CVE-2021-43797
- EPSS 2.68%
- Veröffentlicht 09.12.2021 19:15:07
- Zuletzt bearbeitet 21.11.2024 06:29:48
Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. Netty prior to version 4.1.71.Final skips control chars when they are present at the beginning / en...
CVE-2021-37136
- EPSS 5.65%
- Veröffentlicht 19.10.2021 15:15:07
- Zuletzt bearbeitet 21.11.2024 06:14:42
The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression). All users of Bzip2Decoder are affected. The malicious input can trigger an...
CVE-2021-2428
- EPSS 1.56%
- Veröffentlicht 21.07.2021 15:16:01
- Zuletzt bearbeitet 21.11.2024 06:03:06
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Difficult to exploit vulnerability allows unauthenticated attacke...
- EPSS 1.17%
- Veröffentlicht 21.07.2021 15:15:31
- Zuletzt bearbeitet 21.11.2024 06:02:59
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...
- EPSS 1.4%
- Veröffentlicht 21.07.2021 15:15:19
- Zuletzt bearbeitet 21.11.2024 06:02:55
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...
- EPSS 1.12%
- Veröffentlicht 22.04.2021 22:15:16
- Zuletzt bearbeitet 21.11.2024 06:02:47
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated ...
CVE-2021-21409
- EPSS 4.94%
- Veröffentlicht 30.03.2021 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:48:17
Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In Netty (io.netty:netty-codec-http2) before version 4.1.61.Final there is a vulnerabi...
CVE-2020-14756
- EPSS 74.75%
- Veröffentlicht 20.01.2021 15:15:39
- Zuletzt bearbeitet 21.11.2024 05:04:04
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Core Components). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unaut...
CVE-2020-25649
- EPSS 17.61%
- Veröffentlicht 03.12.2020 17:15:12
- Zuletzt bearbeitet 21.11.2024 05:18:20
A flaw was found in FasterXML Jackson Databind, where it did not have entity expansion secured properly. This flaw allows vulnerability to XML external entity (XXE) attacks. The highest threat from this vulnerability is data integrity.
CVE-2020-14642
- EPSS 1.58%
- Veröffentlicht 15.07.2020 18:15:29
- Zuletzt bearbeitet 21.11.2024 05:03:46
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: CacheStore). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenti...