Lucene search
K

9337 matches found

Veracode
Veracode
added 2020/04/22 3:58 a.m.14 views

Regular Expression Denial Of Service (ReDoS)

xlsx is vulnerable to regular expression denial of service. An attacker is able to cause the application to consume excessive resources which can potentially lead to an application crash using a malicious string...

4.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.38 views

Scientific Linux Security Update : java-1.7.0-openjdk on SL6.x i386/x86_64 (20200421)

Security Fixes : - OpenJDK: Incorrect bounds checks in NIO Buffers Libraries, 8234841 CVE-2020-2803 - OpenJDK: Incorrect type checks in MethodType.readObject Libraries, 8235274 CVE-2020-2805 - OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory Security, 8231415...

8.3CVSS6.5AI score0.0623EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.35 views

RHEL 8 : java-11-openjdk (RHSA-2020:1517)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1517 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.247 views

Scientific Linux Security Update : java-1.8.0-openjdk on SL6.x i386/x86_64 (20200421)

Security Fixes : - OpenJDK: Incorrect bounds checks in NIO Buffers Libraries, 8234841 CVE-2020-2803 - OpenJDK: Incorrect type checks in MethodType.readObject Libraries, 8235274 CVE-2020-2805 - OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory Security, 8231415...

8.3CVSS6.5AI score0.0623EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.50 views

Scientific Linux Security Update : java-1.7.0-openjdk on SL7.x x86_64 (20200421)

Security Fixes : - OpenJDK: Incorrect bounds checks in NIO Buffers Libraries, 8234841 CVE-2020-2803 - OpenJDK: Incorrect type checks in MethodType.readObject Libraries, 8235274 CVE-2020-2805 - OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory Security, 8231415...

8.3CVSS6.5AI score0.0623EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.53 views

Scientific Linux Security Update : java-1.8.0-openjdk on SL7.x x86_64 (20200421)

Security Fixes : - OpenJDK: Incorrect bounds checks in NIO Buffers Libraries, 8234841 CVE-2020-2803 - OpenJDK: Incorrect type checks in MethodType.readObject Libraries, 8235274 CVE-2020-2805 - OpenJDK: Unexpected exceptions raised by DOMKeyInfoFactory and DOMXMLSignatureFactory Security, 8231415...

8.3CVSS6.5AI score0.0623EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2020/04/21 4:34 p.m.5 views

OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Concurrency. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multipl...

5.3CVSS7.3AI score0.04948EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/21 4:34 p.m.4 views

OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS7.3AI score0.04128EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/21 4:34 p.m.159 views

Important: Red Hat Security Advisory: java-11-openjdk security update

An update for java-11-openjdk is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References14
RedHat Linux
RedHat Linux
added 2020/04/21 11:39 a.m.5 views

OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS7.3AI score0.04128EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/21 11:26 a.m.4 views

OpenJDK: Misplaced regular expression syntax error check in RegExpScanner (Scripting, 8223898)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Scripting. Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple...

4.3CVSS7.3AI score0.04128EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/21 11:26 a.m.8 views

OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Concurrency. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multipl...

5.3CVSS7.3AI score0.04948EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/21 10:29 a.m.117 views

Important: Red Hat Security Advisory: java-1.8.0-openjdk security update

An update for java-1.8.0-openjdk is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2020/04/21 10:28 a.m.129 views

Important: Red Hat Security Advisory: java-1.7.0-openjdk security update

An update for java-1.7.0-openjdk is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.3CVSS6.7AI score0.0623EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2020/04/21 10:28 a.m.4 views

OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Concurrency. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multipl...

5.3CVSS7.3AI score0.04948EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2020/04/21 9:40 a.m.6 views

OpenJDK: Regular expression DoS in Scanner (Concurrency, 8236201)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Concurrency. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multipl...

5.3CVSS7.3AI score0.04948EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.43 views

RHEL 8 : java-11-openjdk (RHSA-2020:1514)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1514 advisory. The java-11-openjdk packages provide the OpenJDK 11 Java Runtime Environment and the OpenJDK 11 Java Software Development Kit. Security Fixe...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References28
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.39 views

RHEL 6 : java-1.8.0-openjdk (RHSA-2020:1506)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1506 advisory. The java-1.8.0-openjdk packages provide the OpenJDK 8 Java Runtime Environment and the OpenJDK 8 Java Software Development Kit. Security...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References22
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.59 views

RHEL 6 : java-1.7.0-openjdk (RHSA-2020:1508)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:1508 advisory. The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security...

8.3CVSS6.8AI score0.0623EPSS
Exploits0References18
OSV
OSV
added 2020/04/20 2:2 p.m.13 views

MGASA-2020-0176 Updated python-bleach packages fix security vulnerability

In Mozilla Bleach before 3.12, a mutation XSS in bleach.clean when RCDATA and either svg or math tags are whitelisted and the keyword argument strip=False. CVE-2020-6816 Regular expression denial of service. CVE-2020-6817...

7.5CVSS6.2AI score0.01301EPSS
Exploits2References5
Rows per page
Query Builder