CVE-2022-21549
- EPSS 0.15%
- Veröffentlicht 19.07.2022 22:15:12
- Zuletzt bearbeitet 21.11.2024 06:44:56
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 17.0.3.1; Oracle GraalVM Enterprise Edition: 21.3.2 and 22.1.0. Easily e...
CVE-2022-21541
- EPSS 0.27%
- Veröffentlicht 19.07.2022 22:15:11
- Zuletzt bearbeitet 21.11.2024 06:44:55
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edi...
CVE-2022-21540
- EPSS 0.38%
- Veröffentlicht 19.07.2022 22:15:11
- Zuletzt bearbeitet 21.11.2024 06:44:55
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u343, 8u333, 11.0.15.1, 17.0.3.1, 18.0.1.1; Oracle GraalVM Enterprise Edi...
CVE-2022-34169
- EPSS 8.78%
- Veröffentlicht 19.07.2022 18:15:11
- Zuletzt bearbeitet 21.11.2024 07:08:59
The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be used to corrupt Java class files generated by the internal XSLTC compiler and execute arbitrary Java bytecode. Use...
CVE-2022-22971
- EPSS 0.38%
- Veröffentlicht 12.05.2022 20:15:15
- Zuletzt bearbeitet 21.11.2024 06:47:43
In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, application with a STOMP over WebSocket endpoint is vulnerable to a denial of service attack by an authenticated user.
CVE-2022-22970
- EPSS 0.18%
- Veröffentlicht 12.05.2022 20:15:15
- Zuletzt bearbeitet 21.11.2024 06:47:42
In spring framework versions prior to 5.3.20+ , 5.2.22+ and old unsupported versions, applications that handle file uploads are vulnerable to DoS attack if they rely on data binding to set a MultipartFile or javax.servlet.Part to a field in a model o...
CVE-2022-21496
- EPSS 0.11%
- Veröffentlicht 19.04.2022 21:15:18
- Zuletzt bearbeitet 21.11.2024 06:44:50
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20.3.5,...
- EPSS 0.18%
- Veröffentlicht 19.04.2022 21:15:17
- Zuletzt bearbeitet 21.11.2024 06:44:47
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20...
CVE-2022-21443
- EPSS 0.06%
- Veröffentlicht 19.04.2022 21:15:15
- Zuletzt bearbeitet 21.11.2024 06:44:42
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20...
- EPSS 0.11%
- Veröffentlicht 19.04.2022 21:15:15
- Zuletzt bearbeitet 21.11.2024 06:44:41
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 7u331, 8u321, 11.0.14, 17.0.2, 18; Oracle GraalVM Enterprise Edition: 20...