Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-12553

Malware in sbrugna...

9.8CVSS7.7AI score0.04268EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2022/01/26 3:52 p.m.8 views

xstream: Arbitrary code execution via unsafe deserialization of com.sun.xml.internal.ws.client.sei.*

A flaw was found in xstream, a simple library used to serialize objects to XML and back again. This flaw allows a remote attacker to load and execute arbitrary code from a remote host by manipulating the processed input stream. The highest threat from this vulnerability is to confidentiality,...

8.5CVSS7.7AI score0.16118EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2021/12/02 4:17 p.m.4 views

xstream: Server-side request forgery (SSRF) via unsafe deserialization of com.sun.xml.internal.ws.client.sei.*

A flaw was found in xstream, a simple library used to serialize objects to XML and back again. This flaw allows a remote attacker to request data from internal resources that are not publicly available by manipulating the processed input stream with Java runtime versions 14 to 8. The highest thre...

8.5CVSS7.4AI score0.03437EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2020/02/11 9:14 a.m.30 views

CVE-2020-1693

A flaw was found in Spacewalk where it was vulnerable to XML internal entity attacks via the /rpc/api endpoint. An unauthenticated remote attacker could use this flaw to retrieve the content of certain files and trigger a denial of service, or in certain circumstances, execute arbitrary code on t...

9.8CVSS5.5AI score0.04268EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2013/03/11 6:48 p.m.7 views

OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU...

5CVSS7.4AI score0.05205EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/04 11:51 p.m.9 views

OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU...

5CVSS7.4AI score0.05205EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/02/04 11:50 p.m.8 views

OpenJDK: com.sun.xml.internal.* not restricted packages (JAX-WS, 7201068)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 through Update 11 and 6 through Update 38, and OpenJDK 6 and 7, allows remote attackers to affect confidentiality via vectors related to JAX-WS. NOTE: the previous information is from the February 2013 CPU...

5CVSS7.4AI score0.05205EPSS
Exploits0References5
Rows per page
Query Builder