CVE-2018-2628
- EPSS 99.45%
- Veröffentlicht 19.04.2018 02:29:00
- Zuletzt bearbeitet 27.10.2025 17:08:54
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows unauthe...
CVE-2018-1324
- EPSS 3.68%
- Veröffentlicht 16.03.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:59:37
A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount a denial of service ...
CVE-2015-9251
- EPSS 29.73%
- Veröffentlicht 18.01.2018 23:29:00
- Zuletzt bearbeitet 21.11.2024 02:40:09
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.
CVE-2018-2625
- EPSS 1.53%
- Veröffentlicht 18.01.2018 02:29:20
- Zuletzt bearbeitet 21.11.2024 04:04:04
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated at...
CVE-2017-15707
- EPSS 4.89%
- Veröffentlicht 01.12.2017 16:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
In Apache Struts 2.5 to 2.5.14, the REST Plugin is using an outdated JSON-lib library which is vulnerable and allow perform a DoS attack using malicious request with specially crafted JSON payload.
CVE-2016-8610
- EPSS 39.66%
- Veröffentlicht 13.11.2017 22:29:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
A denial of service flaw was found in OpenSSL 0.9.8, 1.0.1, 1.0.2 through 1.0.2h, and 1.1.0 in the way the TLS/SSL protocol defined processing of ALERT packets during a connection handshake. A remote attacker could use this flaw to make a TLS/SSL ser...
CVE-2017-10352
- EPSS 5.69%
- Veröffentlicht 19.10.2017 17:29:04
- Zuletzt bearbeitet 13.05.2026 00:24:29
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). The supported version that is affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnera...
CVE-2017-10334
- EPSS 1.05%
- Veröffentlicht 19.10.2017 17:29:03
- Zuletzt bearbeitet 13.05.2026 00:24:29
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows low p...
CVE-2017-10336
- EPSS 1.89%
- Veröffentlicht 19.10.2017 17:29:03
- Zuletzt bearbeitet 13.05.2026 00:24:29
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Container). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unaut...
CVE-2017-10271
- EPSS 99.99%
- Veröffentlicht 19.10.2017 17:29:01
- Zuletzt bearbeitet 21.04.2026 20:07:45
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauth...