78389675-0358-46e5-81c7-04186dbfb8a8
Format: CycloneDX
In Eclipse Parsson before 1.0.4 and 1.1.3, a document with a large depth of nested objects can allow...
Authorization Bypass Through User-Controlled Key vulnerability in Apache ZooKeeper. If SASL Quorum P...
A cleverly devised username might bypass LDAP authentication checks. In LDAP-authenticated Derby in...
The ObjectSerializationDecoder in Apache MINA uses Java’s native deserialization protocol to process...
Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConf...
pgjdbc, the PostgreSQL JDBC Driver, allows attacker to inject SQL if using PreferQueryMode=SIMPLE. N...
Schema parsing in the Java SDK of Apache Avro 1.11.3 and previous versions allows bad actors to exec...
In Apache Hadoop, The unTar function uses unTarUsingJava function on Windows and the built-in tar ut...
A series of deserialization vulnerabilities have been discovered in Codehaus 1.9.x implemented in EA...
The AsyncHttpClient (AHC) library allows Java applications to easily execute HTTP requests and async...