Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2022/02/21 6:22 p.m.66 views

Moderate: Red Hat Security Advisory: Red Hat build of Quarkus 2.2.5 release and security update

An update is now available for Red Hat build of Quarkus. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability. For more information...

10CVSS6.9AI score0.07318EPSS
Exploits3References12
vulnersOsv
vulnersOsv
added 2021/11/15 11:27 p.m.4 views

ca.ibodrov.concord:testcontainers-concord (>=0.0.2 <=0.0.20), ca.ibodrov.concord:testcontainers-concord-core (>=0.0.21 <=0.0.41) +359 more potentially affected by CVE-2021-41269 via com.cronutils:cron-utils (>=2.0.0 <=9.1.5)

com.cronutils:cron-utils MAVEN version =2.0.0, =0.0.2, =0.0.21, =0.0.1, =1.0.30 - com.baomidou:jobs-spring-boot-starter =1.0.3 - com.cronutils:cron-utils-spring =1.0.1 - com.elastisys:autoscaler.core =5.2.2 - com.elastisys:autoscaler.distro.standard =5.2.2 -...

10CVSS6.7AI score0.04047EPSS
Exploits1
OSV
OSV
added 2021/11/15 9:15 p.m.20 views

CVE-2021-41269

cron-utils is a Java library to define, parse, validate, migrate crons as well as get human readable descriptions for them. In affected versions A template Injection was identified in cron-utils enabling attackers to inject arbitrary Java EL expressions, leading to unauthenticated Remote Code...

9.8CVSS7.8AI score
Exploits0References4
CVE
CVE
added 2021/11/15 8:30 p.m.219 views

CVE-2021-41269

CVE-2021-41269 affects cron-utils, a Java library for parsing and migrating cron expressions. The issue is a template injection flaw in cron-utils that enables an attacker to inject arbitrary Java EL expressions, leading to unauthenticated remote code execution. The vulnerability affects versions...

10CVSS9.8AI score0.04047EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2021/11/15 8:30 p.m.43 views

CVE-2021-41269 Unauthenticated remote code injection in cron-utils

cron-utils is a Java library to define, parse, validate, migrate crons as well as get human readable descriptions for them. In affected versions A template Injection was identified in cron-utils enabling attackers to inject arbitrary Java EL expressions, leading to unauthenticated Remote Code...

10CVSS10AI score0.04047EPSS
Exploits1References4
Rows per page
Query Builder