Lucene search
K
NetappBluexp

12 matches found

CVE
CVE
added 2024/09/19 12:18 a.m.6262 views

CVE-2024-7254

CVE-2024-7254 describes a stack overflow DoS in parsers when handling untrusted Protocol Buffers data with deeply nested SGROUP/group structures. The root cause is unbounded recursion when parsing unknown fields (DiscardUnknownFieldsParser) or Java Protobuf Lite against nested groups or map field...

8.7CVSS6.8AI score0.02772EPSS
CVE
CVE
added 2022/10/13 12:0 a.m.1065 views

CVE-2022-42889

CVE-2022-42889 affects Apache Commons Text 1.5–1.9 where default interpolation lookups (script, dns, url) can trigger arbitrary code execution or remote access when untrusted values are used. The vulnerability can lead to remote code execution or unintended contact with remote servers via the Str...

9.8CVSS10AI score0.99931EPSS
Web
CVE
CVE
added 2024/02/26 4:13 p.m.864 views

CVE-2024-22201

Technical details about CVE-2024-22201 are not provided in the Connected documents. The Initial entry mentions affected Jetty versions and a patch, but does not supply root-cause analysis, exact vulnerable components, exploit details, or comprehensive mitigations. Monitor for updates.

7.5CVSS7.5AI score0.01433EPSS
CVE
CVE
added 2024/07/16 10:39 p.m.475 views

CVE-2024-21131

CVE-2024-21131 affects Oracle Java SE (Hotspot) and Oracle GraalVM for JDK/Enterprise Edition. Affected versions include Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1; GraalVM Enterprise: 20.3.14, 21.3.10. An unauthenticated network attacke...

3.7CVSS3AI score0.00953EPSS
CVE
CVE
added 2024/07/16 10:39 p.m.446 views

CVE-2024-21147

The CVE-2024-21147 entry describes a vulnerability in Oracle Java SE, Oracle GraalVM for JDK, and Oracle GraalVM Enterprise Edition (Hotspot component) affecting multiple supported versions: Java SE 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; GraalVM for JDK 17.0.11, 21.0.3, 22.0.1; Graa...

7.4CVSS7.2AI score0.01136EPSS
CVE
CVE
added 2024/07/16 10:39 p.m.400 views

CVE-2024-21140

CVE-2024-21140 affects Oracle Java SE and Oracle GraalVM products (Hotspot, 2D, Networking, Serialization, Concurrency). Affects multiple supported Java runtimes (e.g., Java SE 8u411/11.0.23/17.0.11/22.0.1; GraalVM JDK 17.0.11/21.0.3/22.0.1; GraalVM EE 20.3.14/21.3.10). Described as remotely expl...

4.8CVSS5.1AI score0.00879EPSS
CVE
CVE
added 2024/10/03 11:32 a.m.391 views

CVE-2024-47554

CVE-2024-47554 affects Apache Commons IO. An Uncontrolled Resource Consumption issue in XmlStreamReader may cause high CPU use when processing malicious input. Vulnerable version range: 2.0 <= v

4.3CVSS6.5AI score0.01249EPSS
CVE
CVE
added 2024/07/16 10:39 p.m.373 views

CVE-2024-21145

CVE-2024-21145 affects Oracle Java SE and Oracle GraalVM suites (component: 2D). Affected: Java SE versions 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; GraalVM for JDK versions 17.0.11, 21.0.3, 22.0.1; GraalVM Enterprise Edition 20.3.14 and 21.3.10. The description states a difficult‑to‑...

4.8CVSS4.1AI score0.00864EPSS
CVE
CVE
added 2024/07/16 10:39 p.m.370 views

CVE-2024-21138

CVE-2024-21138 affects Oracle Java SE Hotspot and Oracle GraalVM for JDK/Enterprise Edition (as listed in the initial document). Affected versions include Oracle Java SE: 8u411, 8u411-perf, 11.0.23, 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM for JDK: 17.0.11, 21.0.3, 22.0.1; Oracle GraalVM Enterpris...

3.7CVSS3.1AI score0.01257EPSS
CVE
CVE
added 2024/04/16 9:26 p.m.307 views

CVE-2024-21055

CVE-2024-21055 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.35 and prior. The vulnerability allows a high-privilege attacker with network access via multiple protocols to cause a hang or a frequent, repeatable crash (complete DOS) of MySQL Server. The base...

4.9CVSS4.7AI score0.00887EPSS
CVE
CVE
added 2024/03/06 6:14 p.m.273 views

CVE-2024-25111

Squid (web proxy cache) is affected by CVE-2024-25111. Affected versions are 3.5.27 up to, but not including, 6.8; the issue is an uncontrolled recursion in the HTTP Chunked decoder that can cause a remote DoS when processing crafted chunked HTTP messages. The vulnerability is fixed in Squid vers...

8.6CVSS8.3AI score0.65254EPSS
CVE
CVE
added 2024/02/14 8:55 p.m.204 views

CVE-2024-25617

CVE-2024-25617 affects Squid, an open source web proxy/cache. The issue is a DoS in HTTP header parsing caused by a Collapse of Data into Unsafe Value, triggered by oversized headers. The vulnerability is exploitable via normal HTTP headers and is applicable to Squid versions prior to 6.5, where ...

7.5CVSS6.5AI score0.88864EPSS