Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
payara payara vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-45129
Payara prior to 2022-11-04, when deployed to the root context, allows malicious users to visit META-INF and WEB-INF, a different vulnerability than CVE-2022-37422. This affects Payara Platform Community prior to 4.1.2.191.38, 5.x prior to 5.2022.4, and 6.x prior to 6.2022.1, and ...
Payara Payara
6.1
CVSSv3
CVE-2023-41699
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Payara Platform Payara Server, Micro and Embedded (Servlet Implementation modules) allows Redirect Access to Libraries.This issue affects Payara Server, Micro and Embedded: from 5.0.0 prior to 5.57.0, ...
Payara Payara
7.5
CVSSv3
CVE-2022-37422
Payara up to and including 5.2022.2 allows directory traversal without authentication. This affects Payara Server, Payara Micro, and Payara Server Embedded.
Payara Payara
9.8
CVSSv3
CVE-2023-28462
A JNDI rebind operation in the default ORB listener in Payara Server 4.1.2.191 (Enterprise), 5.20.0 and newer (Enterprise), and 5.2020.1 and newer (Community), when Java 1.8u181 and previous versions is used, allows remote malicious users to load malicious code on the server once...
Payara Payara Server
7.5
CVSSv3
CVE-2021-41381
Payara Micro Community 5.2021.6 and below allows Directory Traversal.
Payara Micro Community
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started