Lucene search
K

5 matches found

OSV
OSV
added 2022/05/02 3:22 a.m.26 views

GHSA-WJJR-H4WH-W6VV Spring Framework Inefficient Regular Expression Complexity

Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit JDK before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 through 2.5.6 and 3.0.0.M1 through 3.0.0.M2 and dm Server 1.0.0 through 1.0.2, allows remote attackers to...

5CVSS9.2AI score0.02796EPSS
Exploits1References5
Prion
Prion
added 2009/04/27 10:30 p.m.30 views

Design/Logic Flaw

Algorithmic complexity vulnerability in the java.util.regex.Pattern.compile method in Sun Java Development Kit JDK before 1.6, when used with spring.jar in SpringSource Spring Framework 1.1.0 through 2.5.6 and 3.0.0.M1 through 3.0.0.M2 and dm Server 1.0.0 through 1.0.2, allows remote attackers to...

5CVSS7.2AI score0.02796EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2005/11/16 7:37 a.m.78 views

CVE-2004-2540

CVE-2004-2540 describes a deserialization vulnerability in readObject for Java Runtime Environment (JRE) and Software Development Kit (SDK) versions 1.4.0 through 1.4.2_05. Reported impact is a denial of service where crafted serialized data can cause the JVM to become unresponsive. The known aff...

5CVSS6.5AI score0.02492EPSS
Exploits0References4Affected Software2
Cvelist
Cvelist
added 2005/11/16 7:37 a.m.37 views

CVE-2004-2540

readObject in 1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.0 through 1.4.205 allows remote attackers to cause a denial of service JVM unresponsive via crafted serialized data...

6.4AI score0.02492EPSS
Exploits0References4
NVD
NVD
added 2004/12/31 5:0 a.m.32 views

CVE-2004-2540

readObject in 1 Java Runtime Environment JRE and 2 Software Development Kit SDK 1.4.0 through 1.4.205 allows remote attackers to cause a denial of service JVM unresponsive via crafted serialized data...

5CVSS6.4AI score0.02492EPSS
Exploits0References4
Rows per page
Query Builder