Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2013-7285 Vulnerability in maven package com.thoughtworks.xstream:xstream CWE-78 CWE-78 Critical CVE-2013-7285 Vulnerability in maven package org.jbehave:jbehave-core CWE-78 CWE-78 Critical CVE-2013-7315 Vulnerability in maven package org.springframework:spring-web CWE-264 CWE-264 Critical CVE-2013-7377 Vulnerability in npm package codem-transcode CWE-77 CWE-77 Critical CVE-2013-7378 Vulnerability in npm package hubot-scripts CWE-74 CWE-74 Critical CVE-2013-7379 Vulnerability in npm package tomato CWE-287 CWE-287 Critical CVE-2013-7380 Vulnerability in npm package ep_imageconvert CWE-74 CWE-74 Critical CVE-2013-7381 Vulnerability in npm package libnotify CWE-74 CWE-74 Critical CVE-2013-7397 Vulnerability in maven package com.ning:async-http-client CWE-345 CWE-345 Critical CVE-2013-7398 Vulnerability in maven package com.ning:async-http-client CWE-345 CWE-345 Critical CVE-2014-0002 Vulnerability in maven package org.apache.camel:camel-core CWE-264 CWE-264 Critical CVE-2014-0003 Vulnerability in maven package org.apache.camel:camel-core CWE-264 CWE-264 Critical CVE-2014-0033 Vulnerability in maven package org.apache.tomcat:catalina CWE-20 CWE-20 Critical CVE-2014-0034 Vulnerability in maven package org.apache.cxf.services.sts:cxf-services-sts-core CWE-20 CWE-20 Critical CVE-2014-0035 Vulnerability in maven package org.apache.cxf:cxf-bundle CWE-310 CWE-310 Critical CVE-2014-0035 Vulnerability in maven package org.apache.cxf:cxf-bundle-minimal CWE-310 CWE-310 Critical CVE-2014-0035 Vulnerability in maven package org.apache.cxf:cxf-rt-ws-security CWE-310 CWE-310 Critical CVE-2014-0050 Vulnerability in maven package commons-fileupload:commons-fileupload CWE-264 CWE-264 Critical CVE-2014-0050 Vulnerability in maven package org.apache.jackrabbit:jackrabbit-standalone CWE-264 CWE-264 Critical CVE-2014-0050 Vulnerability in maven package org.apache.jackrabbit:oak-run CWE-264 CWE-264 Critical CVE-2014-0050 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-264 CWE-264 Critical CVE-2014-0054 Vulnerability in maven package org.springframework:spring-web CWE-352 CWE-352 Critical CVE-2014-0073 Vulnerability in npm package cordova-plugin-inappbrowser CWE-264 CWE-264 Critical CVE-2014-0074 Vulnerability in maven package org.apache.shiro:shiro-core CWE-287 CWE-287 Critical CVE-2014-0075 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-189 CWE-189 Critical CVE-2014-0075 Vulnerability in maven package org.apache.tomcat:coyote CWE-189 CWE-189 Critical CVE-2014-0075 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-189 CWE-189 Critical CVE-2014-0085 Vulnerability in maven package org.apache.zookeeper:zookeeper CWE-255 CWE-255 Critical CVE-2014-0086 Vulnerability in maven package org.richfaces.core:richfaces-core-impl CWE-20 CWE-20 Critical CVE-2014-0094 Vulnerability in maven package org.apache.struts:struts2-core Critical CVE-2014-0095 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-20 CWE-20 Critical CVE-2014-0096 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-264 CWE-264 Critical CVE-2014-0096 Vulnerability in maven package org.apache.tomcat:catalina CWE-264 CWE-264 Critical CVE-2014-0096 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-264 CWE-264 Critical CVE-2014-0099 Vulnerability in maven package org.apache.tomcat:coyote CWE-189 CWE-189 Critical CVE-2014-0099 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-189 CWE-189 Critical CVE-2014-0099 Vulnerability in maven package org.apache.tomcat:tomcat-util CWE-189 CWE-189 Critical CVE-2014-0107 Vulnerability in maven package xalan:xalan CWE-264 CWE-264 Critical CVE-2014-0109 Vulnerability in maven package org.apache.cxf:cxf-api CWE-399 CWE-399 Critical CVE-2014-0109 Vulnerability in maven package org.apache.cxf:cxf-bundle CWE-399 CWE-399 Critical CVE-2014-0109 Vulnerability in maven package org.apache.cxf:cxf-bundle-jaxrs CWE-399 CWE-399 Critical CVE-2014-0109 Vulnerability in maven package org.apache.cxf:cxf-bundle-minimal CWE-399 CWE-399 Critical CVE-2014-0110 Vulnerability in maven package org.apache.cxf:cxf-bundle CWE-399 CWE-399 Critical CVE-2014-0110 Vulnerability in maven package org.apache.cxf:cxf-bundle-minimal CWE-399 CWE-399 Critical CVE-2014-0110 Vulnerability in maven package org.apache.cxf:cxf-core CWE-399 CWE-399 Critical CVE-2014-0110 Vulnerability in maven package org.apache.cxf:cxf-rt-transports-http CWE-399 CWE-399 Critical CVE-2014-0111 Vulnerability in maven package org.apache.syncope:syncope-core CWE-94 CWE-94 Critical CVE-2014-0112 Vulnerability in maven package org.apache.struts.xwork:xwork-core CWE-264 CWE-264 Critical CVE-2014-0113 Vulnerability in maven package org.apache.struts:struts2-core CWE-264 CWE-264 Critical CVE-2014-0114 Vulnerability in maven package commons-beanutils:commons-beanutils CWE-20 CWE-20 Critical CVE-2014-0114 Vulnerability in maven package struts:struts CWE-20 CWE-20 Critical CVE-2014-0116 Vulnerability in maven package org.apache.struts:struts2-core CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-jasper CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:catalina CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:jasper CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:tomcat-catalina CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:tomcat-jasper CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:tomcat-util CWE-264 CWE-264 Critical CVE-2014-0119 Vulnerability in maven package org.apache.tomcat:tomcat-util-scan CWE-264 CWE-264 Critical CVE-2014-0120 Vulnerability in maven package io.hawt:hawtio-karaf-terminal CWE-352 CWE-352 Critical CVE-2014-0120 Vulnerability in maven package io.hawt:hawtio-system CWE-352 CWE-352 Critical CVE-2014-0121 Vulnerability in maven package io.hawt:hawtio-karaf-terminal CWE-287 CWE-287 Critical CVE-2014-0149 Vulnerability in maven package org.jboss.seam:jboss-seam-remoting CWE-79 CWE-79 Critical CVE-2014-0168 Vulnerability in maven package org.jolokia:jolokia-core CWE-352 CWE-352 Critical CVE-2014-0193 Vulnerability in maven package io.netty:netty-codec-http CWE-399 CWE-399 Critical CVE-2014-0193 Vulnerability in maven package org.onosproject:onlab-stc CWE-399 CWE-399 Critical CVE-2014-0193 Vulnerability in maven package org.onosproject:onos-netconf-provider-device CWE-399 CWE-399 Critical CVE-2014-0225 Vulnerability in maven package org.springframework:spring-oxm CWE-611 CWE-611 Critical CVE-2014-0225 Vulnerability in maven package org.springframework:spring-web CWE-611 CWE-611 Critical CVE-2014-0227 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-19 CWE-19 Critical CVE-2014-0227 Vulnerability in maven package org.apache.tomcat:coyote CWE-19 CWE-19 Critical CVE-2014-0227 Vulnerability in maven package org.apache.tomcat:tomcat-coyote CWE-19 CWE-19 Critical CVE-2014-0228 Vulnerability in maven package org.apache.hive.shims:hive-shims-common-secure CWE-284 CWE-284 Critical CVE-2014-0228 Vulnerability in maven package org.apache.hive:hive-common CWE-284 CWE-284 Critical 1...6789...47 7 / 47
