Vulnerabilities (CVE)

Filtered by vendor Oracle Subscribe

Filtered by product Oss Support Tools

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-27568	2 Json-smart Project, Oracle	7 Json-smart-v1, Json-smart-v2, Communications Cloud Native Core Policy and 4 more	2022-05-12	6.4 MEDIUM	9.1 CRITICAL
An issue was discovered in netplex json-smart-v1 through 2015-10-23 and json-smart-v2 through 2.4. An exception is thrown from a function, but it is not caught, as demonstrated by NumberFormatException. When it is not caught, it may cause programs using the library to crash or expose sensitive information.
CVE-2019-5482	6 Debian, Fedoraproject, Haxx and 3 more	17 Debian Linux, Fedora, Curl and 14 more	2021-11-03	7.5 HIGH	9.8 CRITICAL
Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3.