Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Versions

9.2.1
73

Oracle JREThe original fix for CVE-2025-30749 was found to be incomplete. In particular, the CGGlyphImages_Get…

Risk 75
Severity
8.1
First published (updated )
CVE-2025-50106

Oracle JRESeveral scenarios of heap corruption were observed for Graphics2D.drawString(String,float,float) wit…

Risk 75
Severity
8.1
First published (updated )
CVE-2025-30749

Apache Commons FileuploadApache Commons FileUpload, Apache Commons FileUpload: FileUpload DoS via part headers

Risk 47
Severity
7.5
First published (updated )
CVE-2025-48976

Apache Commons BeanutilsApache Commons BeanUtils: PropertyUtilsBean does not suppresses an enum's declaredClass property by default

Risk 59
Severity
8.8
EPSS
0.26%
First published (updated )
CVE-2025-48734

Eclipse Openj9Buffer Overflow in Eclipse OpenJ9

Risk 51
Severity
7.8
EPSS
0.02%
First published (updated )
CVE-2025-4447
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Oracle JRELast updated 6 May 2025

Risk 56
Severity
7.4
First published (updated )
CVE-2025-21587

Eclipse OMREclipse OMR: Buffer overflow vulnerability

Risk 69
Severity
7.8
First published (updated )
CVE-2025-1471

maven/com.thoughtworks.xstream:xstreamXStream is vulnerable to a Denial of Service attack due to stack overflow from a manipulated binary input stream

Risk 46
Severity
7.5
First published (updated )
CVE-2024-47072

Eclipse JettyJetty DOS vulnerability on DosFilter

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2024-9823

NetApp Ontap Tools Vmware VsphereApache Commons IO: Possible denial of service attack on untrusted input to XmlStreamReader

Risk 47
Severity
7.5
First published (updated )
CVE-2024-47554
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

maven/org.apache.cxf:cxf-rt-transports-httpApache CXF: Unrestricted memory consumption in CXF HTTP clients

Risk 47
Severity
7.5
First published (updated )
CVE-2024-41172

maven/org.apache.cxf:cxf-rt-rs-security-joseApache CXF Denial of Service vulnerability in JOSE

Risk 47
Severity
7.5
First published (updated )
CVE-2024-32007

Oracle JDKInfoleak

Risk 59
Severity
7.4
First published (updated )
CVE-2024-21147

IBM Java Software Development KitIBM SDK, Java Technology Edition denial of service

Risk 46
Severity
7.5
First published (updated )
CVE-2023-38264

Jasper JasPerIn Jasper 4.2.2 the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assert…

Risk 31
Severity
7.5
EPSS
0.04%
First published (updated )
CVE-2024-31744
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Eclipse JettyJetty connection leaking on idle timeout when TCP congested

Risk 46
Severity
7.5
First published (updated )
CVE-2024-22201

Oracle OpenJDKUse After Free

Risk 42
Severity
7.4
EPSS
0.08%
First published (updated )
CVE-2024-20952

Oracle JDKLast updated 11 November 2024

Risk 42
Severity
7.4
EPSS
0.08%
First published (updated )
CVE-2024-20918

maven/org.eclipse.jetty.http2:http2-hpackHTTP/2 HPACK integer overflow and buffer allocation

Risk 46
Severity
7.5
First published (updated )
CVE-2023-36478

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

Risk 65
Severity
7.5
Exploited
Zeroday
First published (updated )
CVE-2023-44487
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

IBM TXSeries for MultiplatformIBM GSKit-Crypto information disclosure

Risk 45
Severity
7.5
First published (updated )
CVE-2023-33850

Apache XML Graphics BatikApache XML Graphics Batik: Information disclosure vulnerability

Risk 56
Severity
7.1
First published (updated )
CVE-2022-44729

F5 BIG-IP (APM)Apache Commons FileUpload, Apache Tomcat: FileUpload DoS with excessive parts

Risk 46
Severity
7.5
First published (updated )
CVE-2023-24998

redhat/candlepinIn FasterXML jackson-databind before versions 2.13.4.1 and 2.12.17.1, resource exhaustion can occur …

Risk 46
Severity
7.5
First published (updated )
CVE-2022-42003

redhat/eap7-jackson-databindIn FasterXML jackson-databind before 2.13.4, resource exhaustion can occur because of a lack of a ch…

Risk 46
Severity
7.5
First published (updated )
CVE-2022-42004
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

ubuntu/batikJar url should be blocked by DefaultScriptSecurity

Risk 46
Severity
7.5
First published (updated )
CVE-2022-40146

fasterxml jackson-databindThe com.fasterxml.jackson.core:jackson-databind library before version 2.9.10.4 is vulnerable to an …

Risk 79
Severity
8.1
First published (updated )
CVE-2020-10650

Oracle Financial Services Enterprise Case ManagementInfinite loop within Apache XercesJ xml parser

Risk 41
Severity
7.1
First published (updated )
CVE-2022-23437

Eclipse PlatformIn versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate activ…

Risk 69
Severity
7.8
First published (updated )
CVE-2020-27225

maven/com.fasterxml.jackson.core:jackson-databindSSRF

Risk 63
Severity
8.3
First published (updated )
CVE-2021-20190
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203