Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Veracode
Veracodeadded 2024/04/10 9:21 a.m.21 views

NULL Pointer Dereference

ThreeTen Backport is vulnerable to NULL Pointer Dereference. The vulnerability is due to missing null value checks in the org.threeten.bp.LocalDate::compareToChronoLocalDate method, resulting in a NullPointerException if an attacker can pass a null value to the method...

7AI score0.00026EPSS
Exploits0References4Affected Software1
OSV
OSVadded 2024/04/08 11:15 p.m.1 views

UBUNTU-CVE-2024-23081

DISPUTED ThreeTen Backport v1.6.8 was discovered to contain a NullPointerException via the component org.threeten.bp.LocalDate::compareToChronoLocalDate. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability. T...

3.3CVSS5.8AI score0.00026EPSS
Exploits0References5
CNNVD
CNNVDadded 2024/04/08 12:0 a.m.1 views

ThreeTen backport project 安全漏洞

ThreeTen backport project is a simple backport for ThreeTen open source. A security vulnerability exists in ThreeTen backport project version v1.6.8, which stems from a null pointer exception contained in the component org.Threeten.bp.LocalDate compareToChronoLocalDate...

3.3CVSS5.3AI score0.00026EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2024/04/08 12:0 a.m.3 views

PT-2024-19660 · Unknown · Threeten Backport

Name of the Vulnerable Software and Affected Versions: ThreeTen Backport version 1.6.8 Description: A NullPointerException was discovered in the component org.threeten.bp.LocalDate::compareToChronoLocalDate. However, the existence of this issue is disputed by multiple third parties due to...

3.3CVSS4.4AI score0.00026EPSS
Exploits0References12
CVE
CVEadded 2024/04/08 12:0 a.m.108 views

CVE-2024-23081

CVE-2024-23081 concerns ThreeTen Backport v1.6.8 with a NullPointerException in org.threeten.bp.LocalDate::compareTo(ChronoLocalDate). IBM/Red Hat/Ubuntu notices confirm this vulnerability pattern across OSS used in various products; IBM’s Security Bulletin for Log Analysis (v1.3.7.2/1.3.8 path) ...

3.3CVSS7.2AI score0.00026EPSS
Exploits0References3Affected Software1
SUSE CVE
SUSE CVEadded 2023/02/15 6:17 a.m.3 views

SUSE CVE-2005-2265

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service access violation and crash, and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string...

5CVSS7.3AI score0.82043EPSS
Exploits3References5
Exploit DB
Exploit DBadded 2005/12/12 12:0 a.m.27 views

Mozilla Firefox 1.04 - 'compareTo()' Remote Code Execution

Mozilla FirefoxcompareTo Remote Code Execution Exploit function BodyOnLoad location.href="javascript:void new InstallVersion;"; CrashAndBurn; ; // The "Heap Spraying" is based on SkyLined InternetExploiter2 methodology function CrashAndBurn // Spray up to this address var...

7.4AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2005/07/21 10:14 a.m.1 views

security flaw

Firefox before 1.0.5, Mozilla before 1.7.9, and Netscape 8.0.2 and 7.2 allows remote attackers to cause a denial of service access violation and crash, and possibly execute arbitrary code, by calling InstallVersion.compareTo with an object instead of a string...

5CVSS6.1AI score0.82043EPSS
Exploits3References4
Rows per page
Query Builder