Lucene search
K

15 matches found

Wolfi
Wolfi
added 2025/01/28 9:32 a.m.3 views

GHSA-P953-3J66-HG45 vulnerabilities

Vulnerabilities for packages: spark-scala-2.13...

7.5AI score
Exploits0
Wolfi
Wolfi
added 2025/01/28 9:15 a.m.13 views

CVE-2024-23953 vulnerabilities

Vulnerabilities for packages: spark-scala-2.13...

6.5CVSS6.7AI score0.01131EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/03/08 12:0 a.m.116 views

IBM Engineering Requirements Management DOORS 9.7.2.x < 9.7.2.8 Multiple Vulnerabilities (7124058)

The version of IBM Engineering Requirements Management DOORS formerly IBM Rational DOORS installed on the remote host is 9.7.2.x prior to 9.7.2.8. It is, therefore, affected by multiple vulnerabilities as referenced in the 7124058 advisory. - Apache Shiro before 1.9.1, A RegexRequestMatcher can b...

10CVSS7.2AI score0.99999EPSS
Exploits138References72
Wolfi
Wolfi
added 2023/03/22 6:30 a.m.5 views

GHSA-Q6G2-G7F3-RR83 vulnerabilities

Vulnerabilities for packages: druid...

7AI score
Exploits0
Wolfi
Wolfi
added 2023/03/22 6:15 a.m.4 views

CVE-2023-1436 vulnerabilities

Vulnerabilities for packages: druid...

7.5CVSS6.5AI score0.01009EPSS
Exploits1
Chainguard
Chainguard
added 2023/03/22 6:15 a.m.18 views

CVE-2023-1436 vulnerabilities

Vulnerabilities for packages: druid...

7.5CVSS6.5AI score0.01009EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.3 views

SUSE CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8CVSS7.7AI score0.08191EPSS
Exploits1References3
Wolfi
Wolfi
added 2022/09/25 12:0 a.m.4 views

GHSA-8QV5-68G4-248J vulnerabilities

Vulnerabilities for packages: spark-scala-2.13...

7.5AI score
Exploits0
OSV
OSV
added 2022/09/25 12:0 a.m.3 views

GHSA-8QV5-68G4-248J Scala subject to file deletion, code execution due to Java deserialization chain with LazyList object deserialization

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with LazyList object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make netwo...

9.8CVSS6.9AI score0.08191EPSS
Exploits1References9
NVD
NVD
added 2022/09/23 6:15 p.m.25 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8CVSS0.08191EPSS
Exploits1References6
Chainguard
Chainguard
added 2022/09/23 6:15 p.m.27 views

CVE-2022-36944 vulnerabilities

Vulnerabilities for packages: spark-fips...

9.8CVSS7.5AI score0.08191EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2022/09/23 6:15 p.m.49 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8CVSS7AI score0.08191EPSS
Exploits1References3
Prion
Prion
added 2022/09/23 6:15 p.m.36 views

Deserialization of untrusted data

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

7.5CVSS9.5AI score0.08191EPSS
Exploits1References6Affected Software3
Cvelist
Cvelist
added 2022/09/23 12:0 a.m.23 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8AI score0.08191EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2022/09/23 12:0 a.m.11 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

7.4AI score0.08191EPSS
Exploits1References6
Rows per page
Query Builder