Lucene search
K

34 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-1436

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An infinite recursion is triggered in Jettison when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. This leads...

7.5CVSS6.6AI score0.01009EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/21 2:34 p.m.17 views

Security Bulletin: IBM Asset Data Dictionary Component uses grpc-protobuf-1.50.2.jar and jettison-1.5.2.jar which is vulnerable to CVE-2023-32731 and CVE-2023-1436

Summary IBM Asset Data Dictionary Component uses grpc-protobuf-1.50.2.jar and jettison-1.5.2.jar which is vulnerable to CVE-2023-32731 and CVE-2023-1436. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2023-32731 DESCRIPTION: gRPC...

7.5CVSS7AI score0.01009EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/25 7:5 p.m.24 views

Security Bulletin: Vulnerability in Jettison affects IBM watsonx.data

Summary Jettison is vulnerable to a denial of service, caused by an infinite recursion when constructing a JSONArray from a Collection that contains a self-reference in one of its elements. A remote attacker could exploit this vulnerability to cause a denial of service. This can affect...

7.5CVSS8.3AI score0.01009EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/07/16 12:0 a.m.28 views

RHEL 9 : log4j (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - apache-commons-net: FTP client trusts the host from PASV response by default CVE-2021-37533 - Those using...

7.5CVSS7.3AI score0.01858EPSS
Exploits4References6
Circl
Circl
added 2024/02/08 9:11 a.m.8 views

CVE-2023-1436

creationtimestamp| type| source ---|---|--- 2024-02-08 09:11:54+00:00| seen| https://t.me/ctinow/181234 2024-02-08 09:41:24+00:00| seen| https://t.me/ctinow/181244 2024-02-08 09:41:25+00:00| seen| https://t.me/ctinow/181245 2024-02-08 09:41:26+00:00| seen| https://t.me/ctinow/181246 2024-02-08...

7.5CVSS6.1AI score0.01009EPSS
Exploits1References14
OSV
OSV
added 2023/12/22 11:6 a.m.3 views

OESA-2023-1968 jettison security update

Jettison is a collection of Java APIs like STaX and DOM which read and write JSON. This allows nearly transparent enablement of JSON based web services in services frameworks like CXF or XML serialization frameworks like XStream. Security Fixes: An infinite recursion is triggered in Jettison when...

7.5CVSS8.1AI score0.01009EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/19 7:21 p.m.33 views

Security Bulletin: IBM Sterling B2B Integrator EBICs client affected by multiple issues due to Jettison

Summary IBM Sterling B2B Integrator uses Jettison in its EBICs client. Vulnerability Details CVEID:CVE-2023-1436 DESCRIPTION: Jettison is vulnerable to a denial of service, caused by an infinite recursion when constructing a JSONArray from a Collection that contains a self-reference in one of its...

7.5CVSS7.1AI score0.01395EPSS
Exploits3Affected Software1
RedHat Linux
RedHat Linux
added 2023/12/06 1:16 p.m.26 views

Moderate: Red Hat Security Advisory: Migration Toolkit for Runtimes bug fix, enhancement and security update

Migration Toolkit for Runtimes 1.2.3 release Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

7.5CVSS6.6AI score0.01009EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.37 views

Oracle Identity Manager (October 2023 CPU)

The version of Oracle Identity Manager installed on the remote host is missing a security patch and is, therefore affected by multiple vulnerabilities as referenced in the October 2023 Critical Patch UpdateCPU advisory. - Vulnerability in the Oracle Identity Manager product of Oracle Fusion...

7.5CVSS6.4AI score0.28839EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/08/31 1:29 p.m.44 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.5 security update

A security update is now available for Red Hat Single Sign-On 7.6 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2023/08/31 1:27 p.m.74 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.5 security update on RHEL 9

New Red Hat Single Sign-On 7.6.5 packages are now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2023/08/31 1:25 p.m.32 views

Important: Red Hat Security Advisory: Red Hat Single Sign-On 7.6.5 for OpenShift image enhancement and security update

A new image is available for Red Hat Single Sign-On 7.6.5, running on OpenShift Container Platform 3.10 and 3.11, and 4.3. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.36 views

RHEL 7 : Red Hat Single Sign-On 7.6.5 security update on RHEL 7 (Important) (RHSA-2023:4918)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4918 advisory. Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2023/08/31 12:0 a.m.33 views

RHEL 9 : Red Hat Single Sign-On 7.6.5 security update on RHEL 9 (Important) (RHSA-2023:4920)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4920 advisory. Red Hat Single Sign-On 7.6 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References8
RedHat Linux
RedHat Linux
added 2023/08/07 3:19 p.m.47 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References27
RedHat Linux
RedHat Linux
added 2023/08/07 3:18 p.m.48 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References27
RedHat Linux
RedHat Linux
added 2023/08/07 3:18 p.m.67 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References27
RedHat Linux
RedHat Linux
added 2023/08/07 3:2 p.m.61 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.12 security update

An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References26
Tenable Nessus
Tenable Nessus
added 2023/08/07 12:0 a.m.26 views

RHEL 9 : Red Hat JBoss Enterprise Application Platform (RHSA-2023:4507)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:4507 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

7.5CVSS6.6AI score0.02044EPSS
Exploits2References31
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.292 views

Oracle WebLogic Server (July 2023 CPU)

The version of Oracle WebLogic Server installed on the remote host is missing a security patch from the July 2023 Critical Patch Update CPU. It is, therefore, affected by multiple vulnerabilities, including: - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware...

9.8CVSS6.3AI score0.02513EPSS
Exploits4References12
Rows per page
Query Builder