Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded 2026/03/27 2:25 p.m.3 views

CVE-2021-27335

KollectApps before 4.8.16c is affected by insecure Java deserialization, leading to Remote Code Execution via a ysoserial.payloads.CommonsCollections parameter...

9.8CVSS7.6AI score0.01988EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2019-8149

Malware in sbrugna...

9.8CVSS9.2AI score0.00048EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletinsadded 2025/06/23 11:51 a.m.8 views

Security Bulletin: Due to use of mina-core IBM My webMethods Server is vulnerable to Insecure Java Deserilization

Summary IBM My webMethods Server includes mina-core as part of its OSGi platform, which is affected by a known vulnerability CVE-2024-52046. This security bulletin provides guidance on addressing the vulnerability. Vulnerability Details CVEID:CVE-2024-52046 DESCRIPTION: The...

10CVSS9.3AI score0.55384EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessusadded 2025/02/11 12:0 a.m.9 views

Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities (cisco-sa-ise-multivuls-FTW9AOXF)

According to its self-reported version, Cisco Identity Services Engine Insecure Java Deserialization and Authorization Bypass Vulnerabilities is affected by multiple vulnerabilities. - A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute arbitrary comman...

9.9CVSS9.2AI score0.09507EPSS
Exploits5References5
The Hacker News
The Hacker Newsadded 2025/02/06 7:40 a.m.42 views

Cisco Patches Critical ISE Vulnerabilities Enabling Root CmdExec and PrivEsc

Cisco has released updates to address two critical security flaws Identity Services Engine ISE that could allow remote attackers to execute arbitrary commands and elevate privileges on susceptible devices. The vulnerabilities are listed below - CVE-2025-20124 CVSS score: 9.9 - An insecure Java...

9.9CVSS8.7AI score0.09507EPSS
Exploits5
Cvelist
Cvelistadded 2022/01/26 11:10 a.m.18 views

CVE-2021-41766 Insecure Java Deserialization in Apache Karaf

Apache Karaf allows monitoring of applications and the Java runtime by using the Java Management Extensions JMX. JMX is a Java RMI based technology that relies on Java serialized objects for client server communication. Whereas the default JMX implementation is hardened against unauthenticated...

8.6AI score0.005EPSS
Exploits0References1
NVD
NVDadded 2021/02/18 6:15 p.m.12 views

CVE-2021-27335

KollectApps before 4.8.16c is affected by insecure Java deserialization, leading to Remote Code Execution via a ysoserial.payloads.CommonsCollections parameter...

9.8CVSS0.01988EPSS
Exploits1References1
Cvelist
Cvelistadded 2021/02/18 5:51 p.m.11 views

CVE-2021-27335

KollectApps before 4.8.16c is affected by insecure Java deserialization, leading to Remote Code Execution via a ysoserial.payloads.CommonsCollections parameter...

9.8AI score0.01988EPSS
Exploits1References1
CVE
CVEadded 2019/10/31 2:54 p.m.60 views

CVE-2019-18364

JetBrains TeamCity before version 2019.1.4 suffers insecure Java deserialization that could potentially allow remote code execution. This was acknowledged in the JetBrains Q3 2019 security bulletin, with the issue resolved in TeamCity 2019.1.4. Remediation: upgrade TeamCity to 2019.1.4 or later t...

9.8CVSS9.7AI score0.00048EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder