Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.3 views

SUSE CVE-2009-1306

The jar: URI implementation in Mozilla Firefox before 3.0.9, Thunderbird, and SeaMonkey does not follow the Content-Disposition header of the inner URI, which allows remote attackers to conduct cross-site scripting XSS attacks and possibly other attacks via an uploaded .jar file with a...

4.3CVSS8AI score0.01329EPSS
Exploits0References5
OSV
OSV
added 2022/01/18 10:47 a.m.7 views

SUSE-SU-2022:14875-1 Security update for java-1_7_1-ibm

This update for java-171-ibm fixes the following issues: - Update to Java 7.1 Service Refresh 5 Fix Pack 0 - CVE-2021-41035: before version 0.29.0, the openj9 JVM does not throw IllegalAccessError for MethodHandles that invoke inaccessible interface methods. bsc1194198, bsc1192052 - CVE-2021-3558...

9.8CVSS5.9AI score0.14839EPSS
Exploits0References25
OSV
OSV
added 2021/08/05 8:19 a.m.8 views

SUSE-SU-2021:2613-1 Security update for java-11-openjdk

This update for java-11-openjdk fixes the following issues: - Update to jdk-11.0.12+7 - CVE-2021-2369: Fixed JAR file handling problem containing multiple MANIFEST.MF files. bsc1188565 - CVE-2021-2388: Fixed a flaw inside the Hotspot component performed range check elimination. bsc1188566 -...

7.5CVSS5.9AI score0.04238EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2020/01/02 2:3 p.m.5 views

OpenJDK: Incorrect handling of nested jar: URLs in Jar URL handler (Networking, 8223892)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

4.3CVSS7.4AI score0.03284EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/12/09 1:28 p.m.8 views

OpenJDK: Incorrect handling of nested jar: URLs in Jar URL handler (Networking, 8223892)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

4.3CVSS7.4AI score0.03284EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/12/05 3:22 p.m.4 views

OpenJDK: Incorrect handling of nested jar: URLs in Jar URL handler (Networking, 8223892)

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

4.3CVSS7.4AI score0.03284EPSS
Exploits0References4
Rows per page
Query Builder