Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

27 matches found

Ubuntu
Ubuntuadded 2022/03/07 11:29 a.m.138 views

USN-5313-1: OpenJDK vulnerabilities

It was discovered that OpenJDK incorrectly handled deserialization filters. An attacker could possibly use this issue to insert, delete or obtain sensitive information. CVE-2022-21248 It was discovered that OpenJDK incorrectly read uncompressed TIFF files. An attacker could possibly use this issu...

5.3CVSS6.3AI score0.05612EPSS
Exploits0
Hacker One
Hacker Oneadded 2021/12/07 12:24 p.m.33 views

Aiven Ltd: Apache Flink RCE via GET jar/plan API Endpoint

Summary: Aiven has not restricted access to the GET jars/jarid/plan API. This endpoint can be used to load java class files with the specified arguments that are in the java classpath on the server. This can be abused to gain RCE on the Apache Flink Server. Steps To Reproduce: The video below sho...

0.6AI score
Exploits0
Cvelist
Cvelistadded 2014/02/22 9:0 p.m.22 views

CVE-2014-0731

The administration interface in Cisco Unified Communications Manager Unified CM 10.01 and earlier allows remote attackers to bypass authentication and read Java class files via a direct request, aka Bug ID CSCum46497...

6.8AI score0.00194EPSS
Exploits1References2
Cisco
Ciscoadded 2014/02/19 8:28 p.m.38 views

Cisco Unified Communications Manager Java Class File Availability Vulnerability

A vulnerability in the administration interface of Cisco Unified Communications Manager Cisco Unified CM could allow an unauthenticated, remote attacker to access Java class files. The vulnerability is due to insufficient authentication enforcement. An attacker could exploit this vulnerability by...

5CVSS6.4AI score0.00194EPSS
Exploits1References1
Cvelist
Cvelistadded 2005/06/28 4:0 a.m.20 views

CVE-2002-1855

Macromedia JRun 3.0 through 4.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

7.5AI score0.00763EPSS
Exploits0References5
Cvelist
Cvelistadded 2005/06/28 4:0 a.m.20 views

CVE-2002-1857

jo! jo Webserver 1.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

7.5AI score0.0032EPSS
Exploits0References4
Cvelist
Cvelistadded 2005/06/28 4:0 a.m.19 views

CVE-2002-1860

Pramati Server 3.0, when running on Windows, allows remote attackers to retrieve files in the WEB-INF directory, which contains Java class files and configuration information, via a request to the WEB-INF directory with a trailing dot "WEB-INF."...

7.5AI score0.0032EPSS
Exploits0References4
Rows per page
Query Builder