CVE-2019-12400
- EPSS 0.78%
- Veröffentlicht 23.08.2019 21:15:11
- Zuletzt bearbeitet 21.11.2024 04:22:45
In version 2.0.3 Apache Santuario XML Security for Java, a caching mechanism was introduced to speed up creating new XML documents using a static pool of DocumentBuilders. However, if some untrusted code can register a malicious implementation with t...
CVE-2019-10086
- EPSS 28.84%
- Veröffentlicht 20.08.2019 21:15:12
- Zuletzt bearbeitet 21.11.2024 04:18:22
In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects. We, however were not using this by defa...
CVE-2019-2856
- EPSS 2.1%
- Veröffentlicht 23.07.2019 23:15:45
- Zuletzt bearbeitet 21.11.2024 04:41:41
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Application Container - JavaEE). Supported versions that are affected is 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker wit...
CVE-2019-2827
- EPSS 1.26%
- Veröffentlicht 23.07.2019 23:15:44
- Zuletzt bearbeitet 21.11.2024 04:41:38
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows high privil...
CVE-2019-2824
- EPSS 1.26%
- Veröffentlicht 23.07.2019 23:15:43
- Zuletzt bearbeitet 21.11.2024 04:41:38
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows high privil...
CVE-2019-2729
- EPSS 88.83%
- Veröffentlicht 19.06.2019 23:15:10
- Zuletzt bearbeitet 21.11.2024 04:41:26
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated at...
CVE-2019-2725
- EPSS 99.96%
- Veröffentlicht 26.04.2019 19:29:00
- Zuletzt bearbeitet 27.10.2025 17:08:18
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with ...
CVE-2019-2658
- EPSS 2.06%
- Veröffentlicht 23.04.2019 19:32:54
- Zuletzt bearbeitet 21.11.2024 04:41:18
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacke...
CVE-2019-2645
- EPSS 2.06%
- Veröffentlicht 23.04.2019 19:32:53
- Zuletzt bearbeitet 21.11.2024 04:41:16
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthentic...
CVE-2019-2646
- EPSS 2.06%
- Veröffentlicht 23.04.2019 19:32:53
- Zuletzt bearbeitet 21.11.2024 04:41:17
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: EJB Container). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated a...