Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2014-3667 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-200 CWE-200 Critical CVE-2014-3678 Vulnerability in maven package org.jvnet.hudson.plugins:monitoring CWE-79 CWE-79 Critical CVE-2014-3679 Vulnerability in maven package org.jvnet.hudson.plugins:monitoring Critical CVE-2014-3680 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-200 CWE-200 Critical CVE-2014-3681 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-79 CWE-79 Critical CVE-2014-3682 Vulnerability in maven package org.jbpm:jbpm-designer-backend Critical CVE-2014-3709 Vulnerability in maven package org.keycloak:keycloak-services CWE-352 CWE-352 Critical CVE-2014-3741 Vulnerability in npm package printer CWE-77 CWE-77 Critical CVE-2014-3742 Vulnerability in npm package hapi CWE-399 CWE-399 Critical CVE-2014-4172 Vulnerability in maven package org.jasig.cas:cas-client-core CWE-74 CWE-74 Critical CVE-2014-4611 Vulnerability in maven package net.jpountz.lz4:lz4 CWE-20 CWE-20 Critical CVE-2014-4671 Vulnerability in npm package hapi CWE-352 CWE-352 Critical CVE-2014-4715 Vulnerability in maven package net.jpountz.lz4:lz4 CWE-189 CWE-189 Critical CVE-2014-5075 Vulnerability in maven package org.igniterealtime.smack:smack CWE-310 CWE-310 Critical CVE-2014-5075 Vulnerability in maven package org.igniterealtime.smack:smack-tcp CWE-310 CWE-310 Critical CVE-2014-5325 Vulnerability in maven package org.directwebremoting:dwr CWE-200 CWE-200 Critical CVE-2014-5326 Vulnerability in maven package org.directwebremoting:dwr CWE-79 CWE-79 Critical CVE-2014-6394 Vulnerability in maven package org.webjars.npm:send CWE-22 CWE-22 Critical CVE-2014-6394 Vulnerability in npm package send CWE-22 CWE-22 Critical CVE-2014-6439 Vulnerability in maven package org.elasticsearch:elasticsearch CWE-79 CWE-79 Critical CVE-2014-7191 Vulnerability in maven package org.webjars.bower:qs CWE-399 CWE-399 Critical CVE-2014-7191 Vulnerability in maven package org.webjars.npm:qs CWE-399 CWE-399 Critical CVE-2014-7191 Vulnerability in maven package org.webjars:qs CWE-399 CWE-399 Critical CVE-2014-7191 Vulnerability in npm package qs CWE-399 CWE-399 Critical CVE-2014-7192 Vulnerability in npm package syntax-error CWE-94 CWE-94 Critical CVE-2014-7193 Vulnerability in npm package crumb CWE-284 CWE-284 Critical CVE-2014-7205 Vulnerability in npm package bassmaster CWE-94 CWE-94 Critical CVE-2014-7809 Vulnerability in maven package org.apache.struts:struts2-core CWE-352 CWE-352 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-core CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-el CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat.embed:tomcat-embed-jasper CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:el-api CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:jasper CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:tomcat-el-api CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.apache.tomcat:tomcat-jasper CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.mortbay.jasper:apache-el CWE-284 CWE-284 Critical CVE-2014-7810 Vulnerability in maven package org.mortbay.jasper:apache-jsp CWE-284 CWE-284 Critical CVE-2014-7816 Vulnerability in maven package io.undertow:undertow-core CWE-22 CWE-22 Critical CVE-2014-7816 Vulnerability in maven package io.undertow:undertow-servlet CWE-22 CWE-22 Critical CVE-2014-7827 Vulnerability in maven package org.picketlink:picketlink-federation CWE-264 CWE-264 Critical CVE-2014-7839 Vulnerability in maven package org.jboss.resteasy:resteasy-jaxrs CWE-20 CWE-20 Critical CVE-2014-8110 Vulnerability in maven package org.apache.activemq:activemq-web-console CWE-79 CWE-79 Critical CVE-2014-8114 Vulnerability in maven package org.uberfire:uberfire-server CWE-264 CWE-264 Critical CVE-2014-8115 Vulnerability in maven package org.kie:kie-drools-wb-distribution-wars CWE-264 CWE-264 Critical CVE-2014-8122 Vulnerability in maven package org.jboss.weld:weld-core CWE-362 CWE-362 Critical CVE-2014-8122 Vulnerability in maven package org.jboss.weld:weld-core-impl CWE-362 CWE-362 Critical CVE-2014-8125 Vulnerability in maven package org.drools:drools-core Critical CVE-2014-8152 Vulnerability in maven package org.apache.santuario:xmlsec CWE-254 CWE-254 Critical CVE-2014-8349 Vulnerability in maven package com.liferay.portal:portal-web CWE-79 CWE-79 Critical CVE-2014-9515 Vulnerability in maven package com.github.dozermapper:dozer-parent CWE-502 CWE-502 Critical CVE-2014-9527 Vulnerability in maven package org.apache.poi:poi-scratchpad CWE-399 CWE-399 Critical CVE-2014-9682 Vulnerability in npm package dns-sync CWE-77 CWE-77 Critical CVE-2014-125087 Vulnerability in maven package com.jamesmurty.utils:java-xmlbuilder CWE-611 CWE-611 Critical CVE-2015-0201 Vulnerability in maven package org.springframework:spring-websocket CWE-254 CWE-254 Critical CVE-2015-0225 Vulnerability in maven package org.apache.cassandra:cassandra-all CWE-77 CWE-77 Critical CVE-2015-0227 Vulnerability in maven package org.apache.ws.security:wss4j CWE-264 CWE-264 Critical CVE-2015-0227 Vulnerability in maven package org.apache.wss4j:wss4j-ws-security-dom CWE-264 CWE-264 Critical CVE-2015-0250 Vulnerability in maven package batik:batik-dom Critical CVE-2015-0250 Vulnerability in maven package batik:batik-transcoder Critical CVE-2015-0250 Vulnerability in maven package org.apache.xmlgraphics:batik-dom Critical CVE-2015-0250 Vulnerability in maven package org.apache.xmlgraphics:batik-transcoder Critical CVE-2015-0250 Vulnerability in maven package org.eclipse.birt.runtime.3_7_1:org.apache.batik.dom Critical CVE-2015-0250 Vulnerability in maven package org.eclipse.birt.runtime:org.apache.batik.dom Critical CVE-2015-0254 Vulnerability in maven package javax.servlet.jsp.jstl:jstl Critical CVE-2015-0254 Vulnerability in maven package javax.servlet:jstl Critical CVE-2015-0254 Vulnerability in maven package jstl:jstl Critical CVE-2015-0254 Vulnerability in maven package org.apache.taglibs:taglibs-standard Critical CVE-2015-0254 Vulnerability in maven package org.apache.taglibs:taglibs-standard-impl Critical CVE-2015-0254 Vulnerability in maven package taglibs:standard Critical CVE-2015-0263 Vulnerability in maven package org.apache.camel:camel-core Critical CVE-2015-0264 Vulnerability in maven package org.apache.camel:camel-core Critical CVE-2015-0277 Vulnerability in maven package org.picketlink:picketlink-federation CWE-284 CWE-284 Critical CVE-2015-0277 Vulnerability in maven package org.picketlink:picketlink-jbas7-single CWE-284 CWE-284 Critical CVE-2015-0279 Vulnerability in maven package org.richfaces:richfaces-a4j CWE-94 CWE-94 Critical CVE-2015-0886 Vulnerability in maven package org.mindrot:jbcrypt CWE-190 CWE-190 Critical 1...891011...47 9 / 47
