CVE-2026-8243

A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack may be performed from remote. The vendor was...

CVE-2026-8243 Industrial Application Software IAS Canias ERP JNLP Deployment Endpoint hard-coded key

A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack may be performed from remote. The vendor was...

CVE-2026-8243

The CVE-2026-8243 entry concerns Industrial Application Software IAS Canias ERP 8.03, affecting the JNLP Deployment Endpoint. The description indicates that manipulating this endpoint can lead to use of a hard-coded cryptographic key, with the attack potentially executable from a remote location....

CVE-2026-0500

Due to the usage of vulnerable third party component in SAP Wily Introscope Enterprise Manager WorkStation, an unauthenticated attacker could create a malicious JNLP Java Network Launch Protocol file accessible by a public facing URL. When a victim clicks on the URL the accessed Wily Introscope...

CVE-2026-0500

The CVE-2026-0500 entry concerns SAP Wily Introscope Enterprise Manager (WorkStation). A vulnerable third‑party component enables an unauthenticated attacker to craft a malicious Java Network Launch Protocol (JNLP) file served at a public URL; when a victim opens it, the Wily Introscope Server co...

SAP Wily Introscope Enterprise Manager 代码注入漏洞

SAP Wily Introscope Enterprise Manager is an application performance management component from SAP, Germany. A code injection vulnerability exists in SAP Wily Introscope Enterprise Manager, which stems from the use of a vulnerable third-party component, and could allow an unauthenticated attacker...

PT-2026-2336

Name of the Vulnerable Software and Affected Versions SAP Wily Introscope Enterprise Manager WorkStation affected versions not specified Description An unauthenticated attacker can create a malicious Java Network Launch Protocol JNLP file accessible via a public URL. When a victim clicks this URL...

EUVD-2010-2787

Malware in sbrugna...

EUVD-2020-5893

Malware in sbrugna...

EUVD-2009-2710

Malware in sbrugna...

EUVD-2013-0978

Malware in sbrugna...

EUVD-2009-1667

Malware in sbrugna...

EUVD-2005-0419

Malware in sbrugna...

EUVD-2019-2210

Malware in sbrugna...

EUVD-2009-3857

Malware in sbrugna...

EUVD-2007-2430

Malware in sbrugna...

EUVD-2009-3837

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-10182

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was found that icedtea-web though 1.7.2 and 1.8.2 did not properly sanitize paths from elements in JNLP files. An attacker could trick a victim into running ...

[SECURITY] Fedora 40 Update: icedtea-web-1.8.8-5.fc40

The IcedTea-Web project provides a free software implementation of Java Web Start, originally based on the NetX, project. IcedTea's NetX currently supports verification of signed jars, trusted certificate storing, system certificate store checking, and provides the services specified by the jnlp...

SUSE CVE-2005-0836

Argument injection vulnerability in Java Web Start for J2SE 1.4.2 up to 1.4.206 allows untrusted applications to gain privileges via the value parameter of a property tag in a JNLP file...