Denial Of Service (DoS)

libhdf5.so is vulnerable to Denial Of Service DoS. The vulnerability exists due to the stack-based buffer overflow in H5Eint.c, which allows an attacker to cause an application crash by providing a maliciously crafted input...

Improper Input Validation

org.apache.sling.commons.json is vulnerable to Improper Input Validation. The vulnerability exists because the library does not properly validate user inputs, which allows an attacker to trigger unexpected errors by supplying maliciously crafted input...

CVE-2021-45836

An authenticated attacker can execute arbitrary commands as root in Terramaster F4-210, F2-210 TOS 4.2.X 4.2.15-2107141517 by injecting a maliciously crafted input in the request through /tos/index.php?app/handapp...

jackson-databind is vulnerable to a deserialization flaw

A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper...

CVE-2017-7525

A deserialization flaw was discovered in the jackson-databind, versions before 2.6.7.1, 2.7.9.1 and 2.8.9, which could allow an unauthenticated user to perform code execution by sending the maliciously crafted input to the readValue method of the ObjectMapper...

[SECURITY] [DSA 3526-1] libmatroska security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3526-1 [email protected] https://www.debian.org/security/ Sebastien Delafond March 23, 2016 https://www.debian.org/security/faq -...