Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
•added 2026/03/06 12:0 a.m.•5 views

openSUSE 16 Security Update : assertj-core (openSUSE-SU-2026:20298-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20298-1 advisory. Upgrade to version 3.27.7: - CVE-2026-24400: Fix XXE vulnerability in isXmlEqualTo assertion bsc1257293. Tenable has extracted the preceding description...

9.1CVSS7.2AI score0.00542EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
•added 2026/03/06 12:0 a.m.•4 views

Amazon Linux 2023 : assertj-core, assertj-core-javadoc (ALAS2023-2026-1448)

"It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1448 advisory. AssertJ provides Fluent testing assertions for Java and the Java Virtual Machine JVM. Starting in version 1.4.0 and prior to version 3.27.7, an XML External Entity XXE vulnerability exists in...

9.1CVSS7.2AI score0.00542EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
•added 2026/03/05 12:0 a.m.•3 views

Security update for assertj-core (moderate)

openSUSE security update: security update for assertj-core ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20298-1 Rating: moderate References: bsc1257293 Cross-References: CVE-2026-24400 CVSS scores: CVE-2026-24400 SUSE : 6.1...

6.9CVSS5.9AI score0.00542EPSS
Exploits0References1
OSV
OSV
•added 2026/03/02 4:0 p.m.•3 views

SUSE-SU-2026:20604-1 Security update for assertj-core

This update for assertj-core fixes the following issues: Upgrade to version 3.27.7: - CVE-2026-24400: Fix XXE vulnerability in isXmlEqualTo assertion bsc1257293...

9.1CVSS7.1AI score0.00542EPSS
Exploits0References3
OSV
OSV
•added 2026/03/02 4:0 p.m.•5 views

OPENSUSE-SU-2026:20298-1 Security update for assertj-core

This update for assertj-core fixes the following issues: Upgrade to version 3.27.7: - CVE-2026-24400: Fix XXE vulnerability in isXmlEqualTo assertion bsc1257293...

9.1CVSS5.8AI score0.00542EPSS
Exploits0References2
SUSE Linux
SUSE Linux
•added 2026/01/29 8:4 p.m.•4 views

Security update for assertj-core

This update for assertj-core fixes the following issues: Upgrade to version 3.27.7: CVE-2026-24400: Fix XXE vulnerability in isXmlEqualTo assertion bsc1257293. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.9CVSS5.9AI score0.00542EPSS
Exploits0References4
OSV
OSV
•added 2026/01/29 8:4 p.m.•3 views

SUSE-SU-2026:0344-1 Security update for assertj-core

This update for assertj-core fixes the following issues: Upgrade to version 3.27.7: - CVE-2026-24400: Fix XXE vulnerability in isXmlEqualTo assertion bsc1257293...

9.1CVSS5.8AI score0.00542EPSS
Exploits0References3
OSV
OSV
•added 2026/01/26 11:16 p.m.•5 views

AZL-75431 CVE-2026-24400 affecting package javapackages-bootstrap for versions less than 1.14.0-4

AssertJ provides Fluent testing assertions for Java and the Java Virtual Machine JVM. Starting in version 1.4.0 and prior to version 3.27.7, an XML External Entity XXE vulnerability exists in org.assertj.core.util.xml.XmlStringPrettyFormatter: the toXmlDocumentString method initializes...

9.1CVSS6.5AI score0.00542EPSS
Exploits0References1
OSV
OSV
•added 2026/01/26 11:16 p.m.•2 views

DEBIAN-CVE-2026-24400

AssertJ provides Fluent testing assertions for Java and the Java Virtual Machine JVM. Starting in version 1.4.0 and prior to version 3.27.7, an XML External Entity XXE vulnerability exists in org.assertj.core.util.xml.XmlStringPrettyFormatter: the toXmlDocumentString method initializes...

9.1CVSS7.9AI score0.00542EPSS
Exploits0References1
UbuntuCve
UbuntuCve
•added 2026/01/26 11:16 p.m.•5 views

CVE-2026-24400

AssertJ provides Fluent testing assertions for Java and the Java Virtual Machine JVM. Starting in version 1.4.0 and prior to version 3.27.7, an XML External Entity XXE vulnerability exists in org.assertj.core.util.xml.XmlStringPrettyFormatter: the toXmlDocumentString method initializes...

9.1CVSS6.2AI score0.00542EPSS
Exploits0References5
CVE
CVE
•added 2026/01/26 10:19 p.m.•617 views

CVE-2026-24400

CVE-2026-24400 : An XXE in AssertJ’s XML handling (XmlStringPrettyFormatter) allows exploitation when untrusted XML is processed via isXmlEqualTo(CharSequence) or xmlPrettyFormat(String). From version 1.4.0 up to before 3.27.7, the code initializes DocumentBuilderFactory with default settings, no...

9.1CVSS5.9AI score0.00542EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
•added 2026/01/26 10:19 p.m.•8 views

CVE-2026-24400

AssertJ provides Fluent testing assertions for Java and the Java Virtual Machine JVM. Starting in version 1.4.0 and prior to version 3.27.7, an XML External Entity XXE vulnerability exists in org.assertj.core.util.xml.XmlStringPrettyFormatter: the toXmlDocumentString method initializes...

8.2CVSS5.9AI score0.00542EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder