CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Apache Commons BeanUtils library provides utility methods for accessing and modifying properties of arbitrary JavaBeans. Security Fixes: commons-beanutils: Apache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default CVE-2025-48734 For more detai...

8.8CVSS7.2AI score0.01461EPSS

Exploits1References2

Rockylinux•added 2025/10/03 7:57 p.m.•6 views

apache-commons-beanutils security update

An update is available for apache-commons-beanutils. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Apache Commons BeanUtils library provides utility metho...

8.8CVSS8.1AI score0.01461EPSS

Exploits1

Rockylinux•added 2025/10/03 7:56 p.m.•3 views

mod_auth_openidc security update

An update is available for modauthopenidc. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The modauthopenidc is an OpenID Connect authentication module for...

8.2CVSS7AI score0.0051EPSS

Exploits0

OSV•added 2025/10/03 7:56 p.m.•6 views

RLSA-2025:9466 Moderate: mod_proxy_cluster security update

The modproxycluster module is a plugin for the Apache HTTP Server that provides load-balancer functionality. Security Fixes: modproxycluster: modproxycluster unauthorized MCMP requests CVE-2024-10306 For more details about the security issues, including the impact, a CVSS score, acknowledgments,...

5.4CVSS5.5AI score0.00245EPSS

Exploits0References2

OSV•added 2025/10/03 7:56 p.m.•7 views

RLSA-2025:14178 Important: tomcat9 security update

Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Tomcat is developed in an open and participator...

7.5CVSS7.6AI score0.63258EPSS

Exploits1References8

OSV•added 2025/10/03 7:56 p.m.•9 views

RLSA-2025:15095 Moderate: httpd security update

The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: insufficient escaping of user-supplied data in modssl CVE-2024-47252 httpd: modssl: access control bypass by trusted clients is possible using TLS 1.3 session resumption...

7.5CVSS6.7AI score0.0097EPSS

Exploits1References4

IBM Security Bulletins•added 2025/10/03 4:18 p.m.•7 views

Security Bulletin: Multiple vulnerabilities within WebSphere Application and IBM HTTP Server, affect IBM Tivoli Monitoring.

Summary Multiple vulnerabilities within WebSphere Application and IBM HTTP Server which is included as part of IBM Tivoli Monitoring ITM portal server have been remediated. Vulnerability Details CVEID:CVE-2025-48976 DESCRIPTION: Allocation of resources for multipart headers with insufficient limi...

7.5CVSS6.9AI score0.63258EPSS

Exploits1Affected Software1