- EPSS 5.35%
- Veröffentlicht 21.07.2016 10:12:41
- Zuletzt bearbeitet 06.05.2026 22:30:45
Unspecified vulnerability in the Oracle WebCenter Sites component in Oracle Fusion Middleware 11.1.1.8, and 12.2.1.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
CVE-2015-3253
- EPSS 42.98%
- Veröffentlicht 13.08.2015 14:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
The MethodClosure class in runtime/MethodClosure.java in Apache Groovy 1.7.0 through 2.4.3 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted serialized object.
CVE-2014-0107
- EPSS 13.81%
- Veröffentlicht 15.04.2014 23:13:13
- Zuletzt bearbeitet 06.05.2026 22:30:45
The TransformerFactory in Apache Xalan-Java before 2.7.2 does not properly restrict access to certain properties when FEATURE_SECURE_PROCESSING is enabled, which allows remote attackers to bypass expected restrictions and load arbitrary classes or ac...
- EPSS 8.33%
- Veröffentlicht 30.09.2013 21:55:09
- Zuletzt bearbeitet 29.04.2026 01:13:23
Apache Struts 2.0.0 through 2.3.15.1 enables Dynamic Method Invocation by default, which has unknown impact and attack vectors.