Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
glassfish server vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2015-4744
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 2.1.1, 3.0.1, and 3.1.2; and the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6.0, 12.1.1.0, 12.1.2.0, and 12.1.3.0 allows remote malicious users to affect integrit...
Oracle Fusion Middleware 10.3.6
Oracle Fusion Middleware 12.1.1
Oracle Fusion Middleware 12.1.2.0.0
Oracle Fusion Middleware 12.1.3.0.0
Oracle Fusion Middleware 2.1.1
Oracle Fusion Middleware 3.1.2
Oracle Fusion Middleware 3.0.1
2.4
CVSSv2
CVE-2010-2397
Unspecified vulnerability in Oracle Sun Java System Application Server 8.0, 8.1, and 8.2; and GlassFish Enterprise Server 2.1.1; allows local users to affect confidentiality and integrity, related to the GUI.
Oracle Java System Application Server 8.1
Oracle Java System Application Server 8.2
Oracle Java System Application Server 8.0
Oracle Glassfish Server 2.1.1
2.1
CVSSv2
CVE-2017-3239
Vulnerability in the Oracle GlassFish Server component of Oracle Fusion Middleware (subcomponent: Administration). Supported versions that are affected are 3.0.1 and 3.1.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Orac...
Oracle Glassfish Server 3.1.2
Oracle Glassfish Server 3.0.1
2.1
CVSSv2
CVE-2011-3564
Unspecified vulnerability in Oracle GlassFish Enterprise Server 2.1.1 allows local users to affect confidentiality via unknown vectors related to Administration.
Oracle Sun Glassfish Enterprise Server 2.1.1
1.8
CVSSv2
CVE-2016-0453
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Fusion Middleware 3.1.2 allows remote malicious users to affect integrity via unknown vectors related to Embedded Server.
Oracle Fusion Middleware 3.1.2
NA
CVE-2023-5763
In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote malicious users to load malicious code on the server via access to insecure ORB listeners.
Eclipse Glassfish
NA
CVE-2022-26119
A improper authentication vulnerability in Fortinet FortiSIEM prior to 6.5.0 allows a local attacker with CLI access to perform operations on the Glassfish server directly via a hardcoded password.
Fortinet Fortisiem 6.4.1
Fortinet Fortisiem 6.4.0
Fortinet Fortisiem
Fortinet Fortisiem 6.2.1
Fortinet Fortisiem 6.2.0
Fortinet Fortisiem 5.4.0
Fortinet Fortisiem 5.2.2
Fortinet Fortisiem 5.2.1
Fortinet Fortisiem 5.0.0
Fortinet Fortisiem 5.0.1
NA
CVE-2011-15113
Core Security Technologies Advisory - The Administration Console of Oracle GlassFish Server, which is listening by default on port 4848/TCP, is prone to an authentication bypass vulnerability. This vulnerability can be exploited by remote attackers to access sensitive data on the...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6