| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-1656 | When the LDAP connector is started with StartTLS configured, LDAP BIND credentials are transmitted insecurely, prior to establishing the TLS connection. | ForgeRock Inc. | OpenIDM and Java Remote Connector Server (RCS) | High | 7.5 | 2023-03-29 19:55:14 | Deep Dive |
| CVE-2023-1609 | Zhong Bang CRMEB Java save cross site scripting | Zhong Bang | CRMEB Java | Low | 3.5 | 2023-03-23 20:00:05 | Deep Dive |
| CVE-2023-1608 | Zhong Bang CRMEB Java list getAdminList sql injection | Zhong Bang | CRMEB Java | Medium | 6.3 | 2023-03-23 19:31:04 | Deep Dive |
| CVE-2023-27268 | Improper Access Control in SAP NetWeaver AS Java (Object Analyzing Service) | SAP | NetWeaver AS Java (Object Analyzing Service) | Medium | 5.3 | 2023-03-14 04:57:30 | Deep Dive |
| CVE-2023-26460 | Improper Access Control in SAP NetWeaver AS Java (Cache Management Service) | SAP | NetWeaver AS for Java | Medium | 5.3 | 2023-03-14 04:56:09 | Deep Dive |
| CVE-2023-24526 | Improper Access Control in SAP NetWeaver AS Java (Classload Service) | SAP | NetWeaver AS Java for Classload Service | Medium | 5.3 | 2023-03-14 04:38:04 | Deep Dive |
| CVE-2023-23857 | Improper Access Control in SAP NetWeaver AS for Java | SAP | NetWeaver AS for Java | Critical | 9.9 | 2023-03-14 04:36:33 | Deep Dive |
| CVE-2023-1165 | Zhong Bang CRMEB Java list sql injection | Zhong Bang | CRMEB Java | Medium | 5.5 | 2023-03-03 07:00:49 | Deep Dive |
| CVE-2023-0511 | AM Java Policy Agent path traversal | ForgeRock | Access Management Java Policy Agent | Critical | 9.1 | 2023-02-28 16:26:20 | Deep Dive |
| CVE-2014-125087 | java-xmlbuilder xml external entity reference | - | java-xmlbuilder | Medium | 5.5 | 2023-02-19 16:31:03 | Deep Dive |
| CVE-2023-21843 | Oracle Java SE 安全漏洞 | Oracle Corporation | Java SE JDK and JRE | Low | 3.7 | 2023-01-17 23:35:11 | Deep Dive |
| CVE-2023-21835 | Oracle Java SE 安全漏洞 | Oracle Corporation | Java SE JDK and JRE | Medium | 5.3 | 2023-01-17 23:35:09 | Deep Dive |
| CVE-2023-21830 | Oracle Java SE 安全漏洞 | Oracle Corporation | Java SE JDK and JRE | Medium | 5.3 | 2023-01-17 23:35:07 | Deep Dive |
| CVE-2022-24913 | java-merge-sort 安全漏洞 | - | com.fasterxml.util:java-merge-sort | Medium | 5.5 | 2023-01-12 05:00:02 | Deep Dive |
| CVE-2023-0017 | Improper access control in SAP NetWeaver AS for Java | SAP | NetWeaver AS for Java | Critical | 9.4 | 2023-01-10 03:18:58 | Deep Dive |
| CVE-2022-41262 | SAP NetWeaver AS 跨站脚本漏洞 | SAP | NetWeaver AS for Java (Http Provider Service) | Medium | 6.1 | 2022-12-12 21:39:53 | Deep Dive |
| CVE-2022-43484 | NTT DATA TERASOLUNA 输入验证错误漏洞 | NTT DATA Corporation | TERASOLUNA Global Framework and TERASOLUNA Server Framework for Java (Rich) | 高危 | - | 2022-12-05 00:00:00 | Deep Dive |
| CVE-2022-21626 | Oracle Java SE 安全漏洞 | Oracle Corporation | Java SE JDK and JRE | Medium | 5.3 | 2022-10-18 00:00:00 | Deep Dive |
| CVE-2022-21624 | Oracle Java SE和Oracle GraalVM 安全漏洞 | Oracle Corporation | Java SE JDK and JRE | Low | 3.7 | 2022-10-18 00:00:00 | Deep Dive |
| CVE-2022-21628 | Oracle Java SE和Oracle GraalVM 安全漏洞 | Oracle Corporation | Java SE JDK and JRE | Medium | 5.3 | 2022-10-18 00:00:00 | Deep Dive |