Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2026/05/15 1:58 a.m.12 views

SUSE CVE-2026-45205

Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError for YAML input with cycles. This issue affects Apache Commons: from 2.2 before 2.15.0. Users are recommended to upgrade to version 2.15.0,...

7.5CVSS5.8AI score0.00487EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/14 12:16 p.m.10 views

CVE-2026-45205

Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError for YAML input with cycles. This issue affects Apache Commons: from 2.2 before 2.15.0. Users are recommended to upgrade to version 2.15.0,...

5.3CVSS5.8AI score0.00487EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/14 11:22 a.m.56 views

CVE-2026-45205 Apache Commons Configuration: StackOverflowError for YAML input with cycles

Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError for YAML input with cycles. This issue affects Apache Commons: from 2.2 before 2.15.0. Users are recommended to upgrade to version 2.15.0,...

0.00487EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.27 views

Linux Distros Unpatched Vulnerability : CVE-2026-45205

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Uncontrolled Recursion vulnerability in Apache Commons. When processing an untrusted configuration file, Commons Configuration will throw a StackOverflowError f...

5.3CVSS5.4AI score0.00487EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.1 views

Splunk Enterprise 9.2.0 < 9.2.9, 9.3.0 < 9.3.7, 9.4.0 < 9.4.5, 10.0.0 < 10.0.1 (SVD-2025-1103)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2025-1103 advisory. - jackson-core contains core low-level incremental streaming parser and generator abstractions used by Jackson Data Processor. ...

8.7CVSS7.2AI score0.00634EPSS
Exploits0References2
Snyk
Snyk
added 2025/06/25 5:42 p.m.2 views

Stack-based Buffer Overflow

Overview com.fasterxml.jackson.core:jackson-core is a Core Jackson abstractions, basic JSON streaming API implementation Affected versions of this package are vulnerable to Stack-based Buffer Overflow due to the parse process, which accepts an unlimited input file with deeply nested data. An...

8.7CVSS7.2AI score0.00634EPSS
Exploits0References2
Snyk
Snyk
added 2020/04/27 5:16 p.m.3 views

Man-in-the-Middle (MitM)

Overview log4j-jars is a ruby bundled Log4j jars. Affected versions of this package are vulnerable to Man-in-the-Middle MitM. Improper validation of certificate with host mismatch in Apache Log4j SMTP appender. This could allow an SMTPS connection to be intercepted by a man-in-the-middle attack...

4.3CVSS6.7AI score0.08096EPSS
Exploits0References2
Rows per page
Query Builder