Lucene search
K

4457 matches found

vulnersOsv
vulnersOsv
added 2026/03/26 10:20 p.m.9 views

4coders-commons (>=0.0.1 <=0.0.2), @11ty/eleventy (=0.3.3) +3644 more potentially affected by CVE-2026-33916 via handlebars (>=4.0.0 <=4.7.8)

handlebars NPM version =4.0.0, =0.0.1, =0.1.0, =0.1.0, =0.0.11, =0.0.52, =0.1.0, =0.0.72, =0.1.0, =1.1.1, =0.0.0-3b548b7bf6ff6554f724240da3a11be924237e6c, =1.16.0, =1.16.0, =1.16.0, =2.4.4 and more Source cves: CVE-2026-33916 Source advisory: SNYK:JS-HANDLEBARS-15789775...

4.7CVSS6.5AI score0.00232EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/25 7:31 p.m.11 views

Security Bulletin: Multiple Security vulnerabilities affecting IBM Knowledge Catalog Standard Cartridge

Summary Multiple security vulnerabilities impacting IBM Knowledge Catalog Standard Cartridge. These vulnerabilities had been addressed and customers should update to the recommended version of the product at the earliest opportunity. Vulnerability Details CVEID:CVE-2025-36187 DESCRIPTION: IBM...

9.4CVSS7AI score0.02164EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/24 4:15 p.m.9 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Apache Commons Lang (CVE-2025-48924)

Summary A vulnerability in Apache Commons Lang that is used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with...

5.3CVSS6.6AI score0.02164EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.4 views

Nutanix AOS : Multiple Vulnerabilities (NXSA-AOS-7.0.1.15)

The version of AOS installed on the remote host is prior to 7.0.1.15. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AOS-7.0.1.15 advisory. - urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTT...

8.9CVSS7AI score0.63258EPSS
Exploits1References6
GithubExploit
GithubExploit
added 2026/03/20 6:54 p.m.222 views

Exploit for Missing Authorization in Scshr Hr_Portal

CVE-2025-48734: Apache Commons BeanUtils – enum declaredClass...

8.8CVSS7.8AI score0.01495EPSS
Exploits1
OSV
OSV
added 2026/03/20 2:25 p.m.7 views

OESA-2026-1690 mchange-commons security update

General tool, part of c3p0. Security Fixes: mchange-commons-java, a library that provides Java utilities, includes code that mirrors early implementations of JNDI functionality, including support for remote factoryClassLocation values, by which code can be downloaded and invoked within a running...

9.8CVSS6.2AI score0.00812EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/20 8:20 a.m.6 views

Security Bulletin: StackOverflowError Denial-of-Service Vulnerability in Apache Commons Lang ClassUtils.getClass() Due to Uncontrolled Recursion affects watsonx.data

Summary Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0. The methods ClassUtils.getClass... can throw StackOverflowError on very lo...

5.3CVSS6.5AI score0.02164EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/19 1:32 p.m.5 views

Security Bulletin: IBM Datapower Operations Dashboard is vulnerable to a StackOverflowError CVE-2025-48924

Summary Apache Commons is used by the IBM Datapower Operations Dashboard in their Java components utility operations Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with...

5.3CVSS5.8AI score0.02164EPSS
Exploits0Affected Software1
GithubExploit
GithubExploit
added 2026/03/16 5:29 a.m.141 views

Exploit for Code Injection in Apache Commons_Text

CVE-2022-42889 Text4Shell Report Apache Commons Text CVE-2...

9.8CVSS5.8AI score0.99931EPSS
Exploits41
Fedora
Fedora
added 2026/03/13 1:0 a.m.6 views

[SECURITY] Fedora 42 Update: libmaxminddb-1.13.1-1.fc42

The libmaxminddb library provides a C library for reading MaxMind DB files, including the GeoIP2 databases from MaxMind. This is a custom binary format designed to facilitate fast lookups of IP addresses while allowing for great flexibility in the type of data associated with an address. The...

5.8AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/12 3:46 p.m.3 views

Malicious code in @sky-it-livedata-libraries/livedata-commons-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23622be0c1860486eed767780c0a0de0a46b5b0a736cd99a08ecba95fd57c411 The package @sky-it-livedata-libraries/livedata-commons-client was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/03/12 3:46 p.m.2 views

MAL-2026-1373 Malicious code in @sky-it-livedata-libraries/livedata-commons-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 23622be0c1860486eed767780c0a0de0a46b5b0a736cd99a08ecba95fd57c411 The package @sky-it-livedata-libraries/livedata-commons-client was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/12 3:46 p.m.5 views

Malicious code in @sky-it-livedata-libraries/livedata-commons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20bdbc3cff45e6eac27e84e332d4efa6ad06a4d593b15610a99115bac25d2931 The package @sky-it-livedata-libraries/livedata-commons was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/03/12 3:46 p.m.3 views

MAL-2026-1372 Malicious code in @sky-it-livedata-libraries/livedata-commons (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20bdbc3cff45e6eac27e84e332d4efa6ad06a4d593b15610a99115bac25d2931 The package @sky-it-livedata-libraries/livedata-commons was found to contain malicious code. Source: ghsa-malware...

5.7AI score
Exploits0References1
GithubExploit
GithubExploit
added 2026/03/12 12:28 p.m.143 views

Exploit for Deserialization of Untrusted Data in Nextgen Mirth_Connect

CVE-2023-43208 — Mirth Connect RCE !Pythonhttps://img.shie...

9.8CVSS5.9AI score0.82708EPSS
Exploits21
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/12 7:9 a.m.3 views

Security Bulletin: IBM Security Directory Suite is affected by multiple vulnerabilities (CVE-2025-48976, CVE-2025-36047, CVE-2025-53066, CVE-2025-53057)

Summary IBM Security Directory Suite is affected by WebSphere Liberty vulnerabilities CVE‑2025‑48976, CVE‑2025‑36047 and Java vulnerabilities CVE‑2025‑53066, CVE‑2025‑53057. These vulnerabilities have been addressed with an update. Vulnerability Details CVEID:CVE-2025-53066 DESCRIPTION: An...

7.5CVSS5.8AI score0.63258EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2026/03/11 10:47 a.m.1 views

Important: Red Hat Security Advisory: Red Hat build of Debezium 3.2.7 release

Red Hat build of Debezium connectors in version 3.2.7 are now available for Red Hat Application Foundations. Debezium is a distributed platform that turns your existing databases into event streams, so applications can see and respond immediately to each row-level change in the databases. Debeziu...

9.8CVSS6.3AI score0.00812EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/03/11 12:0 a.m.2 views

openSUSE 15 Security Update : c3p0 and mchange-commons (SUSE-SU-2026:0855-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0855-1 advisory. c3p0: - Security issues fixed: - CVE-2026-27830: Fixed unsafe object deserialization bsc1258942 - Fix the null pointer exception in the...

9.8CVSS6AI score0.00812EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2026/03/11 12:0 a.m.6 views

openSUSE Security Advisory (SUSE-SU-2026:0855-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00812EPSS
Exploits1References6
GithubExploit
GithubExploit
added 2026/03/10 10:9 a.m.132 views

Exploit for Code Injection in Apache Commons_Text

No d...

9.8CVSS7.2AI score0.99931EPSS
Exploits41
Rows per page
Query Builder