Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-3224

Malware in sbrugna...

5CVSS7.8AI score0.16222EPSS
Exploits0References32
Veracode
Veracode
added 2019/01/15 8:51 a.m.34 views

Authentication Bypass

libcurl.so is vulnerable to authentication bypasses. The library re-uses NTLM connections, allowing a malicious user to reuse a connection to bypass authentication...

4CVSS7.3AI score0.05599EPSS
Exploits1References31Affected Software2
Amazon
Amazon
added 2017/06/06 12:0 a.m.53 views

Medium: java-1.7.0-openjdk

Issue Overview: An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges. CVE-2017-3511 It was found that the JAXP...

7.7CVSS7.8AI score0.03311EPSS
Exploits2References1
OSV
OSV
added 2017/05/23 1:37 p.m.11 views

SUSE-SU-2017:1387-1 Security update for java-1_7_1-ibm

This update for java-171-ibm fixes the following issues: Version update to 7.1-4.5 bsc1038505 - CVE-2016-9840: zlib: Out-of-bounds pointer arithmetic in inftrees.c - CVE-2016-9841: zlib: Out-of-bounds pointer arithmetic in inffast.c - CVE-2016-9842: zlib: Undefined left shift of negative number -...

9.8CVSS8.2AI score0.07489EPSS
Exploits2References12
OSV
OSV
added 2017/04/30 11:33 p.m.3 views

MGASA-2017-0120 Updated java-1.8.0-openjdk packages fix security vulnerability

An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges CVE-2017-3511. It was found that the JAXP component of...

7.7CVSS7.7AI score0.03311EPSS
Exploits2References7
Mageia
Mageia
added 2017/04/30 11:33 p.m.51 views

Updated java-1.8.0-openjdk packages fix security vulnerability

An untrusted library search path flaw was found in the JCE component of OpenJDK. A local attacker could possibly use this flaw to cause a Java application using JCE to load an attacker-controlled library and hence escalate their privileges CVE-2017-3511. It was found that the JAXP component of...

7.7CVSS0.5AI score0.03311EPSS
Exploits2References6
OSV
OSV
added 2015/04/24 2:59 p.m.13 views

CVE-2015-3143

cURL and libcurl 7.10.6 through 7.41.0 does not properly re-use NTLM connections, which allows remote attackers to connect as other users via an unauthenticated request, a similar issue to CVE-2014-0015...

5CVSS7.3AI score0.16222EPSS
Exploits0References23
Rows per page
Query Builder