CVE-2018-5968
- EPSS 2.12%
- Published 22.01.2018 04:29:00
- Last modified 21.11.2024 04:09:46
FasterXML jackson-databind through 2.8.11 and 2.9.x through 2.9.3 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 and CVE-2017-17485 deserialization flaws. This is exploitable via two different gadgets ...
- EPSS 0.1%
- Published 10.01.2018 15:29:00
- Last modified 21.11.2024 03:32:06
In Hibernate Validator 5.2.x before 5.2.5 final, 5.3.x, and 5.4.x, it was found that when the security manager's reflective permissions, which allows it to access the private members of the class, are granted to Hibernate Validator, a potential privi...
CVE-2017-1000407
- EPSS 0.46%
- Published 11.12.2017 21:29:00
- Last modified 20.04.2025 01:37:25
The Linux Kernel 2.6.32 and later are affected by a denial of service, by flooding the diagnostic port 0x80 an exception can be triggered leading to a kernel panic.
CVE-2017-1000410
- EPSS 1.92%
- Published 07.12.2017 19:29:00
- Last modified 20.04.2025 01:37:25
The Linux kernel version 3.3-rc1 and later is affected by a vulnerability lies in the processing of incoming L2CAP commands - ConfigRequest, and ConfigResponse messages. This info leak is a result of uninitialized stack variables that may be returned...