Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 10:51 a.m.3 views

CVE-2022-42948

Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI...

9.8CVSS7AI score0.22064EPSS
Exploits0References1
OpenVAS
OpenVASadded 2024/03/08 12:0 a.m.17 views

Fedora: Security Advisory for beansbinding (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.45835EPSS
Exploits3References2
Fedora
Fedoraadded 2024/03/07 10:32 p.m.17 views

[SECURITY] Fedora 40 Update: beansbinding-1.2.1-36.fc40

In essence, Beans Binding JSR 295 is about keeping two properties typically of two objects in sync. An additional emphasis is placed on the ability to bind to Swing components, and easy integration with IDEs such as NetBeans. This project provides the reference implementation...

8.8CVSS6.7AI score0.45835EPSS
Exploits3
OSV
OSVadded 2023/03/24 2:15 p.m.3 views

CVE-2022-42948

Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI...

9.8CVSS5.9AI score0.22064EPSS
Exploits0References4
NVD
NVDadded 2023/03/24 2:15 p.m.12 views

CVE-2022-42948

Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI...

9.8CVSS9.6AI score0.22064EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2023/03/24 12:0 a.m.12 views

CVE-2022-42948

Cobalt Strike 4.7.1 fails to properly escape HTML tags when they are displayed on Swing components. By injecting crafted HTML code, it is possible to remotely execute code in the Cobalt Strike UI...

9.5AI score0.22064EPSS
Exploits0References3
Github Security Blog
Github Security Blogadded 2022/10/20 6:20 p.m.37 views

Jadx-gui vulnerable to swing HTML Denial of Service (DoS) attack

Impact Using jadx-gui to open a special zip file with entry containing HTML sequence like will cause interface to get stuck and throw exceptions like: java.lang.RuntimeException: Can't build aframeset, BranchElementframeset 1,3 :no ROWS or COLS defined. at...

5.5CVSS5.4AI score0.00055EPSS
Exploits1References5Affected Software1
RedHat Linux
RedHat Linuxadded 2013/10/23 4:26 p.m.2 views

OpenJDK: MediaTracker created Component instances with unnecessary privileges (Swing, 7020198)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 6 Update 25 and earlier, 5.0 Update 29 and earlier, and 1.4.231 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availabili...

10CVSS7.4AI score0.10579EPSS
Exploits0References4
Rows per page
Query Builder