Lucene search
K
BroadcomRecent

879 matches found

Broadcom
Broadcom
added 2022/09/13 12:0 a.m.46 views

CVE-2018-0732. Client DoS due to large DH parameter.

During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key for this prime resulting in a hang until the client has finished. This...

7.5CVSS2.6AI score0.49268EPSS
Exploits0Affected Software1
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.36 views

CVE-2022-28170. Brocade Fabric OS Web Application services store server and user passwords in the debug statements.

Brocade Fabric OS Web Application services before Brocade Fabric v9.1.0, v9.0.1e, v8.2.3c, v7.4.2j store server and user passwords in the debug statements. This could allow a local user to extract the passwords from a debug file. Affected Product All Brocade Fabric OS versions...

6.5CVSS2.3AI score0.00207EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.42 views

CVE-2017-18018: In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file

In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file with a symlink during use of the POSIX "-R -L" options, which allows local users to modify the ownership of arbitrary files by leveraging a race condition. Affected Products All versions of...

4.7CVSS3AI score0.00348EPSS
Exploits1Affected Software1
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.46 views

CVE-2022-33183. Stack buffer overflow using in “firmwaredownload” and “diagshow” commands.

A vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, 8.2.0cbn5, 7.4.2.j could allow a remote authenticated attacker to perform stack buffer overflow using in “firmwaredownload” and “diagshow” commands. Affected Product All Brocade Fabric OS versions...

7.1CVSS5.8AI score0.01443EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.52 views

CVE-2022-33179. A vulnerability in Brocade Fabric OS CLI could allow an attacker to break out of restricted shells and escalate privileges

A vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, and 7.4.2j could allow a local authenticated user to break out of restricted shells with “set context” and escalate privileges. Affected Product All Brocade Fabric OS versions...

5.5CVSS3.9AI score0.00184EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.10 views

CVE-2020-29371: An issue was discovered in romfs_dev_read in fs/romfs/storage.c

Security Advisory ID : BSA-2022-1195 Component : Kernel Revision : 1.0 An issue was discovered in romfsdevread in fs/romfs/storage.c in the Linux kernel before 5.8.4. Uninitialized memory leaks to userspace, aka CID-bcf85fcedfdd. Notes: Brocade Fabric OS does not utilize the problematic code...

3.3CVSS6.5AI score0.0069EPSS
Exploits1
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.62 views

CVE-2021-29650. The netfilter subsystem allows attackers to cause a denial of service.

Security Advisory ID : BSA-2022-1462 Component : Kernel Revision : 1.0 A denial-of-service DoS flaw was identified in the Linux kernel before 5.11.11. The netfilter subsystem allows attackers to cause a denial of service panic because net/netfilter/xtables.c and include/linux/netfilter/xtables.h...

5.5CVSS7AI score0.00413EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.7 views

CVE-2021-3712: ASN1_STRING structure contains a buffer holding the string data

Security Advisory ID : BSA-2022-1587 Component : OpenSSL Revision : 1.0 ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesent...

7.4CVSS6.9AI score0.50445EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.7 views

CVE-2018-6485: An integer overflow in the implementation of the posix_memalign

Security Advisory ID : BSA-2022-623 Component : GNU C Library Revision : 1.0 An integer overflow in the implementation of the posixmemalign in memalign functions in the GNU C Library aka glibc or libc6 2.26 and earlier could cause these functions to return a pointer to a heap area that is too...

9.8CVSS6.1AI score0.04689EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.54 views

CVE-2017-18018: In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file

Security Advisory ID : BSA-2022-2073 Component : GNU Coreutils Revision : 1.0 In GNU Coreutils through 8.29, chown-core.c in chown and chgrp does not prevent replacement of a plain file with a symlink during use of the POSIX "-R -L" options, which allows local users to modify the ownership of...

7.1CVSS4.7AI score0.00348EPSS
Exploits1
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.11 views

CVE-2021-23841: Null pointer deref in X509_issuer_and_serial_hash()

Security Advisory ID : BSA-2022-1303 Component : OpenSSL Revision : 1.0 The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors...

5.9CVSS6.9AI score0.07471EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.22 views

CVE-2022-33180. Sensitive files export.

Security Advisory ID : BSA-2022-2082 Component : FOS Revision : 1.1 A vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, 8.2.0cbn5 could allow a local authenticated attacker to export out sensitive files with “seccryptocfg”, “configupload”. Affected...

5.5CVSS6.8AI score0.00212EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.19 views

CVE-2022-33181. Information disclosure vulnerability in Brocade Fabric OS CLI using switch commands “configshow” and “supportlink”.

Security Advisory ID : BSA-2022-2083 Component : FOS Revision : 1.1 An information disclosure vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, 8.2.0cbn5, 7.4.2.j could allow a local authenticated attacker to read sensitive files using switch commands...

5.5CVSS6.5AI score0.00215EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.27 views

CVE-2022-28170. Brocade Fabric OS Web Application services store server and user passwords in the debug statements.

Security Advisory ID : BSA-2022-2076 Component : FOS Revision : 1.1 Brocade Fabric OS Web Application services before Brocade Fabric v9.1.0, v9.0.1e, v8.2.3c, v7.4.2j store server and user passwords in the debug statements. This could allow a local user to extract the passwords from a debug file...

6.5CVSS7AI score0.00207EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.22 views

CVE-2022-33179. A vulnerability in Brocade Fabric OS CLI could allow an attacker to break out of restricted shells and escalate privileges

Security Advisory ID : BSA-2022-2079 Component : FOS Revision : 1.1 A vulnerability in Brocade Fabric OS CLI before Brocade Fabric OS v9.1.0, 9.0.1e, 8.2.3c, and 7.4.2j could allow a local authenticated user to break out of restricted shells with “set context” and escalate privileges. Affecte...

5.5CVSS7.1AI score0.00184EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.9 views

CVE-2014-9984: nscd in the GNU C Library (aka glibc or libc6) before version 2.20 does not correctly compute the size of an internal buffer

Security Advisory ID : BSA-2022-607 Component : GNU C Library Revision : 1.1 nscd in the GNU C Library aka glibc or libc6 before version 2.20 does not correctly compute the size of an internal buffer when processing netgroup requests, possibly leading to an nscd daemon crash or code execution as...

9.8CVSS7.9AI score0.0444EPSS
Exploits2
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.7 views

CVE-2022-0155: Exposure of Private Personal Information to an Unauthorized Actor

Security Advisory ID : BSA-2022-1676 Component : Follow-Redirects Revision : 2.0 follow-redirects is vulnerable to Exposure of Private Personal Information to an Unauthorized Actor. Notes: Brocade Fabric OS does not use cookies; however, Brocade Fabric OS versions after v9.0.0 and before v9.1.1 d...

8CVSS6.9AI score0.02426EPSS
Exploits2
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.6 views

CVE-2021-39275. ap_escape_quotes buffer overflow

Security Advisory ID : BSA-2022-1599 Component : Apache httpd Revision : 1.1 An out-of-bounds write in function apescapequotes of httpd allows an unauthenticated, remote attacker to crash the server or potentially execute code on the system with the privileges of the httpd user, by providing...

9.8CVSS7.8AI score0.36339EPSS
Exploits0
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.8 views

CVE-2019-9169. Heap-based buffer over-read in the GNU C Library. (BSA-2022-776)

Security Advisory ID: BSA-2022-776 Component: GNU C Library Revision: 2.0 In the GNU C Library aka glibc or libc6 through 2.29, proceednextnode in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. Notes: Brocade PSIRT has confirmed that...

9.8CVSS7.3AI score0.04731EPSS
Exploits1
Broadcom
Broadcom
added 2022/09/13 12:0 a.m.38 views

CVE-2018-0732. Client DoS due to large DH parameter.

Security Advisory ID : BSA-2022-627 Component : OpenSSL Revision : 1.0 During key agreement in a TLS handshake using a DHE based ciphersuite a malicious server can send a very large prime value to the client. This will cause the client to spend an unreasonably long period of time generating a key...

7.5CVSS7.6AI score0.49268EPSS
Exploits0
Broadcom
Broadcom
added 2022/08/15 12:0 a.m.6 views

(CVE-2022-1292) - The c_rehash script allows command injection. (BSA-2022-1846)

Security Advisory ID: BSA-2022-1846 Component: OpenSSL Revision: 2.0 The crehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an...

10CVSS7.6AI score0.83223EPSS
Exploits5
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.55 views

BSA-2022-1738

Security Advisory ID : BSA-2022-1738 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Utility. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise...

5.3CVSS5.1AI score0.06468EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.42 views

BSA-2022-1688

Security Advisory ID : BSA-2022-1688 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise...

5.3CVSS5.1AI score0.06322EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.34 views

Flaw in polkit

Security Advisory ID : BSA-2022-2011 Component : Polkit Revision : 1.0 There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage...

5.5CVSS5.6AI score0.0053EPSS
Exploits1
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.37 views

Flaw in polkit

There is a flaw in polkit which can allow an unprivileged user to cause polkit to crash, due to process file descriptor exhaustion. The highest threat from this vulnerability is to availability. NOTE: Polkit process outage duration is tied to the failing process being reaped and a new one being...

5.5CVSS1.2AI score0.0053EPSS
Exploits1
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.53 views

BSA-2022-1693

Security Advisory ID : BSA-2022-1693 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition:...

5.3CVSS5.6AI score0.06886EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.42 views

BSA-2022-1691

Security Advisory ID : BSA-2022-1691 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition...

5.3CVSS5.3AI score0.14839EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.41 views

BSA-2022-1690

Security Advisory ID : BSA-2022-1690 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Keytool. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise...

5.3CVSS5.3AI score0.05241EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.53 views

BSA-2022-1694

Security Advisory ID : BSA-2022-1694 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Java SE: 7u311, 8u301; Oracle GraalVM Enterprise Edition: 20.3.3 an...

3.1CVSS4.8AI score0.03599EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.48 views

BSA-2022-1689

Security Advisory ID : BSA-2022-1689 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition: 20.3.3...

5.3CVSS5.2AI score0.06218EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.53 views

BSA-2022-1692

Security Advisory ID : BSA-2022-1692 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Swing. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition...

5.3CVSS5.1AI score0.07819EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.46 views

BSA-2022-2025

Security Advisory ID : BSA-2022-2025 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Java SE: 8u301, 11.0.12, 17; Oracle GraalVM Enterprise Edition:...

6.8CVSS6.8AI score0.027EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/29 12:0 a.m.47 views

BSA-2022-2026

Security Advisory ID : BSA-2022-2026 Component : Oracle Java SE Revision : 1.0 GStreamer before 1.18.4 may perform an out-of-bounds read when handling certain ID3v2 tags. Affected Products Brocade SANnav versions before v2.2.1...

5.5CVSS5.3AI score0.05372EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/26 12:0 a.m.8 views

BSA-2022-2013

Security Advisory ID : BSA-2022-2013 Component : RETBLEED Revision : 1.0: Final A research team in Switzerland has found a new variant of the speculative execution vulnerabilities that affect some Intel and AMD chips aka RETBLEED. Retbleed CVE-2022-29900 and CVE-2022-29901 is the new addition to...

6.7CVSS7.6AI score0.04947EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/25 12:0 a.m.36 views

BSA-2022-2012

Security Advisory ID : BSA-2022-2012 Component : Brocade Fabric OS Revision : 1.1: Final Brocade has received a report from Black Lantern Security of a potential Privileged Directory Traversal vulnerability on Brocade Fabric OS: v7.4.1b, v7.3.1d stating that: “From within the restricted shell...

3.3CVSS5.6AI score0.00218EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.39 views

BSA-2022-1729

Security Advisory ID : BSA-2022-1729 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 7u321, 8u311; Oracle GraalVM Enterprise Edition:...

5.3CVSS4.8AI score0.03306EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.35 views

BSA-2022-2019

Security Advisory ID : BSA-2022-2019 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise...

5.3CVSS4.9AI score0.03782EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.41 views

BSA-2022-1728

Security Advisory ID : BSA-2022-1728 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM...

5.3CVSS5AI score0.03486EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.41 views

BSA-2022-2016

Security Advisory ID : BSA-2022-2016 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13; Oracle GraalVM...

5.3CVSS4.7AI score0.02789EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.54 views

BSA-2022-2021

Security Advisory ID : BSA-2022-2021 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise...

5.3CVSS4.8AI score0.03216EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.35 views

BSA-2022-1730

Security Advisory ID : BSA-2022-1730 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle...

5.3CVSS5AI score0.03765EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.94 views

BSA-2022-1727

Security Advisory ID : BSA-2022-1727 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM...

5.3CVSS5AI score0.03486EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.33 views

BSA-2022-1931

Security Advisory ID : BSA-2022-1931 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM...

5.3CVSS5AI score0.03458EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.42 views

BSA-2022-2017

Security Advisory ID : BSA-2022-2017 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: ImageIO. Supported versions that are affected are Oracle Java SE: 11.0.13, 17.01; Oracle GraalVM Enterprise...

5.3CVSS4.8AI score0.03091EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.35 views

BSA-2022-1733

Security Advisory ID : BSA-2022-1733 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle Graal...

5.3CVSS5AI score0.0335EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.38 views

BSA-2022-1731

Security Advisory ID : BSA-2022-1731 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle Graal...

5.3CVSS5AI score0.07748EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.45 views

BSA-2022-1736

Security Advisory ID : BSA-2022-1736 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle...

3.7CVSS4.1AI score0.03763EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.40 views

BSA-2022-2018

Security Advisory ID : BSA-2022-2018 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle GraalVM...

5.3CVSS4.6AI score0.02877EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/14 12:0 a.m.39 views

BSA-2022-1734

Security Advisory ID : BSA-2022-1734 Component : Oracle Java SE Revision : 1.0 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.01; Oracle Graal...

5.3CVSS5AI score0.08346EPSS
Exploits0
Broadcom
Broadcom
added 2022/07/12 12:0 a.m.43 views

BSA-2022-1983

Security Advisory ID : BSA-2022-1983 Component : com.alibaba:fastjson Revision : 1.0: Final The package com.alibaba:fastjson before 1.2.83 are vulnerable to Deserialization of Untrusted Data by bypassing the default autoType shutdown restrictions, which is possible under certain conditions...

8.1CVSS9.3AI score0.17767EPSS
Exploits5
Total number of security vulnerabilities879