Oracle

Glassfish Server

40 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2012-0104

  • EPSS 0.5%
  • Veröffentlicht 18.01.2012 22:55:06
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.0.1 and 3.1.1 allows remote attackers to affect availability via unknown vectors related to Web Container.

3.7

CVE-2012-0081

  • EPSS 0.25%
  • Veröffentlicht 18.01.2012 22:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Oracle GlassFish Enterprise Server 3.1.1 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Administration.

5

CVE-2011-5035

  • EPSS 52.41%
  • Veröffentlicht 30.12.2011 01:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash coll...

7.8

CVE-2011-3559

  • EPSS 0.96%
  • Veröffentlicht 18.10.2011 22:55:04
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Oracle Communications Server 2.0; GlassFish Enterprise Server 2.1.1, 3.0.1, and 3.1.1; and Sun Java System App Server 8.1 and 8.2 allows remote attackers to affect availability via unknown vectors related to Web Container...

10

CVE-2011-0807

  • EPSS 87.55%
  • Veröffentlicht 20.04.2011 03:14:06
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Admin...

5.7

CVE-2010-4438

  • EPSS 0.11%
  • Veröffentlicht 19.01.2011 17:00:02
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Oracle GlassFish 2.1, 2.1.1, and 3.0.1, and Java System Message Queue 4.1 allows local users to affect confidentiality, integrity, and availability, related to Java Message Service (JMS).

2.4

CVE-2010-2397

  • EPSS 0.05%
  • Veröffentlicht 13.07.2010 22:30:03
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Unspecified vulnerability in Oracle Sun Java System Application Server 8.0, 8.1, and 8.2; and GlassFish Enterprise Server 2.1.1; allows local users to affect confidentiality and integrity, related to the GUI.

4.3

CVE-2009-1553

Exploit
  • EPSS 1.03%
  • Veröffentlicht 06.05.2009 16:30:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple cross-site scripting (XSS) vulnerabilities in the Admin Console in Sun GlassFish Enterprise Server 2.1 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) applications/applications.jsf, (2) configuration...

4.3

CVE-2008-5266

  • EPSS 0.6%
  • Veröffentlicht 28.11.2008 19:00:08
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in configuration/httpListenerEdit.jsf in the GlassFish 2 UR2 b04 webadmin interface in Sun Java System Application Server 9.1_01 build b09d-fcs and 9.1_02 build b04-fcs allows remote attackers to inject arbitr...

4.3

CVE-2008-2751

  • EPSS 0.26%
  • Veröffentlicht 18.06.2008 19:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Multiple cross-site scripting (XSS) vulnerabilities in the Glassfish webadmin interface in Sun Java System Application Server 9.1_01 allow remote attackers to inject arbitrary web script or HTML via the (1) propertyForm:propertyContentPage:propertySh...