Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/24 12:0 a.m.9 views

Oracle GoldenGate for Big Data Multiple Vulnerabilities 21.x < 21.22.0.0.0 (April 2026 CPU)

According to its self-reported version number, the Oracle GoldenGate for Big Data application located on the remote host is affected by multiple vulnerabilities: - Vulnerability in the Oracle GoldenGate Big Data and Application Adapters product of Oracle GoldenGate component: Java Delivery Netty...

7.3CVSS5.9AI score0.00602EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/06 7:38 p.m.6 views

Security Bulletin: IBM Terracotta is affected by an Apache Avro vulnerability that could allow code injection leading to access to unauthorized resources

Summary IBM Terracotta uses Apache Avro as part of Apache Parquet used within the IBM Terracotta implementation for data export and import. Vulnerability Details CVEID:CVE-2025-33042 DESCRIPTION: Improper Control of Generation of Code 'Code Injection' vulnerability in Apache Avro Java SDK when...

7.3CVSS5.8AI score0.00602EPSS
Exploits0Affected Software1
Chainguard
Chainguard
added 2026/02/19 7:17 a.m.7 views

CVE-2025-33042 vulnerabilities

Vulnerabilities for packages: apache-hop-fips, druid, apache-hop, pinot, logstash, spark-fips, wavefront-proxy, apache-pulsar, celeborn, hadoop-fips, akhq, spark, kafbat-ui, kafbat-ui-fips...

7.3CVSS7.2AI score0.00602EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/02/13 12:31 p.m.7 views

ca.dataedu:savro_2.12 (>=0.9.1 <=0.12.1), ca.dataedu:savro_2.13 (>=0.9.1 <=0.12.1) +94 more potentially affected by CVE-2025-33042 via org.apache.avro:avro-compiler (>=1.10.0 <=1.11.4)

org.apache.avro:avro-compiler MAVEN version =1.10.0, =0.9.1, =0.9.1, =1.0.0, =1.0.0, =0.0.8, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =3.4.3, =3.4.4 - com.github.thake.avro4k:avro4k-maven-plugin =0.5.0 and more Source cves: CVE-2025-33042 Source advisory: SNYK:JAVA-ORGAPACHEAVRO-15282783...

7.3CVSS7.2AI score0.00602EPSS
Exploits0
OSV
OSV
added 2026/02/13 12:16 p.m.7 views

CVE-2025-33042

Improper Control of Generation of Code 'Code Injection' vulnerability in Apache Avro Java SDK when generating specific records from untrusted Avro schemas. This issue affects Apache Avro Java SDK: all versions through 1.11.4 and version 1.12.0. Users are recommended to upgrade to version 1.12.1 o...

7.3CVSS5.5AI score
Exploits0References2
Circl
Circl
added 2026/02/12 5:51 p.m.5 views

CVE-2025-33042

creationtimestamp| type| source ---|---|--- 2026-02-12 17:51:10+00:00| seen| https://seclists.org/oss-sec/2026/q1/163 2026-02-14 18:40:27+00:00| seen| https://gist.github.com/alon710/d740d9b4112d3738012c072f4e9cd15d 2026-02-14 19:00:35+00:00| seen|...

7.3CVSS7.4AI score0.00602EPSS
Exploits0References9
Rows per page
Query Builder