CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Positive Technologies•added 2025/11/18 12:0 a.m.•1 views

PT-2025-47339

Name of the Vulnerable Software and Affected Versions GoSign Desktop versions 2.4.0 and earlier Description GoSign Desktop versions 2.4.0 and earlier utilize an unsigned update manifest for application updates. This manifest includes package URLs and SHA-256 hashes, but lacks digital signing,...

7CVSS7.3AI score0.00091EPSS

Exploits1References6

Veracode•added 2019/01/15 9:25 a.m.•29 views

Sandbox Restrictions Bypass

openjdk is vulnerable to sandbox restrictions bypass. The security component of OpenJDK incorrectly uses unsigned manifest attribute entries. This allows an attacker and an untrusted Java application or applet to bypass the protections provided by Jar signing...

3.4CVSS6.9AI score0.03641EPSS

Exploits0References28Affected Software6

RedHat Linux•added 2018/10/30 5:51 p.m.•2 views

OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181. Difficult to exploit vulnerability allows unauthenticated attacker with network access via...

3.4CVSS7.4AI score0.03641EPSS

Exploits0References4

RedHat Linux•added 2018/10/24 10:6 p.m.•3 views

OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)

3.4CVSS7.4AI score0.03641EPSS

Exploits0References4

RedHat Linux•added 2018/10/24 10:6 p.m.•1 views

OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)

3.4CVSS7.4AI score0.03641EPSS

Exploits0References4

RedHat Linux•added 2018/10/24 9:39 p.m.•2 views

OpenJDK: Incorrect handling of unsigned attributes in signed Jar manifests (Security, 8194534)