Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xml security for java vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-1718
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, 5 update 35 and previous versions, and 1.4.2_37 and previous versions allows remote malicious users to affect availabil...
Oracle Jre
Oracle Jdk
Sun Jdk
Sun Jre
10
CVSSv2
CVE-2012-1716
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, and 5 update 35 and previous versions allows remote malicious users to affect confidentiality, integrity, and availabil...
Oracle Jre
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Oracle Jdk
Sun Jdk 1.6.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Oracle Jdk 1.6.0
Sun Jdk
Sun Jre 1.5.0
Sun Jdk 1.5.0
Sun Jre
5
CVSSv2
CVE-2021-21349
XStream is a Java library to serialize objects to XML and back again. In XStream before version 1.4.16, there is a vulnerability which may allow a remote malicious user to request data from internal resources that are not publicly available only by manipulating the processed inpu...
Xstream Project Xstream
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Banking Platform 2.4.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Portal 11.1.1.9.0
Oracle Communications Unified Inventory Management 7.3.2
Oracle Communications Unified Inventory Management 7.3.4
Oracle Communications Unified Inventory Management 7.3.5
Oracle Communications Unified Inventory Management 7.4.0
Oracle Communications Policy Management 12.5.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Banking Platform 2.7.1
Oracle Banking Platform 2.9.0
Oracle Banking Virtual Account Management 14.3.0
Oracle Communications Billing And Revenue Management Elastic Charging Engine 12.0.0.3.0
Oracle Business Activity Monitoring 12.2.1.3.0
Oracle Business Activity Monitoring 11.1.1.9.0
1 Github repository
4.3
CVSSv2
CVE-2016-5542
Unspecified vulnerability in Oracle Java SE 6u121, 7u111, 8u102; and Java SE Embedded 8u101 allows remote malicious users to affect integrity via vectors related to Libraries.
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
7.5
CVSSv2
CVE-2018-14720
FasterXML jackson-databind 2.x prior to 2.9.7 might allow malicious users to conduct external XML entity (XXE) attacks by leveraging failure to block unspecified JDK classes from polymorphic deserialization.
Fasterxml Jackson-databind 2.7.0
Fasterxml Jackson-databind
Fasterxml Jackson-databind 2.8.0
Fasterxml Jackson-databind 2.9.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Oracle Primavera Unifier 16.2
Oracle Banking Platform 2.5.0
Oracle Primavera Unifier 16.1
Oracle Jdeveloper 12.1.3.0.0
Oracle Retail Merchandising System 16.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Primavera Unifier
Oracle Communications Billing And Revenue Management 7.5
Oracle Communications Billing And Revenue Management 12.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2
Oracle Financial Services Analytical Applications Infrastructure 8.0.3
Oracle Financial Services Analytical Applications Infrastructure 8.0.4
Oracle Financial Services Analytical Applications Infrastructure 8.0.5
Oracle Financial Services Analytical Applications Infrastructure 8.0.6
Oracle Financial Services Analytical Applications Infrastructure 8.0.7
Oracle Banking Platform 2.6.0
5
CVSSv2
CVE-2012-1724
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, and 6 update 32 and previous versions, allows remote malicious users to affect availability, related to JAXP.
Oracle Jre
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Oracle Jdk
Sun Jdk 1.6.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Oracle Jdk 1.6.0
7.5
CVSSv2
CVE-2012-1711
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, 5 update 35 and previous versions, and 1.4.2_37 and previous versions allows remote malicious users to affect confident...
Oracle Jre
Oracle Jdk
Sun Jdk
Sun Jre
5
CVSSv2
CVE-2012-1719
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, 5 update 35 and previous versions, and 1.4.2_37 and previous versions allows remote malicious users to affect integrity...
Oracle Jre
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Oracle Jdk
Sun Jdk 1.6.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Oracle Jdk 1.6.0
Sun Jdk
Sun Jre 1.5.0
Sun Jdk 1.5.0
Sun Jre
Sun Jre 1.4.2 26
Sun Jdk 1.4.2 13
Sun Jdk 1.4.2 30
Sun Jre 1.4.2 7
Sun Jre 1.4.2 27
Sun Jdk 1.4.2 12
Sun Jdk 1.4.2 31
Sun Jre 1.4.2 16
Sun Jdk 1.4.2 3
Sun Jre 1.4.2 24
10
CVSSv2
CVE-2012-1725
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 update 4 and previous versions, 6 update 32 and previous versions, and 5 update 35 and previous versions allows remote malicious users to affect confidentiality, integrity, and availabil...
Oracle Jre
Oracle Jre 1.7.0
Oracle Jdk 1.7.0
Oracle Jdk
Sun Jdk 1.6.0
Sun Jre 1.6.0
Oracle Jre 1.6.0
Oracle Jdk 1.6.0
Sun Jdk
Sun Jre 1.5.0
Sun Jdk 1.5.0
Sun Jre
5
CVSSv2
CVE-2014-0416
Unspecified vulnerability in Oracle Java SE 5.0u55, 6u65, and 7u45; Java SE Embedded 7u45; and OpenJDK 7 allows remote malicious users to affect integrity via vectors related to JAAS. NOTE: the previous information is from the January 2014 CPU. Oracle has not commented on third-p...
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.7.0
Oracle Jdk 1.5.0
Oracle Jre 1.5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »