CVE-2018-5968
- EPSS 2.12%
- Veröffentlicht 22.01.2018 04:29:00
- Zuletzt bearbeitet 21.11.2024 04:09:46
FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets ...
- EPSS 0.1%
- Veröffentlicht 10.01.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:32:06
In Hibernate Validator 5.2.x before 5.2.5 final, 5.3.x, and 5.4.x, it was found that when the security manager's reflective permissions, which allows it to access the private members of the class, are granted to Hibernate Validator, a potential privi...
CVE-2017-1000407
- EPSS 0.46%
- Veröffentlicht 11.12.2017 21:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic.
CVE-2017-1000410
- EPSS 1.92%
- Veröffentlicht 07.12.2017 19:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse messages. This info leak is a result of uninitialized stack variables that may be returned...