Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
πŸ”₯ Daily Hot!
πŸ’ͺ🏽 CPE Enhanced Advisories
πŸ•Ά Shadow Exploits
πŸ•΅πŸΌ Vulners CPE
πŸ” Security news
πŸ’» Exploit updates
πŸ“‘ Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
πŸ€– AI High Score
πŸ“° CVE Feed
show all

3 matches found

UbuntuCve
UbuntuCveβ€’added 2025/12/18 9:15 p.m.β€’3 views

CVE-2025-68161

The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName https://logging.apache.org/log4j/2.x/manual/appenders/network.htmlSslConfiguration-attr-verifyHostName configuration attribut...

6.3CVSS6.7AI score0.00032EPSS
Exploits1References8
CVE
CVEβ€’added 2025/11/18 3:14 p.m.β€’468 views

CVE-2025-12383

CVE-2025-12383 is a race-condition vulnerability in Eclipse Jersey that can cause ignoring of critical SSL configurations (e.g., mutual authentication, custom key/trust stores), potentially enabling unauthorized trust in insecure servers. Affected assets in the provided IBM context include IBM St...

9.4CVSS6.3AI score0.00042EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologiesβ€’added 2025/11/18 12:0 a.m.β€’2 views

PT-2025-47323

Name of the Vulnerable Software and Affected Versions Eclipse Jersey versions 2.45, 3.0.16, 3.1.9 Description A race condition in Eclipse Jersey’s SSL configuration processing can lead to the ignoring of critical SSL configurations, including mutual authentication and custom key/trust stores. Thi...

9.4CVSS6.7AI score0.00042EPSS
Exploits0References7
Rows per page
Query Builder