Vulnerability in the Oracle Financial Services Behavior Detection Platform product of Oracle Financial Services Applications (comp

Vulnerability in the Oracle Financial Services Behavior Detection Platform product of Oracle Financial Services Applications (comp

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. Th

In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. CKEditor4 prior to version 4.18.0 contains a vulnerability i

CKEditor4 is an open source what-you-see-is-what-you-get HTML editor. A vulnerability has been discovered in the core HTML process

jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.

There's a vulnerability within the Apache Xerces Java (XercesJ) XML parser when handling specially crafted XML document payloads.

Some components in Apache Kafka use Arrays.equals to validate a password or key, which is vulnerable to timing attacks that make

Vulnerability in the Advanced Networking Option component of Oracle Database Server. Supported versions that are affected are 12.1

A vulnerability was found in Hibernate-Validator. The SafeHtml validator annotation fails to properly sanitize payloads consisting

In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from anot