Search CVE reports
1 – 10 of 42201 results
Apache Artemis before version 2.52.0 is affected by an authentication bypass flaw which allows reading all messages exchanged via the broker and injection of new message ( CVE-2026-27446 https://www.cve.org/CVERecord ). Since...
1 affected package
artemis
| Package | 18.04 LTS |
|---|---|
| artemis | Needs evaluation |
Incorrect Authorization (CWE-863) vulnerability in Apache Artemis, Apache ActiveMQ Artemis exists when an application using the OpenWire protocol attempts to create a non-durable JMS topic subscription on an address that doesn't...
1 affected package
artemis
| Package | 18.04 LTS |
|---|---|
| artemis | Needs evaluation |
Out-of-bounds Read vulnerability in fabiangreffrath woof.This issue affects woof: before woof_15.3.0.
2 affected packages
woof, woof-doom
| Package | 18.04 LTS |
|---|---|
| woof | Needs evaluation |
| woof-doom | — |
A flaw was found in Undertow. A remote attacker could exploit this vulnerability by sending an HTTP GET request containing multipart/form-data content. If the underlying application processes parameters using methods like...
1 affected package
undertow
| Package | 18.04 LTS |
|---|---|
| undertow | Needs evaluation |
Integer Overflow or Wraparound vulnerability in InsightSoftwareConsortium ITK (Modules/ThirdParty/Expat/src/expat modules).This issue affects ITK: before 2.7.1.
23 affected packages
smart, expat, apache2, apr-util, cmake...
| Package | 18.04 LTS |
|---|---|
| smart | Needs evaluation |
| expat | Needs evaluation |
| apache2 | Not affected |
| apr-util | Not affected |
| cmake | Not affected |
| ghostscript | Not affected |
| texlive-bin | Not affected |
| xmlrpc-c | Needs evaluation |
| vnc4 | Needs evaluation |
| wbxml2 | Needs evaluation |
| swish-e | Needs evaluation |
| insighttoolkit4 | Needs evaluation |
| cadaver | Needs evaluation |
| gdcm | Needs evaluation |
| ayttm | — |
| cableswig | — |
| coin3 | Needs evaluation |
| matanza | Needs evaluation |
| tdom | Needs evaluation |
| vtk | — |
| firefox | — |
| thunderbird | — |
| libxmltok | Needs evaluation |
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in OSGeo gdal (frmts/zlib/contrib/infback9 modules). This vulnerability is associated with program files inftree9.C. This issue affects gdal:...
1 affected package
gdal
| Package | 18.04 LTS |
|---|---|
| gdal | Needs evaluation |
bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt() password hashing algorithm. Prior to version 3.1.22, an integer overflow in the Java BCrypt implementation for JRuby can cause zero iterations in the strengthening loop. ...
1 affected package
bcrypt
| Package | 18.04 LTS |
|---|---|
| bcrypt | Needs evaluation |
Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Storage's `DiskService#delete_prefixed` passes blob keys directly to `Dir.glob` without...
1 affected package
rails
| Package | 18.04 LTS |
|---|---|
| rails | Needs evaluation |
Active Storage allows users to attach cloud and local files in Rails applications. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Storage's `DiskService#path_for` does not validate that the resolved filesystem path...
1 affected package
rails
| Package | 18.04 LTS |
|---|---|
| rails | Needs evaluation |
Active Support is a toolkit of support libraries and Ruby core extensions extracted from the Rails framework. Prior to versions 8.1.2.1, 8.0.4.1, and 7.2.3.1, Active Support number helpers accept strings containing...
1 affected package
rails
| Package | 18.04 LTS |
|---|---|
| rails | Needs evaluation |