Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2024/03/08 12:0 a.m.118 views

IBM Engineering Requirements Management DOORS 9.7.2.x < 9.7.2.8 Multiple Vulnerabilities (7124058)

The version of IBM Engineering Requirements Management DOORS formerly IBM Rational DOORS installed on the remote host is 9.7.2.x prior to 9.7.2.8. It is, therefore, affected by multiple vulnerabilities as referenced in the 7124058 advisory. - Apache Shiro before 1.9.1, A RegexRequestMatcher can b...

10CVSS7.2AI score0.99999EPSS
Exploits139References72
OSV
OSV
added 2022/09/25 12:0 a.m.3 views

GHSA-8QV5-68G4-248J Scala subject to file deletion, code execution due to Java deserialization chain with LazyList object deserialization

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with LazyList object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make netwo...

9.8CVSS6.9AI score0.08343EPSS
Exploits1References9
NVD
NVD
added 2022/09/23 6:15 p.m.26 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8CVSS0.08343EPSS
Exploits1References6
Prion
Prion
added 2022/09/23 6:15 p.m.37 views

Deserialization of untrusted data

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

7.5CVSS9.5AI score0.08343EPSS
Exploits1References6Affected Software3
UbuntuCve
UbuntuCve
added 2022/09/23 6:15 p.m.54 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8CVSS7AI score0.08343EPSS
Exploits1References3
Cvelist
Cvelist
added 2022/09/23 12:0 a.m.23 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

9.8AI score0.08343EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2022/09/23 12:0 a.m.12 views

CVE-2022-36944

Scala 2.13.x before 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows attackers to erase contents of arbitrary files, make network...

7.4AI score0.08343EPSS
Exploits1References6
Rows per page
Query Builder