8wcx-gmc...

6.5CVSS8.6AI score0.99298EPSS
Exploits6References5
OSV
OSV
added 2021/07/15 5:15 p.m.5 views

DEBIAN-CVE-2021-34429

For Eclipse Jetty versions 9.4.37-9.4.42, 10.0.1-10.0.5 & 11.0.1-11.0.5, URIs can be crafted using some encoded characters to access the content of the WEB-INF directory and/or bypass some security constraints. This is a variation of the vulnerability reported in CVE-2021-28164/GHSA-v7ff-8wcx-gmc...

5.3CVSS6.5AI score0.99298EPSS
Exploits6References1
RedHat Linux
RedHat Linux
added 2017/09/05 3:4 p.m.4 views

tomcat: Security constrained bypass in error page mechanism

A vulnerability was discovered in the error page mechanism in Tomcat's DefaultServlet implementation. A crafted HTTP request could cause undesired side effects, possibly including the removal or replacement of the custom error page...

7.5CVSS7.2AI score0.16567EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2015/05/14 3:14 p.m.3 views

Xalan-Java: insufficient constraints in secure processing feature

It was found that the secure processing feature of Xalan-Java had insufficient restrictions defined for certain properties and features. A remote attacker able to provide Extensible Stylesheet Language Transformations XSLT content to be processed by an application using Xalan-Java could use this...

7.5CVSS7.8AI score0.137EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.38 views

openSUSE Security Update : libmoon-devel (openSUSE-SU-2010:1062-1)

Untrusted Moonlight apps could bypass constraints on methods which potentially allowed attackers to execute arbitrary code CVE-2010-4254. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

7.5CVSS5.8AI score0.13649EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2014/06/02 2:4 p.m.6 views

Xalan-Java: insufficient constraints in secure processing feature

It was found that the secure processing feature of Xalan-Java had insufficient restrictions defined for certain properties and features. A remote attacker able to provide Extensible Stylesheet Language Transformations XSLT content to be processed by an application using Xalan-Java could use this...

7.5CVSS7.8AI score0.137EPSS
Exploits2References5
Gentoo Linux
Gentoo Linux
added 2012/06/21 12:0 a.m.103 views

Mono: Multiple vulnerabilities

Background Mono is an open source implementation of Microsoft's .NET Framework. Description Multiple vulnerabilities have been discovered in Mono and Mono debugger. Please review the CVE identifiers referenced below for details. Impact A remote attacker could execute arbitrary code, bypass genera...

7.5CVSS10AI score0.67481EPSS
Exploits4
Rows per page
Query Builder