Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2017-5641 Vulnerability in maven package org.apache.flex.blazeds:blazeds CWE-502 CWE-502 Critical CVE-2017-5641 Vulnerability in maven package org.apache.flex.blazeds:flex-messaging-core CWE-502 CWE-502 Critical CVE-2017-5645 Vulnerability in maven package org.apache.logging.log4j:log4j CWE-502 CWE-502 Critical CVE-2017-5645 Vulnerability in maven package org.apache.logging.log4j:log4j-core CWE-502 CWE-502 Critical CVE-2017-5648 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-668 CWE-668 Critical CVE-2017-5648 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-668 CWE-668 Critical CVE-2017-5651 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core Critical CVE-2017-5651 Vulnerability in maven package org.apache.tomcat:tomcat-coyote Critical CVE-2017-5657 Vulnerability in maven package org.apache.archiva:archiva CWE-352 CWE-352 Critical CVE-2017-5878 Vulnerability in maven package org.red5:red5-server CWE-502 CWE-502 Critical CVE-2017-5929 Vulnerability in maven package ch.qos.logback:logback-access CWE-502 CWE-502 Critical CVE-2017-5929 Vulnerability in maven package ch.qos.logback:logback-classic CWE-502 CWE-502 Critical CVE-2017-5929 Vulnerability in maven package ch.qos.logback:logback-core CWE-502 CWE-502 Critical CVE-2017-5941 Vulnerability in npm package node-serialize CWE-502 CWE-502 Critical CVE-2017-5954 Vulnerability in npm package serialize-to-js CWE-502 CWE-502 Critical CVE-2017-7474 Vulnerability in npm package keycloak-auth-utils Critical CVE-2017-7525 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-184 CWE-184 Critical CVE-2017-7556 Vulnerability in maven package io.hawt:project CWE-352 CWE-352 Critical CVE-2017-7657 Vulnerability in maven package org.eclipse.jetty:jetty-client CWE-190 CWE-190 Critical CVE-2017-7658 Vulnerability in maven package org.eclipse.jetty:jetty-server CWE-444 CWE-444 Critical CVE-2017-7661 Vulnerability in maven package org.apache.cxf.fediz:fediz-jetty8 CWE-352 CWE-352 Critical CVE-2017-7661 Vulnerability in maven package org.apache.cxf.fediz:fediz-jetty9 CWE-352 CWE-352 Critical CVE-2017-7661 Vulnerability in maven package org.apache.cxf.fediz:fediz-oidc CWE-352 CWE-352 Critical CVE-2017-7661 Vulnerability in maven package org.apache.cxf.fediz:fediz-spring CWE-352 CWE-352 Critical CVE-2017-7661 Vulnerability in maven package org.apache.cxf.fediz:fediz-spring2 CWE-352 CWE-352 Critical CVE-2017-7662 Vulnerability in maven package org.apache.cxf.fediz:fediz-cxf CWE-352 CWE-352 Critical CVE-2017-7664 Vulnerability in maven package org.apache.openmeetings:openmeetings-server CWE-611 CWE-611 Critical CVE-2017-7666 Vulnerability in maven package org.apache.openmeetings:openmeetings-web CWE-352 CWE-352 Critical CVE-2017-7673 Vulnerability in maven package org.apache.openmeetings:openmeetings-web CWE-326 CWE-326 Critical CVE-2017-7676 Vulnerability in maven package org.apache.ranger:ranger CWE-20 CWE-20 Critical CVE-2017-7681 Vulnerability in maven package org.apache.openmeetings:openmeetings-server CWE-89 CWE-89 Critical CVE-2017-7682 Vulnerability in maven package org.apache.openmeetings:openmeetings-web Critical CVE-2017-8028 Vulnerability in maven package org.springframework.ldap:spring-ldap-core CWE-287 CWE-287 Critical CVE-2017-8045 Vulnerability in maven package org.springframework.amqp:spring-amqp CWE-502 CWE-502 Critical CVE-2017-8046 Vulnerability in maven package org.springframework.boot:spring-boot-starter-data-rest CWE-20 CWE-20 Critical CVE-2017-8046 Vulnerability in maven package org.springframework.data:spring-data-rest-webmvc CWE-20 CWE-20 Critical CVE-2017-9096 Vulnerability in maven package com.itextpdf:forms CWE-611 CWE-611 Critical CVE-2017-9096 Vulnerability in maven package com.itextpdf:itextpdf CWE-611 CWE-611 Critical CVE-2017-9096 Vulnerability in maven package com.itextpdf:kernel CWE-611 CWE-611 Critical CVE-2017-9791 Vulnerability in maven package org.apache.struts:struts2-struts1-plugin CWE-20 CWE-20 Critical CVE-2017-9799 Vulnerability in maven package org.apache.storm:storm Critical CVE-2017-9805 Vulnerability in maven package org.apache.struts:struts2-core CWE-502 CWE-502 Critical CVE-2017-11429 Vulnerability in npm package saml2-js CWE-287 CWE-287 Critical CVE-2017-11467 Vulnerability in maven package com.orientechnologies:orientdb-core CWE-269 CWE-269 Critical CVE-2017-12161 Vulnerability in maven package org.keycloak:keycloak-core CWE-640 CWE-640 Critical CVE-2017-12611 Vulnerability in maven package org.apache.struts:struts2-core CWE-20 CWE-20 Critical CVE-2017-12615 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-434 CWE-434 Critical CVE-2017-12617 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-434 CWE-434 Critical CVE-2017-12617 Vulnerability in maven package org.apache.tomcat:catalina CWE-434 CWE-434 Critical CVE-2017-12617 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-434 CWE-434 Critical CVE-2017-12617 Vulnerability in maven package org.apache.tomcat:tomcat-util CWE-434 CWE-434 Critical CVE-2017-12619 Vulnerability in maven package org.apache.zeppelin:zeppelin CWE-384 CWE-384 Critical CVE-2017-12620 Vulnerability in maven package org.apache.opennlp:opennlp-tools CWE-611 CWE-611 Critical CVE-2017-12621 Vulnerability in maven package commons-jelly:commons-jelly CWE-611 CWE-611 Critical CVE-2017-12629 Vulnerability in maven package org.apache.lucene:lucene-queryparser CWE-611 CWE-611 Critical CVE-2017-12629 Vulnerability in maven package org.apache.solr:solr-core CWE-611 CWE-611 Critical CVE-2017-12631 Vulnerability in maven package org.apache.cxf.fediz:fediz-spring CWE-352 CWE-352 Critical CVE-2017-12631 Vulnerability in maven package org.apache.cxf.fediz:fediz-spring2 CWE-352 CWE-352 Critical CVE-2017-12631 Vulnerability in maven package org.apache.cxf.fediz:fediz-spring3 CWE-352 CWE-352 Critical CVE-2017-12633 Vulnerability in maven package org.apache.camel:camel-hessian CWE-502 CWE-502 Critical CVE-2017-12634 Vulnerability in maven package org.apache.camel:camel-castor CWE-502 CWE-502 Critical CVE-2017-12795 Vulnerability in maven package org.openmrs.module:htmlformentry-omod CWE-20 CWE-20 Critical CVE-2017-12881 Vulnerability in maven package org.springframework.batch:spring-batch-admin CWE-352 CWE-352 Critical CVE-2017-15089 Vulnerability in maven package org.infinispan:infinispan-commons CWE-502 CWE-502 Critical CVE-2017-15095 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2017-15681 Vulnerability in maven package org.craftercms:crafter-studio CWE-22 CWE-22 Critical CVE-2017-15683 Vulnerability in maven package org.craftercms:crafter-studio CWE-91 CWE-91 Critical CVE-2017-15685 Vulnerability in maven package org.craftercms:crafter-studio CWE-91 CWE-91 Critical CVE-2017-15692 Vulnerability in maven package org.apache.geode:geode-core CWE-502 CWE-502 Critical CVE-2017-15695 Vulnerability in maven package org.apache.geode:geode-core CWE-863 CWE-863 Critical CVE-2017-15697 Vulnerability in maven package org.apache.nifi:nifi-jetty CWE-20 CWE-20 Critical CVE-2017-15697 Vulnerability in maven package org.apache.nifi:nifi-web-error CWE-20 CWE-20 Critical CVE-2017-15697 Vulnerability in maven package org.apache.nifi:nifi-web-utils CWE-20 CWE-20 Critical CVE-2017-15700 Vulnerability in maven package org.apache.sling:org.apache.sling.auth.core CWE-200 CWE-200 Critical CVE-2017-15702 Vulnerability in maven package org.apache.qpid:qpid-broker Critical 1...14151617...47 15 / 47
