Oracle

Timesten In-memory Database

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.1

CVE-2019-10219

  • EPSS 1.67%
  • Veröffentlicht 08.11.2019 15:15:11
  • Zuletzt bearbeitet 07.07.2025 14:15:21

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting of potentially malicious code in HTML comments and instructions. This vulnerability can result in an XSS attack.

7.5

CVE-2019-1010239

Exploit
  • EPSS 0.47%
  • Veröffentlicht 19.07.2019 17:15:11
  • Zuletzt bearbeitet 22.07.2025 18:17:45

DaveGamble/cJSON cJSON 1.7.8 is affected by: Improper Check for Unusual or Exceptional Conditions. The impact is: Null dereference, so attack can cause denial of service. The component is: cJSON_GetObjectItemCaseSensitive() function. The attack vecto...

5.9

CVE-2019-0201

  • EPSS 0.22%
  • Veröffentlicht 23.05.2019 14:29:07
  • Zuletzt bearbeitet 21.11.2024 04:16:28

An issue is present in Apache ZooKeeper 1.0.0 to 3.4.13 and 3.5.0-alpha to 3.5.4-beta. ZooKeeper’s getACL() command doesn’t check any permission when retrieves the ACLs of the requested node and returns all information contained in the ACL Id field a...

9.8

CVE-2019-11835

Exploit
  • EPSS 0.67%
  • Veröffentlicht 09.05.2019 05:29:02
  • Zuletzt bearbeitet 22.07.2025 18:17:45

cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments.

9.8

CVE-2019-11834

Exploit
  • EPSS 0.62%
  • Veröffentlicht 09.05.2019 05:29:02
  • Zuletzt bearbeitet 22.07.2025 18:17:45

cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal.

7.5

CVE-2018-15769

  • EPSS 1.48%
  • Veröffentlicht 16.11.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:51:26

RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and versions prior to 4.1.6.2 (in 4.1.x series) contain a key management error issue. A malicious TLS server could potentially cause a Denial Of Service (DoS) on TLS clients dur...

9.8

CVE-2018-11058

  • EPSS 1.73%
  • Veröffentlicht 14.09.2018 20:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:35

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition, version prior to 4.0.5.3 (in 4.0.x) contain a Buffer Over-Read vulnerability when parsing ASN.1 data. A remote att...

5.9

CVE-2018-11057

  • EPSS 0.62%
  • Veröffentlicht 31.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:35

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x) contains a Covert Timing Channel vulnerability during RSA decryption, also known as a Bleichenbacher attack on RSA decryption. A remote attacker may be...

6.5

CVE-2018-11056

  • EPSS 1.96%
  • Veröffentlicht 31.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:35

RSA BSAFE Micro Edition Suite, prior to 4.1.6.1 (in 4.1.x), and RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3 (in 4.0.x) contain an Uncontrolled Resource Consumption ('Resource Exhaustion') vulnerability when parsing ASN.1 data. A remote...

5.5

CVE-2018-11055

  • EPSS 0.09%
  • Veröffentlicht 31.08.2018 18:29:00
  • Zuletzt bearbeitet 21.11.2024 03:42:34

RSA BSAFE Micro Edition Suite, versions prior to 4.0.11 (in 4.0.x) and prior to 4.1.6.1 (in 4.1.x), contains an Improper Clearing of Heap Memory Before Release ('Heap Inspection') vulnerability. Decoded PKCS #12 data in heap memory is not zeroized by...