Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect f…

Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers t…

For Eclipse Jetty versions 9.4.37-9.4.42, 10.0.1-10.0.5 & 11.0.1-11.0.5, URIs can be crafted us…

Apache Log4j2 versions 2.0-beta7 through 2.17.0 (excluding security fix releases 2.3.2 and 2.12…

Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,C…

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent…

In Spring Framework, versions 5.2.x prior to 5.2.3, versions 5.1.x prior to 5.1.13, and version…

jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.ext…

Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupp…

Systems with microprocessors utilizing speculative execution and indirect branch prediction may…

When using Apache Tomcat versions 10.0.0-M1 to 10.0.0-M4, 9.0.0.M1 to 9.0.34, 8.5.0 to 8.5.54 a…

A regression has been introduced in the commit preventing JMX re-bind. By passing an empty envi…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

In Apache ActiveMQ 5.0.0 - 5.15.8, unmarshalling corrupt MQTT frame can lead to broker Out of M…

A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.x before 2.9.9.2. Thi…

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization…

A deserialization flaw was discovered in the jackson-databind in versions before 2.8.10 and 2.9…

SubTypeValidator.java in FasterXML jackson-databind before 2.9.9.2 mishandles default typing wh…

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.6 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.8 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.5 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between serialization…

Уязвимость библиотеки jackson-databind связана с восстановлением в памяти недостоверных данных.…

Уязвимость компонента DOMDeserializer библиотеки FasterXML jackson-databind связана с неверным …

Уязвимость компонента org.apache.commons.dbcp2.datasources.PerUserPoolDataSource библиотеки Jac…

Уязвимость библиотеки журналирования Java-программ Log4j связана с восстановлением в памяти нед…

Уязвимость функции в com.pastdev.httpcomponents.configuration.JndiConfiguration библиотеки Jack…

Уязвимость компонента org.apache.commons.proxy.provider.remoting.RmiProvider библиотеки Jackson…

Уязвимость компонента org.apache.openjpa.ee.WASRegistryManagedRuntime библиотеки Jackson-databi…