Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2018/10/18 8:14 a.m.71 views

Moderate: Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update

An update is now available for Red Hat OpenShift Application Runtimes. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.02652EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2018/10/17 4:20 p.m.19 views

be.fluid-it.reactive-microservice.bundle:bootique-vertx (=0.1-8), be.fluid-it.reactive-microservice.bundle:reactive-microservice-bundle-core (=0.1-8) +762 more potentially affected by CVE-2018-12544 via io.vertx:vertx-core (>=3.5.0 <=3.5.3.CR1)

io.vertx:vertx-core MAVEN version =3.5.0, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.2, =0.4.5 and more Source cves: CVE-2018-12544 Source advisory: OSV:GHSA-QH3M-QW6V-QVHG...

9.8CVSS7.2AI score0.02172EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2018/10/11 1:19 p.m.23 views

CVE-2018-12544

In version from 3.5.Beta1 to 3.5.3 of Eclipse Vert.x, the OpenAPI XML type validator creates XML parsers without taking appropriate defense against XML attacks. This mechanism is exclusively when the developer uses the Eclipse Vert.x OpenAPI XML type validator to validate a provided schema...

9.8CVSS2.9AI score0.02172EPSS
Exploits0References2
OSV
OSV
added 2018/10/10 8:29 p.m.11 views

CVE-2018-12544

In version from 3.5.Beta1 to 3.5.3 of Eclipse Vert.x, the OpenAPI XML type validator creates XML parsers without taking appropriate defense against XML attacks. This mechanism is exclusively when the developer uses the Eclipse Vert.x OpenAPI XML type validator to validate a provided schema...

9.8CVSS6.7AI score
Exploits0References4
CVE
CVE
added 2018/10/10 8:0 p.m.88 views

CVE-2018-12544

CVE-2018-12544 affects Eclipse Vert.x OpenAPI XML type validator (versions 3.5.Beta1–3.5.3). The vulnerability stems from creating XML parsers without proper defenses against XML attacks, enabling XML External Entity (XXE) exploitation. Public references (Veracode, Red Hat advisory RHSA-2018:2946...

9.8CVSS9.3AI score0.02172EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder