The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Sun GlassFish Enterprise Server

Apache Batik: information disclosure via AbstractDocument
An attacker can bypass access restrictions to data via AbstractDocument of Apache Batik, in order to obtain sensitive information...
cpuapr2019, cpujan2019, cpujul2018, cpujul2019, cpujul2020, cpuoct2018, CVE-2018-8013, DLA-1385-1, DSA-4215-1, FEDORA-2018-168af81706, FEDORA-2018-79792e0c64, USN-3661-1, VIGILANCE-VUL-26231
curl: buffer overflow via FTP Shutdown Response
An attacker can generate a buffer overflow via FTP Shutdown Response of curl, in order to trigger a denial of service, and possibly to run code...
cpujan2019, cpuoct2018, CVE-2018-1000300, FEDORA-2018-9dc7338487, FEDORA-2018-fa01002d7e, openSUSE-SU-2018:1624-1, SSA:2018-136-01, STORM-2019-002, USN-3648-1, VIGILANCE-VUL-26142
curl: out-of-bounds memory reading via RTSP
An attacker can force a read at an invalid address via RTSP of curl, in order to trigger a denial of service, or to obtain sensitive information...
cpujan2019, cpujul2019, cpuoct2018, CVE-2018-1000301, DLA-1379-1, DSA-2019-114, DSA-2020-289, DSA-4202-1, FEDORA-2018-9dc7338487, FEDORA-2018-fa01002d7e, ibm10743283, openSUSE-SU-2018:1344-1, openSUSE-SU-2018:1624-1, RHSA-2018:3157-01, RHSA-2018:3558-01, RHSA-2020:0544-01, RHSA-2020:0594-01, SSA:2018-136-01, SUSE-SU-2018:1327-1, SUSE-SU-2018:1478-1, USN-3648-1, VIGILANCE-VUL-26141
Spring Framework: privilege escalation via Spring Security Method
An attacker can bypass restrictions via Spring Security Method of Spring Framework, in order to escalate his privileges...
cpuapr2019, cpujan2019, cpujul2019, cpujul2020, cpuoct2018, CVE-2018-1258, DSA-2019-093, VIGILANCE-VUL-26089
Spring Framework: denial of service via Spring-messaging
An attacker can generate a fatal error via Spring-messaging of Spring Framework, in order to trigger a denial of service...
cpuapr2019, cpujan2019, cpujul2019, cpujul2020, cpuoct2018, CVE-2018-1257, VIGILANCE-VUL-26088
jackson-databind: code execution via Deserializing
An attacker can use a vulnerability via Deserializing of jackson-databind, in order to run code...
5048, 521680, 521682, 527583, cpuapr2019, cpujan2019, cpujul2018, cpuoct2018, CVE-2018-7489, DSA-2018-096, DSA-2018-102, DSA-2018-207, DSA-4190-1, KB0085481, RHSA-2018:1447-01, RHSA-2018:1448-01, RHSA-2018:1449-01, RHSA-2018:1450-01, RHSA-2018:1451-01, RHSA-2018:2088-01, RHSA-2018:2089-01, RHSA-2018:2090-01, VIGILANCE-VUL-26043
OpenSSL: information disclosure via RSA Constant Time Key Generation
An attacker can bypass access restrictions to data via RSA Constant Time Key Generation of OpenSSL, in order to obtain sensitive information...
bulletinjul2018, CERTFR-2018-AVI-511, CERTFR-2018-AVI-607, cpuapr2019, cpuapr2020, cpujan2019, cpujul2019, cpuoct2018, CVE-2018-0737, DLA-1449-1, DSA-2020-030, DSA-4348-1, DSA-4355-1, FEDORA-2019-00c25b9379, ibm10729805, ibm10743283, ibm10880781, JSA10919, JSA10990, openSUSE-SU-2018:2695-1, openSUSE-SU-2018:2957-1, openSUSE-SU-2018:3015-1, openSUSE-SU-2019:0152-1, openSUSE-SU-2019:1432-1, PAN-SA-2018-0015, RHSA-2018:3221-01, SA44073-2019-03, SSA:2018-226-01, SUSE-SU-2018:2486-1, SUSE-SU-2018:2492-1, SUSE-SU-2018:2683-1, SUSE-SU-2018:2928-1, SUSE-SU-2018:2965-1, SUSE-SU-2018:3864-1, SUSE-SU-2018:3864-2, SUSE-SU-2019:0197-1, SUSE-SU-2019:0512-1, SUSE-SU-2019:1553-1, TNS-2018-14, TNS-2018-17, TSB17568, USN-3628-1, USN-3628-2, USN-3692-1, USN-3692-2, VIGILANCE-VUL-25884
Spring Framework: information disclosure via Multipart Content
An attacker can bypass access restrictions to data via Multipart Content of Spring Framework, in order to obtain sensitive information...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1275, VIGILANCE-VUL-25828
Spring Framework: information disclosure via Multipart Content
An attacker can bypass access restrictions to data via Multipart Content of Spring Framework, in order to obtain sensitive information...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1272, KB0085481, RHSA-2018:2669-01, VIGILANCE-VUL-25785
Spring Framework: directory traversal via Spring MVC
An attacker can traverse directories via Spring MVC of Spring Framework, in order to read a file outside the service root path...
cpujan2019, cpujul2018, cpujul2019, cpuoct2018, CVE-2018-1271, KB0085481, RHSA-2018:2669-01, VIGILANCE-VUL-25784
Our database contains other pages. You can request a free trial to read them.

Display information about Sun GlassFish Enterprise Server: