Lucene search
K

172 matches found

redhat
redhat
added 2021/12/02 4:17 p.m.53 views

Moderate: Red Hat Security Advisory: Red Hat Integration Camel-K 1.6 release and security update

A minor version update from 1.4.2 to 1.6 is now available for Red Hat Integration Camel K that includes bug fixes and enhancements. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a...

9.9CVSS7.5AI score0.98124EPSS
Exploits27References35
redhat
redhat
added 2021/11/23 10:34 a.m.79 views

Moderate: Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus GA security update

Red Hat Integration Camel Extensions for Quarkus 2.2 is now GA. The purpose of this text-only errata is to inform you about the security issues fixed since the tech preview 2 release. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability...

9.9CVSS7.6AI score0.98124EPSS
Exploits54References50
redhat
redhat
added 2021/11/23 10:34 a.m.4 views

json-smart: uncaught exception may lead to crash or information disclosure

A flaw was found in json-smart. When an exception is thrown from a function, but is not caught, the program using the library may crash or expose sensitive information. The highest threat from this vulnerability is to data confidentiality and system availability. In OpenShift Container Platform...

5.9CVSS6.9AI score0.02886EPSS
Exploits1References4
redhat
redhat
added 2021/08/19 7:17 a.m.64 views

Moderate: Red Hat Security Advisory: Red Hat AMQ Streams 1.8.0 release and security update

Red Hat AMQ Streams 1.8.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.8CVSS6.7AI score0.82371EPSS
Exploits16References14
redhat
redhat
added 2021/08/11 6:21 p.m.3 views

json-smart: uncaught exception may lead to crash or information disclosure

A flaw was found in json-smart. When an exception is thrown from a function, but is not caught, the program using the library may crash or expose sensitive information. The highest threat from this vulnerability is to data confidentiality and system availability. In OpenShift Container Platform...

5.9CVSS6.9AI score0.02886EPSS
Exploits1References4
ibm
ibm
added 2021/07/30 5:2 a.m.42 views

Security Bulletin: CVE-2021-27568 An issue was discovered in netplex json-smart-v1, an exception is thrown from a function

Summary CVE-2021-27568 An issue was discovered in netplex json-smart-v1, an exception is thrown from a function, may cause programs to crash or expose sensitive info Vulnerability Details CVEID: CVE-2021-27568 DESCRIPTION: Netplex json-smart-v1 and json-smart-v2 are vulnerable to a denial of...

5.9CVSS0.8AI score0.02886EPSS
Exploits1Affected Software1
ibm
ibm
added 2021/07/06 8:20 a.m.37 views

Security Bulletin: Multiple vulnerabilities in Apache JSON Small and Fast Parser (json-smart) and Underscore affect IBM Spectrum Symphony

Summary There are multiple vulnerabilities in Apache JSON Small and Fast Parser json-smart and Underscore used by IBM Spectrum Symphony. IBM Spectrum Symphony has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-27568 DESCRIPTION: Netplex json-smart-v1 and json-smart-v2 are...

7.2CVSS1.1AI score0.04087EPSS
Exploits3Affected Software1
vulnersosv
vulnersosv
added 2021/06/16 6:3 p.m.7 views

ai.catboost:catboost-spark_3.1_2.12 (>=1.0.1 <=1.2.8), ai.chronon:aggregator_2.12 (>=0.0.25 <=def544ccef5f753238ecc4adfc2eaa7d2fc36d53-0.0.91) +9365 more potentially affected by CVE-2021-27568 via net.minidev:json-smart (>=2.1.0 <=2.3)

net.minidev:json-smart MAVEN version =2.1.0, =1.0.1, =0.0.25, =0.0.25, =0.0.62, =0.0.25, =0.0.86, =thread-pool-0.0.24-dev, =0.0.6, =0.0.2, =3.22.0.1, =3.22.0.1, =3.22.0.1, =2.1.42, =3.34.0.3-1-3.1, =3.46.0.6-1-3.1 and more Source cves: CVE-2021-27568 Source advisory: OSV:GHSA-V528-7HRM-FRQP...

5.9CVSS6.7AI score0.02886EPSS
Exploits1
vulnersosv
vulnersosv
added 2021/06/16 6:3 p.m.6 views

ai.tock:bot-test (>=20.9.3 <=21.9.2), ai.tock:bot-test-base (>=20.9.3 <=21.9.2) +1431 more potentially affected by CVE-2021-27568 via net.minidev:json-smart (>=1.0.6.3 <=1.3.1)

net.minidev:json-smart MAVEN version =1.0.6.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =20.9.3, =0.0.13, =1.13.3, =1.15.0 - bio.ferlab:datalake-spark302.12 =0.2.39 and more Source cves: CVE-2021-27568 Source advisory: OSV:GHSA-V528-7HRM-F...

5.9CVSS6.7AI score0.02886EPSS
Exploits1
osv
osv
added 2021/06/16 6:3 p.m.5 views

GHSA-V528-7HRM-FRQP Improper Check for Unusual or Exceptional Conditions in json-smart

An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatException. When it is not caught, it may cause programs using the library to crash or expose sensitive...

5.9CVSS6.9AI score0.02886EPSS
Exploits1References13
github
github
added 2021/06/16 6:3 p.m.116 views

Improper Check for Unusual or Exceptional Conditions in json-smart

An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatException. When it is not caught, it may cause programs using the library to crash or expose sensitive...

5.9CVSS1.2AI score0.02886EPSS
Exploits1References13Affected Software2
veracode
veracode
added 2021/06/02 3:40 a.m.32 views

Denial Of Service (DoS)

json-smart is vulnerable to denial of service DoS. An unhandled ArrayIndexOutOfBoundsException thrown from the indexOf function of JSONParserByteArray allows a remote attacker to crash the program or leak confidential information...

7.5CVSS5.1AI score0.023EPSS
Exploits1References8Affected Software1
osv
osv
added 2021/06/01 8:15 p.m.37 views

CVE-2021-31684

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

7.5CVSS6.5AI score
Exploits0References8
nvd
nvd
added 2021/06/01 8:15 p.m.16 views

CVE-2021-31684

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

7.5CVSS0.023EPSS
Exploits1References8
osv
osv
added 2021/06/01 8:15 p.m.3 views

DEBIAN-CVE-2021-31684

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

7.5CVSS6.4AI score0.023EPSS
Exploits1References1
osv
osv
added 2021/06/01 8:15 p.m.2 views

UBUNTU-CVE-2021-31684

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

7.5CVSS6.7AI score0.023EPSS
Exploits1References7
ubuntucve
ubuntucve
added 2021/06/01 8:15 p.m.37 views

CVE-2021-31684

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

7.5CVSS6.7AI score0.023EPSS
Exploits1References6
prion
prion
added 2021/06/01 8:15 p.m.21 views

Cross site request forgery (csrf)

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

5CVSS7.1AI score0.023EPSS
Exploits1References7Affected Software3
cnnvd
cnnvd
added 2021/06/01 12:0 a.m.4 views

Github json-smart-v1 缓冲区错误漏洞

Github json-smart-v1 is a Github open source application . Provides all non-indexed data in the data store as serialized JSON messages stored in the columns function . A security vulnerability exists in JSON Smart versions 1.3 and 2.4, which originates in the indexOf function of JSONParserByteArr...

7.5CVSS6.5AI score0.023EPSS
Exploits1References13
vulnrichment
vulnrichment
added 2021/06/01 12:0 a.m.29 views

CVE-2021-31684

A vulnerability was discovered in the indexOf function of JSONParserByteArray in JSON Smart versions 1.3 and 2.4 which causes a denial of service DOS via a crafted web request...

6.6AI score0.023EPSS
Exploits1References8
Rows per page
Query Builder