Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
annotations vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-22044
In Spring Cloud OpenFeign 3.0.0 to 3.0.4, 2.2.0.RELEASE to 2.2.9.RELEASE, and older unsupported versions, applications using type-level `@RequestMapping`annotations over Feign client interfaces, can be involuntarily exposing endpoints corresponding to `@RequestMapping`-annotated ...
Vmware Spring Cloud Openfeign
5.8
CVSSv2
CVE-2011-1419
Apache Tomcat 7.x prior to 7.0.11, when web.xml has no security constraints, does not follow ServletSecurity annotations, which allows remote malicious users to bypass intended access restrictions via HTTP requests to a web application. NOTE: this vulnerability exists because of ...
Apache Tomcat 7.0.8
Apache Tomcat 7.0.1
Apache Tomcat 7.0.2
Apache Tomcat 7.0.5
Apache Tomcat 7.0.0
Apache Tomcat 7.0.6
Apache Tomcat 7.0.7
Apache Tomcat 7.0.10
Apache Tomcat 7.0.9
Apache Tomcat 7.0.4
Apache Tomcat 7.0.3
NA
CVE-2023-42501
Unnecessary read permissions within the Gamma role would allow authenticated users to read configured CSS templates and annotations. This issue affects Apache Superset: prior to 2.1.2. Users should upgrade to version or above 2.1.2 and run `superset init` to reconstruct the Gamma...
Apache Superset
NA
CVE-2024-22949
JFreeChart v1.5.4 exists to contain a NullPointerException via the component /chart/annotations/CategoryLineAnnotation. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability. The submission may...
9
CVSSv2
CVE-2020-27151
An issue exists in Kata Containers up to and including 1.11.3 and 2.x up to and including 2.0-rc1. The runtime will execute binaries given using annotations without any kind of validation. Someone who is granted access rights to a cluster will be able to have kata-runtime execute...
Katacontainers Kata Containers 2.0.0
Katacontainers Kata Containers
4.3
CVSSv2
CVE-2011-1582
Apache Tomcat 7.0.12 and 7.0.13 processes the first request to a servlet without following security constraints that have been configured through annotations, which allows remote malicious users to bypass intended access restrictions via HTTP requests. NOTE: this vulnerability ex...
Apache Tomcat 7.0.12
Apache Tomcat 7.0.13
9.3
CVSSv2
CVE-2022-28233
Acrobat Reader DC versions 22.001.20085 (and previous versions), 20.005.3031x (and previous versions) and 17.012.30205 (and previous versions) are affected by a use-after-free vulnerability in the processing of annotations that could result in arbitrary code execution in the cont...
Adobe Acrobat Dc
Adobe Acrobat Reader Dc
Adobe Acrobat
Adobe Acrobat Reader
9.3
CVSSv2
CVE-2022-28237
Acrobat Reader DC versions 22.001.20085 (and previous versions), 20.005.3031x (and previous versions) and 17.012.30205 (and previous versions) are affected by a use-after-free vulnerability in the processing of annotations that could result in arbitrary code execution in the cont...
Adobe Acrobat Dc
Adobe Acrobat Reader Dc
Adobe Acrobat
Adobe Acrobat Reader
9.3
CVSSv2
CVE-2022-28238
Acrobat Reader DC versions 22.001.20085 (and previous versions), 20.005.3031x (and previous versions) and 17.012.30205 (and previous versions) are affected by a use-after-free vulnerability in the processing of annotations that could result in arbitrary code execution in the cont...
Adobe Acrobat Dc
Adobe Acrobat Reader Dc
Adobe Acrobat
Adobe Acrobat Reader
9.3
CVSSv2
CVE-2022-27797
Acrobat Reader DC versions 22.001.20085 (and previous versions), 20.005.3031x (and previous versions) and 17.012.30205 (and previous versions) are affected by a use-after-free vulnerability in the processing of annotations that could result in arbitrary code execution in the cont...
Adobe Acrobat Dc
Adobe Acrobat Reader Dc
Adobe Acrobat
Adobe Acrobat Reader
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »