[UPDATE] [medium] Oracle Java SE: Multiple vulnerabilities
A remote, anonymous or authenticated attacker can exploit multiple vulnerabilities in Oracle Java SE to compromise confidentiality, integrity, and availability.
● Live advisory feed
Security advisories from 24 sources — CISA, CERT-EU, NCSC-UK, BSI, CERT-FR, NCSC-NL, JPCERT/CC, JVN, HKCERT, the Canadian Cyber Centre, NVD, GitHub, Microsoft, Cisco, Fortinet, Palo Alto Networks and more — normalized, translated to English and flagged against the CISA KEV catalog. One global feed for CSIRTs, SOCs and defenders.
A remote, anonymous or authenticated attacker can exploit multiple vulnerabilities in Oracle Java SE to compromise confidentiality, integrity, and availability.
A local attacker can exploit multiple vulnerabilities in the Linux Kernel to carry out unspecified attacks that could potentially cause a denial-of-service condition, disclose sensitive information, or lead to memory corruption.
An attacker can exploit multiple vulnerabilities in Flowise to execute arbitrary code, bypass security measures, disclose information, and manipulate files.
A remote, anonymous attacker can exploit multiple vulnerabilities in ImageMagick to conduct a Denial of Service attack.
A remote, authenticated attacker can exploit a vulnerability in etcd to bypass security measures.
An attacker can exploit multiple vulnerabilities in Snipe-IT to disclose information, escalate privileges, and manipulate data.
A remote attacker can exploit multiple vulnerabilities in the Linux Kernel to cause a denial of service condition or other effects.
An attacker can exploit multiple vulnerabilities in IBM WebSphere Application Server to bypass security measures and execute arbitrary code.
A remote, anonymous attacker can exploit a vulnerability in libxml2 to conduct a Denial of Service attack.
A remote, anonymous attacker can exploit multiple vulnerabilities in Red Hat Hardened Images RPMs to bypass security measures, cause a Denial-of-Service condition, disclose confidential information, or conduct unspecified attacks, including potential code execution.
A remote, authenticated attacker can exploit a vulnerability in MIT Kerberos to carry out an unspecified attack.
A remote, authenticated attacker can exploit a vulnerability in Rsync to bypass security measures.
An attacker can exploit multiple vulnerabilities in n8n to execute arbitrary code, bypass security measures, perform SQL injection and cross-site scripting attacks, manipulate data, cause a Denial of Service condition, or disclose sensitive information, which may allow further at…
An attacker can exploit multiple vulnerabilities in OpenSSL to execute arbitrary code, bypass security measures, disclose confidential information, manipulate data, or cause a denial-of-service condition.
A remote attacker can exploit multiple vulnerabilities in OpenSSH to execute code, escalate privileges, bypass security mechanisms, or achieve unspecified impacts.
A local attacker can exploit a vulnerability in sudo to elevate their privileges.
An attacker can exploit multiple vulnerabilities in Apache HTTP Server to execute arbitrary code, bypass security measures, conduct cross-site scripting attacks, alter and disclose data, cause a denial-of-service condition, or carry out other unspecified attacks.
An attacker can exploit multiple vulnerabilities in CUPS to bypass security measures, execute arbitrary code, gain elevated privileges, manipulate data, or cause a denial-of-service condition.
A remote, anonymous attacker can exploit a vulnerability in Red Hat Enterprise Linux to conduct a Denial of Service attack or potentially execute arbitrary code.
A remote, anonymous attacker can exploit a vulnerability in various HTTP/2 implementations to conduct a denial of service attack.
An attacker can exploit multiple vulnerabilities in X.Org X11 and Xwayland to disclose information, escalate privileges, conduct a denial of service attack, and perform an unspecified attack.
A local attacker can exploit multiple vulnerabilities in LibreOffice to conduct an unspecified attack.
A remote, anonymous attacker can exploit a vulnerability in Aqua Security Trivy to manipulate files.
An attacker can exploit multiple vulnerabilities in Red Hat Hardened Images RPMs to bypass security measures, escalate privileges, disclose confidential information, manipulate data, or cause a denial-of-service condition.
A remote, authenticated attacker can exploit multiple vulnerabilities in Snipe-IT to gain administrative privileges, bypass security measures, and manipulate data.
A remote, anonymous attacker can exploit a vulnerability in Aqua Security Trivy to conduct a denial of service attack.
A remote attacker can exploit multiple vulnerabilities in the Linux Kernel to bypass security measures, cause a denial-of-service condition, and achieve further unspecified impacts.
A remote, anonymous attacker can exploit a vulnerability in Podman to disclose information.
An attacker can exploit multiple vulnerabilities in the Linux Kernel to trigger a denial-of-service attack or conduct other unspecified attacks.
A local attacker can exploit multiple vulnerabilities in Linux Kernel to carry out an unspecified attack, potentially causing a denial-of-service condition or manipulating data.
A remote, anonymous attacker can exploit a vulnerability in Microsoft Dynamics 365 to conduct a Cross-Site Scripting attack.
A remote, anonymous attacker can exploit multiple vulnerabilities in HAProxy to manipulate files or cause a Denial of Service.
An attacker can exploit multiple vulnerabilities in Node.js to bypass security precautions, manipulate data, disclose confidential information, or cause a denial-of-service condition.
An attacker can exploit multiple vulnerabilities in Red Hat Enterprise Linux to conduct a denial of service attack, disclose confidential information, gain elevated permissions, or execute arbitrary code.
An attacker can exploit multiple vulnerabilities in Atlassian Bamboo, Bitbucket, Confluence, Fisheye, Crucible, Jira, and Jira Service Management to execute arbitrary code, gain elevated privileges, bypass security measures, manipulate data, disclose confidential information, or …
A remote, anonymous attacker can exploit multiple vulnerabilities in Foxit PDF Editor and Foxit PDF Reader to escalate privileges, cause a denial of service, execute code, and disclose information.
An attacker can exploit multiple vulnerabilities in X.Org X11 and Xwayland to cause a denial of service or potentially execute arbitrary program code.
A remote, anonymous attacker can exploit multiple vulnerabilities in Composer to bypass security mechanisms, write arbitrary files, or disclose information. Certain configurations may be required for successful exploitation.
A remote, authenticated attacker can exploit multiple vulnerabilities in Red Hat Enterprise Linux to execute arbitrary code or cause a denial-of-service condition.
A remote, anonymous attacker can exploit a vulnerability in GStreamer to bypass security measures.
A remote, anonymous attacker can exploit a vulnerability in Red Hat Enterprise Linux to execute arbitrary program code with the privileges of the service.
An attacker can exploit multiple vulnerabilities in Dell PowerProtect Data Domain to elevate their privileges to execute arbitrary program code, bypass security measures, conduct a Denial of Service attack, perform a Cross-Site Scripting attack, disclose information, and manipula…
An attacker can exploit multiple vulnerabilities in the Linux Kernel to conduct an unspecified attack, potentially triggering a denial-of-service condition, bypassing security measures, or causing memory corruption.
An attacker can exploit multiple vulnerabilities in Red Hat OpenShift Container Platform to execute arbitrary program code, bypass security measures, and manipulate data.
A local attacker can exploit a vulnerability in the Linux Kernel to gain administrator rights.
An attacker can exploit multiple vulnerabilities in OpenClaw to gain elevated privileges, execute arbitrary code, bypass security measures, disclose or manipulate data, or conduct other unspecified attacks.
An attacker can exploit multiple vulnerabilities in Google Chrome to conduct an unspecified attack, potentially including executing arbitrary code, causing a denial-of-service attack, bypassing security measures, and altering and disclosing data.
A local attacker can exploit multiple vulnerabilities in the Linux Kernel to bypass security measures, cause a denial of service, and potentially execute code.
An attacker can exploit multiple vulnerabilities in Apache Tomcat to bypass security measures, cause a Denial-of-Service condition, conduct Cross-Site Scripting attacks, or trigger other unspecified impacts.
An attacker can exploit multiple vulnerabilities in Keycloak to present false information, disclose information, conduct a Cross-Site Scripting attack, bypass security precautions, and manipulate files.