Java - CVE CyberSecurity Database News (Page 64)

CVE-2023-3223 - How a Sneaky Multipart Upload Flaw in Undertow Could Crash Your Java Server

Sep 27, 2023 Java Red Hat Red Hat Single Sign-On 7.6 for RHEL 9

CVE-2023-3223 - How a Sneaky Multipart Upload Flaw in Undertow Could Crash Your Java Server

--- Introduction Did you know a simple tweak to an HTTP request could bring some Java servers to their knees? That’s what happened with

Sep 25, 2023 Exploit Java Red Hat Red Hat Decision Manager 7

CVE-2022-4244 - How Directory Traversal Exploit in codeplex-codehaus Puts Your Files at Risk

--- Introduction In 2022, a serious security flaw—CVE-2022-4244—was uncovered in the codeplex-codehaus project, a collection of open-source tools popular for software development and

CVE-2022-4245 - The Hidden Danger in Codehaus-Plexus XmlWriterUtil’s Comment Handling

Sep 25, 2023 Exploit Java Apache Red Hat Red Hat Enterprise Linux 9

CVE-2022-4245 - The Hidden Danger in Codehaus-Plexus XmlWriterUtil’s Comment Handling

In late 2022, a subtle but potentially serious vulnerability was uncovered in a widely used Java utility library, Codehaus-Plexus, specifically in the XML utilities it

CVE-2023-43642 - How a Missing Bound Check in snappy-java Can Crash Your Apps

Sep 25, 2023 Exploit Java Google xerial snappy-java

CVE-2023-43642 - How a Missing Bound Check in snappy-java Can Crash Your Apps

When it comes to Java data compression libraries, snappy-java is a household name. It brings Google's lightning-fast Snappy compression algorithm from C++ to

Sep 20, 2023 RCE Exploit Java Jenkins Project Jenkins

CVE-2023-43496 - How Jenkins Plugin Installation From URL Can Lead to Remote Code Execution

Jenkins is a widely used automation server trusted by thousands of companies and individual developers for continuous integration and deployment. But, like all complex software,