Where
-Infinity
0

Trending

Last week
Last month
Last year

Quarkus QuarkusQuarkus authorization bypass via semicolon path normalization inconsistency

Risk 57
Severity
8.8
First published (updated )
CVE-2026-39852

Quarkus Quarkus RESTQuarkus REST has potential worker thread starvation when HTTP connection is closed while waiting to write

Risk 43
Severity
7.5
First published (updated )
CVE-2025-66560

maven/io.quarkus:quarkus-smallrye-graphql-clientQuarkus: graphql operations over websockets bypass

Risk 48
Severity
9.1
EPSS
0.07%
First published (updated )
CVE-2023-6394

maven/io.quarkus:quarkus-keycloak-authorizationQuarkus: http security policy bypass

Risk 79
Severity
8.1
First published (updated )
CVE-2023-4853

redhat/candlepinIn FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, resource exhaustion can occur …

Risk 46
Severity
7.5
First published (updated )
CVE-2022-42003
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/eap7-jackson-databindIn FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a ch…

Risk 46
Severity
7.5
First published (updated )
CVE-2022-42004

redhat/rh-sso7-keycloakHTTP fails to validate against control chars in header names which may lead to HTTP request smuggling

Risk 39
Severity
6.5
First published (updated )
CVE-2021-43797

Oracle Financial Services Enterprise Case ManagementTiming Attack Vulnerability for Apache Kafka Connect and Clients

Risk 37
Severity
5.9
First published (updated )
CVE-2021-38153

Oracle Banking Digital ExperienceLast updated 24 July 2024

Risk 45
Severity
7.5
First published (updated )
CVE-2021-37137

Oracle Banking Digital ExperienceLast updated 24 July 2024

Risk 45
Severity
7.5
First published (updated )
CVE-2021-37136
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/eap7-apache-cxfCrafted input may cause the jsoup HTML and XML parser to get stuck, timeout, or throw unchecked exceptions

Risk 45
Severity
7.5
First published (updated )
CVE-2021-37714

redhat/eap7-wildfly-elytronA flaw was found in Wildfly Elytron where ScramServer may be susceptible to Timing Attack if enabled…

Risk 33
Severity
5.3
First published (updated )
CVE-2021-3642

IBM Cloud Pak for Business Automationblock repositories using http by default

Risk 69
Severity
9.1
First published (updated )
CVE-2021-26291

redhat/eap7-apache-commons-ioInput Validation

Risk 45
Severity
7.5
First published (updated )
CVE-2021-28170

redhat/eap7-elytron-webPossible request smuggling in HTTP/2 due missing validation of content-length

Risk 37
Severity
5.9
First published (updated )
CVE-2021-21409
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/eap7-nettyPossible request smuggling in HTTP/2 due missing validation

Risk 42
Severity
6.5
First published (updated )
CVE-2021-21295

redhat/eap7-resteasyLast updated 24 July 2024

Risk 28
Severity
5.3
First published (updated )
CVE-2021-20289

fasterxml jackson-dataformats-binaryDenial of Service (DoS)

Risk 45
Severity
7.5
First published (updated )
CVE-2020-28491

maven/org.mongodb:mongodb-driver-legacyMongoDB Java driver client-side field level encryption not verifying KMS host name

Risk 55
Severity
6.8
First published (updated )
CVE-2021-20328

Oracle Primavera UnifierInput Validation

Risk 28
Severity
5.3
First published (updated )
CVE-2020-13956
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat/eap7-hibernateSQL Injection

Risk 59
Severity
7.4
First published (updated )
CVE-2020-25638

Oracle Primavera UnifierTemp directory permission issue in Guava

Risk 18
Severity
3.3
First published (updated )
CVE-2020-8908

redhat/eap7-activemq-artemisLast updated 24 July 2024

Risk 28
Severity
5.3
First published (updated )
CVE-2020-25633

redhat/postgresql-jdbcXEE

Risk 70
Severity
7.7
First published (updated )
CVE-2020-13692

redhat/eap7-elytron-webInput Validation

Risk 28
Severity
5.3
First published (updated )
CVE-2020-10693
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle Banking PlatformXEE

Risk 46
Severity
7.5
First published (updated )
CVE-2020-25649

Oracle PeopleSoft Enterprise PT PeopleToolsLast updated 28 March 2025

Risk 43
Severity
7.5
First published (updated )
CVE-2017-18640

redhat JBoss Enterprise Application PlatformSQL Injection

Risk 40
Severity
6.5
First published (updated )
CVE-2019-14900

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203