Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1
CVE-2024-27905
- EPSS 3.02%
- Published 27.02.2024 15:15:07
- Last modified 10.07.2025 12:23:26
** UNSUPPORTED WHEN ASSIGNED ** Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Aurora. An endpoint exposing internals to unauthenticated users can be used as a "padding oracle" allowing an anonymous attacker to co...
9.8
CVE-2016-4437
- EPSS 94.3%
- Published 07.06.2016 14:06:13
- Last modified 12.04.2025 10:46:40
Apache Shiro before 1.2.5, when a cipher key has not been configured for the "remember me" feature, allows remote attackers to execute arbitrary code or bypass intended access restrictions via an unspecified request parameter.
1