Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
scala-lang scala vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-36944
Scala 2.13.x prior to 2.13.9 has a Java deserialization chain in its JAR file. On its own, it cannot be exploited. There is only a risk in conjunction with Java object deserialization within an application. In such situations, it allows malicious users to erase contents of arbitr...
Scala-lang Scala
Scala-lang Scala-collection-compat
Fedoraproject Fedora 35
Fedoraproject Fedora 36
2 Github repositories
7.8
CVSSv3
CVE-2017-15288
The compilation daemon in Scala prior to 2.10.7, 2.11.x prior to 2.11.12, and 2.12.x prior to 2.12.4 uses weak permissions for private files in /tmp/scala-devel/${USER:shared}/scalac-compile-server-port, which allows local users to write to arbitrary class files and consequently ...
Scala-lang Scala
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started