Lucene search
K

4 matches found

OSV
OSV
added 2026/04/28 1:42 p.m.3 views

CVE-2026-40968 Spring gRPC SecurityContext leaks across requests on authorization failure

When an authenticated user is denied access to a gRPC method, their authenticated identity remains bound to the gRPC worker thread and can be inherited by a subsequent unauthenticated request on the same thread. This may allow the subsequent user to gain escalated permissions. Affected versions:...

4.2CVSS5.9AI score0.00171EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/04/26 12:0 a.m.4 views

safe-obj 安全漏洞

A security vulnerability exists in safe-obj versions 1.0.0 through 1.0.2 that can be exploited by an attacker to cause a denial of service and possibly remote code execution...

9.8CVSS8.7AI score0.03327EPSS
Exploits1References3
OSV
OSV
added 2019/06/06 9:29 p.m.4 views

CVE-2019-4219

IBM Security Information Queue ISIQ 1.0.0, 1.0.1, and 1.0.2 generates an error message that includes sensitive information that could be used in further attacks against the system. IBM X-Force ID: 159228...

5.3CVSS5.8AI score0.01269EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2018/10/18 6:5 p.m.6 views

org.cloudfoundry:cf-gradle-plugin (>=1.0.1 <=1.0.3), org.cloudfoundry:cf-maven-plugin (>=1.0.1 <=1.0.3) +5 more potentially affected by CVE-2018-1260 via org.springframework.security.oauth:spring-security-oauth2 (>=1.0.0.RELEASE <=1.0.2.RELEASE)

org.springframework.security.oauth:spring-security-oauth2 MAVEN version =1.0.0.RELEASE, =1.0.1, =1.0.1, =1.0.1, =0.9.0, =0.9.0, =0.9.0, =0.9.0, =1.0.22 Source cves: CVE-2018-1260 Source advisory: OSV:GHSA-RRPM-PJ7P-7J9Q...

9.8CVSS7.2AI score0.08352EPSS
Exploits2
Rows per page
Query Builder