Lucene search
K

41 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/09 12:0 a.m.32 views

Security Updates for Azure CycleCloud (July 2024)

The Azure CycleCloud product is missing security updates. It is, therefore, affected by an elevation of privilege vulnerability. The attacker who successfully exploited this vulnerability could elevate privileges to the SuperUser role in the affected Azure CycleCloud instance. To exploit this...

8.8CVSS7.4AI score0.46836EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2024/01/29 12:0 a.m.80 views

Oracle Business Intelligence Enterprise Edition (OAS 7.0) (January 2024 CPU)

The version of Oracle Business Intelligence Enterprise Edition OAS 7.0.0.0 installed on the remote host is affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory, including the following: - Vulnerability in the Oracle Business Intelligence Enterprise Edition product o...

7.7CVSS7AI score0.16195EPSS
Exploits4References11
Tenable Nessus
Tenable Nessus
added 2023/10/26 12:0 a.m.40 views

Oracle Application Testing Suite DoS (October 2023 CPU)

The version of Oracle Application Testing Suite installed on the remote host is affected by a denial of service vulnerability as referenced in the October 2023 CPU advisory: - Vulnerability in the Oracle Application Testing Suite product of Oracle Enterprise Manager component: Load Testing for We...

7.7CVSS7.9AI score0.1158EPSS
Exploits0References3
hivepro
hivepro
added 2023/09/27 10:22 a.m.65 views

Critical Security Vulnerabilities Discovered in Atlassian Products

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Atlassian have revealed the existence of several security vulnerabilities, namely CVE-2022-25647, CVE-2023-22512, CVE-2023-22513, and CVE-2023-28709, which affect their products. These...

6.5CVSS7.8AI score0.51547EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/09/20 12:0 a.m.75 views

Atlassian JIRA Service Desk < 4.20.25 / 5.3.x < 5.4.9 / 5.9.x < 5.9.2 / 5.10.x < 5.10.1 (JSDSERVER-14007)

The version of Atlassian JIRA Service Desk Server running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14007 advisory. - The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace method in intern...

7.7CVSS8AI score0.1158EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/04 11:29 a.m.49 views

Security Bulletin: IBM Cloud Pak for Network Automation 2.6 addresses multiple security vulnerabilities

Summary IBM Cloud Pak for Network Automation 2.6 addresses multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is vulnerable to a denial of service, caused by the deserialization of untrusted data. By using the...

9.8CVSS9.4AI score0.22709EPSS
Exploits1Affected Software1
Broadcom
Broadcom
added 2023/08/29 12:0 a.m.46 views

Oracle Java SE Multiple Vulnerabilities (July 2022 CPU update) CVE-2022-21540 CVE-2022-21541 CVE-2022-21549 CVE-2022-25647 CVE-2022-34169

The version of Oracle formerly Sun Java SE or Java for Business installed on the remote host is affected by multiple vulnerabilities as referenced in the July 2022 CPU advisory: - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot...

7.5CVSS7.1AI score0.17673EPSS
Exploits2
IBM Security Bulletins
IBM Security Bulletins
added 2023/07/21 3:38 p.m.36 views

Security Bulletin: Vulnerability in Google gson 2.2.4 libraries (CVE-2022-25647) affects IBM Operations Analytics Predictive Insights

Summary IBM Operations Analytics Predictive Insights uses Google gson libraries for serialization/deserialization of objects in REST mediation service. A security vulnerability in versions prior to gson 2.8.9. could be exploited to compromise Operations Analytics Predictive Insights services...

7.7CVSS7.5AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/06/20 6:1 p.m.40 views

Security Bulletin: IBM Storage Protect is vulnerable to a denial of service attack due to Google Gson (CVE-2022-25647)

Summary IBM Spectrum Protect is uses Google Gson for object serialization and is vulnerable to this attack. Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is vulnerable to a denial of service, caused by the deserialization of untrusted data. By using the writeReplace method, ...

7.7CVSS7.5AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/19 9:31 a.m.36 views

Security Bulletin: Vulnerability from Google Gson affect IBM Operations Analytics - Log Analysis (CVE-2022-25647)

Summary Google Gson shipped with Log Analysis is vulnerable to denial of service Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is vulnerable to a denial of service, caused by the deserialization of untrusted data. By using the writeReplace method, a remote attacker could...

7.7CVSS7.5AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/31 11:49 a.m.54 views

Security Bulletin: Vulnerability in gson-2.8.0.jar affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0)(CVE-2022-25647).

Summary The gson-2.8.0.jar package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVECVE-2022-25647 Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is vulnerable to a denial of service, caused by the deserializatio...

7.7CVSS7.4AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/18 10:1 p.m.44 views

Security Bulletin: IBM Security Guardium is affected by a denial of service vulnerability (CVE-2022-25647)

Summary IBM Security Guardium has fixed this vulnerability. Please update your product as detailed below. Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is vulnerable to a denial of service, caused by the deserialization of untrusted data. By using the writeReplace method, a...

7.7CVSS7.5AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/05 12:14 p.m.88 views

Security Bulletin: IBM Sterling B2B Integrator is vulnerable to denial of service due to Google Gson (CVE-2022-25647)

Summary IBM Sterling B2B Integrator has addressed a denial of service vulnerability in Google Gson. Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is vulnerable to a denial of service, caused by the deserialization of untrusted data. By using the writeReplace method, a remote...

7.7CVSS7.4AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/12/07 8:24 p.m.44 views

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Google Gson denial of service vulnerabilities ( CVE-2022-25647, ID217225)

Summary Potential denial of service vulnerabilities in Google gson , CVE-2022-25647, ID217225 has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. Refer to details for additional information. Vulnerability Details CVEID:CVE-2022-25647 DESCRIPTION: Google Gson is...

7.7CVSS7.7AI score0.1158EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/07 12:7 p.m.41 views

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer operands that use the JDBC connector may be vulnerable to denial of service due to CVE-2022-25647

Summary Google Gson is used by IBM App Connect Enterprise Certified Container in the JDBC connector. IBM App Connect Enterprise Certified Container IntegrationServer operands that use the JDBC connector may be vulnerable to denial of service. This bulletin provides patch information to address th...

7.7CVSS7.5AI score0.1158EPSS
Exploits0Affected Software1
OSV
OSV
added 2022/10/24 1:19 p.m.9 views

SUSE-SU-2022:3706-1 Security update for google-gson

This update for google-gson fixes the following issues: Fixed security issue: - CVE-2022-25647: Deserialization of Untrusted Data bsc1199064 Other non security fixes: - Build with Java = 9 in order to produce a modular jar by compiling the module-info.java sources with all other classes built wit...

7.7CVSS7.7AI score0.1158EPSS
Exploits0References3
NCSC
NCSC
added 2022/10/19 12:0 a.m.11 views

Vulnerabilities fixed in Oracle Siebel CRM

Vulnerabilities have been fixed in Oracle Siebel CRM. The vulnerabilities allow a malicious party to conduct attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS Manipulation of data Access to sensitive data Oracle has fixed vulnerabilities in the...

9.3CVSS7AI score0.42229EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2022/10/05 2:30 p.m.106 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.2.0 release and security update

Red Hat AMQ Streams 2.2.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.7CVSS7AI score0.1158EPSS
Exploits2References7
Mageia
Mageia
added 2022/09/21 6:15 p.m.79 views

Updated google-gson packages fix security vulnerability

The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace method in internal classes, which may lead to DoS attacks. CVE-2022-25647...

7.7CVSS2.9AI score0.1158EPSS
Exploits0References4
Debian
Debian
added 2022/09/07 10:22 a.m.52 views

[SECURITY] [DSA 5227-1] libgoogle-gson-java security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5227-1 [email protected] https://www.debian.org/security/ Markus Koschany September 07, 2022 https://www.debian.org/security/faq -...

7.7CVSS8AI score0.1158EPSS
Exploits0
Rows per page
Query Builder