Lucene search
K

448 matches found

CNVD
CNVD
added 2021/12/19 12:0 a.m.35 views

Quality Open Software logback remote code execution vulnerability

Quality Open Software logback is a logging framework for Java applications from Quality Open Software of Switzerland. quality Open Software logback in versions 1.2.7 and earlier is vulnerable to remote code execution, which stems from a failure to effectively filter user input. The vulnerability...

8.5CVSS3.4AI score0.04439EPSS
Exploits1References1
Qualys Blog
Qualys Blog
added 2021/12/17 6:14 p.m.22 views

Out-of-Band Detection for Log4Shell

Log4j is the de facto logging library for all Java applications, as Log4j is used in most Java-based applications. The challenge is that Java applications that use the log4j-vulnerable library can be coded, packaged, and deployed using different methods – this introduces a challenge for detection...

6.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2021/12/15 2:59 a.m.160 views

Low: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

10CVSS7.4AI score0.99999EPSS
Exploits347References7
Qualys Blog
Qualys Blog
added 2021/12/14 11:55 p.m.277 views

Log4Shell Exploit Detection and Response with Qualys Multi-Vector EDR

Author: Hiep Dang & Malware Threat Research Team On Dec 9, 2021, the world first learned about the Log4Shell vulnerability aka Log4J CVE-2021-44228 found in the Log4j2 library commonly used by Java applications. Since then, everyone in the cybersecurity industry has been scrambling to understand...

9.3CVSS10AI score0.99999EPSS
Exploits347
Github Security Blog
Github Security Blog
added 2021/12/14 9:7 p.m.196 views

Apache Log4j Remote Code Execution

Impact Opencast uses an Apache Log4j2 version which, combined with older JDK versions, can be used for remote code execution attacks which have been found to be actively exploited. Apache Log4j2 =2.14.1 JNDI features is not sufficiently protected. An attacker who can control log messages or log...

10CVSS4.4AI score0.99999EPSS
Exploits347References6Affected Software1
ThreatPost
ThreatPost
added 2021/12/14 5:54 p.m.91 views

What the Log4Shell Bug Means for SMBs: Experts Weigh In

News of the Log4Shell vulnerability is everywhere, with security experts variously calling the Apache log4j logging library bug a recipe for an “internet meltdown,” as well as the “worst cybersecurity bug of the year.” Names like “Apple,” “Twitter” and “Cloudflare” are being bandied about as bein...

10CVSS10AI score0.99999EPSS
Exploits347References25
RedHat Linux
RedHat Linux
added 2021/11/15 5:5 p.m.167 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.2 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.8CVSS6.7AI score0.10448EPSS
Exploits0References29
CNNVD
CNNVD
added 2021/11/10 12:0 a.m.6 views

Intel VTune Profiler 安全漏洞

Intel VTune Profiler is a performance testing tool for optimized software from Intel USA. The software performs performance testing of IoT embedded applications, media software, Java applications, and high-performance computing applications. A security vulnerability exists in Intel VTune Profiler...

7.8CVSS7.4AI score0.00208EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/10/01 12:0 a.m.58 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.1 security update on RHEL 7 (Important) (RHSA-2021:3656)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3656 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9CVSS7.6AI score0.22709EPSS
Exploits3References51
Tenable Nessus
Tenable Nessus
added 2021/10/01 12:0 a.m.95 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.1 security update on RHEL 8 (Important) (RHSA-2021:3658)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:3658 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9CVSS7.6AI score0.22709EPSS
Exploits3References51
RedHat Linux
RedHat Linux
added 2021/09/23 4:18 p.m.50 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.1 security update on RHEL 7

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9CVSS7.2AI score0.22709EPSS
Exploits3References40
Tenable Nessus
Tenable Nessus
added 2021/08/18 12:0 a.m.49 views

RHEL 7 / 8 : Red Hat JBoss Enterprise Application Platform 7.4 (RHSA-2021:3219)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:3219 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This asynchronous...

7.5CVSS6.9AI score0.01375EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2021/07/13 1:11 p.m.86 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.8 on RHEL 8 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.9CVSS6.6AI score0.04935EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2021/07/13 1:2 p.m.64 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.8 on RHEL 7 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

5.9CVSS6.6AI score0.04935EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2021/05/21 12:0 a.m.58 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 7 (Moderate) (RHSA-2021:2047)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2047 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

9CVSS7.6AI score0.22709EPSS
Exploits1References33
RedHat Linux
RedHat Linux
added 2021/05/19 3:31 p.m.75 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 8

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9CVSS7.2AI score0.22709EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2021/05/19 3:28 p.m.100 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update on RHEL 6

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

9CVSS7.2AI score0.22709EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2021/05/19 3:21 p.m.304 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.7 security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

9CVSS7.2AI score0.22709EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2021/04/14 5:57 p.m.99 views

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 12 security update

An update is now available for Red Hat JBoss Web Server 3.1, for RHEL 7 and Windows. Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.4CVSS7.1AI score0.62906EPSS
Exploits4References3
Tenable Nessus
Tenable Nessus
added 2021/03/17 12:0 a.m.56 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.3.6 (RHSA-2021:0874)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:0874 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

8.1CVSS6.6AI score0.0714EPSS
Exploits2References34
Rows per page
Query Builder