Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security access manager for enterprise single sign-on vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2023-21835
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). Supported versions that are affected are Oracle Java SE: 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. Easily exploitable v...
Oracle Graalvm 21.3.4
Oracle Graalvm 22.3.0
Oracle Graalvm 20.3.8
Oracle Jre 11.0.17
Oracle Jre 17.0.5
Oracle Jre 19.0.1
Oracle Jdk 11.0.17
Oracle Jdk 17.0.5
Oracle Jdk 19.0.1
Azul Zulu 11.60
Azul Zulu 13.52
Azul Zulu 15.44
Azul Zulu 17.38
Azul Zulu 19.30
1 Github repository
3.7
CVSSv3
CVE-2023-21843
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Sound). Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf, 11.0.17, 17.0.5, 19.0.1; Oracle GraalVM Enterprise Edition: 20.3.8, 21.3.4 and 22.3.0. ...
Oracle Graalvm 21.3.4
Oracle Graalvm 22.3.0
Oracle Graalvm 20.3.8
Oracle Jre 1.8.0
Oracle Jre 11.0.17
Oracle Jre 17.0.5
Oracle Jre 19.0.1
Oracle Jdk 11.0.17
Oracle Jdk 17.0.5
Oracle Jdk 19.0.1
Oracle Jdk 1.8.0
Azul Zulu 11.60
Azul Zulu 13.52
Azul Zulu 15.44
Azul Zulu 17.38
Azul Zulu 19.30
Azul Zulu 6.51
Azul Zulu 7.57
Azul Zulu 8.66
1 Github repository
7.5
CVSSv3
CVE-2022-42003
In FasterXML jackson-databind prior to 2.13.4.1 and 2.12.17.1, resource exhaustion can occur because of a lack of a check in primitive value deserializers to avoid deep wrapper array nesting, when the UNWRAP_SINGLE_VALUE_ARRAYS feature is enabled.
Fasterxml Jackson-databind
Quarkus Quarkus
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Oncommand Workflow Automation -
6 Github repositories
7.5
CVSSv3
CVE-2022-42004
In FasterXML jackson-databind prior to 2.13.4, resource exhaustion can occur because of a lack of a check in BeanDeserializer._deserializeFromArray to prevent use of deeply nested arrays. An application is vulnerable only with certain customized choices for deserialization.
Fasterxml Jackson-databind
Quarkus Quarkus
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Oncommand Workflow Automation -
4 Github repositories
7.8
CVSSv3
CVE-2021-3717
A flaw was found in Wildfly. An incorrect JBOSS_LOCAL_USER challenge location when using the elytron configuration may lead to JBOSS_LOCAL_USER access to all users on the machine. The highest threat from this vulnerability is to confidentiality, integrity, and availability. This ...
Redhat Single Sign-on -
Redhat Jboss Enterprise Application Platform -
Redhat Wildfly Core
Redhat Jboss Enterprise Application Platform 7.4
Redhat Jboss Enterprise Application Platform 7.3
3.7
CVSSv3
CVE-2022-21248
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Serialization). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Difficult to ...
Oracle Graalvm 21.3.0
Oracle Jre 17.0.1
Oracle Jre 1.7.0
Oracle Jre 11.0.13
Oracle Graalvm 20.3.4
Oracle Jre 1.8.0
Oracle Jdk 17.0.1
Oracle Jdk 1.7.0
Oracle Jdk 11.0.13
Oracle Jdk 1.8.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
Netapp E-series Santricity Os Controller
Netapp Cloud Insights Acquisition Unit -
5.3
CVSSv3
CVE-2022-21277
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: ImageIO). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerability ...
Oracle Graalvm 21.3.0
Oracle Jre 17.0.1
Oracle Jre 11.0.13
Oracle Graalvm 20.3.4
Oracle Jdk 17.0.1
Oracle Jdk 11.0.13
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
Netapp E-series Santricity Os Controller
Netapp Cloud Insights Acquisition Unit -
Netapp Cloud Secure Agent -
Netapp Santricity Storage Plugin -
5.3
CVSSv3
CVE-2022-21282
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JAXP). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vul...
Oracle Graalvm 21.3.0
Oracle Jre 17.0.1
Oracle Jre 1.7.0
Oracle Jre 11.0.13
Oracle Graalvm 20.3.4
Oracle Jre 1.8.0
Oracle Jdk 17.0.1
Oracle Jdk 1.7.0
Oracle Jdk 11.0.13
Oracle Jdk 1.8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
5.3
CVSSv3
CVE-2022-21283
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Oracle Java SE: 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable vulnerabilit...
Oracle Graalvm 21.3.0
Oracle Jre 17.0.1
Oracle Jre 11.0.13
Oracle Graalvm 20.3.4
Oracle Jdk 17.0.1
Oracle Jdk 11.0.13
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 34
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
Netapp E-series Santricity Os Controller
Netapp Cloud Insights Acquisition Unit -
5.3
CVSSv3
CVE-2022-21291
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Oracle Java SE: 7u321, 8u311, 11.0.13, 17.0.1; Oracle GraalVM Enterprise Edition: 20.3.4 and 21.3.0. Easily exploitable ...
Oracle Graalvm 21.3.0
Oracle Jre 17.0.1
Oracle Jre 1.7.0
Oracle Jre 11.0.13
Oracle Graalvm 20.3.4
Oracle Jre 1.8.0
Oracle Jdk 17.0.1
Oracle Jdk 1.7.0
Oracle Jdk 11.0.13
Oracle Jdk 1.8.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp E-series Santricity Storage Manager -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp Santricity Unified Manager -
Netapp E-series Santricity Web Services -
Netapp 7-mode Transition Tool -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »