Known Vulnerabilities for Communications Brm - Elastic Charging Engine by Oracle
Listed below are 10 of the newest known vulnerabilities associated with "Communications Brm - Elastic Charging Engine" by "Oracle".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
|CVE||Shortened Description||Severity||Publish Date||Last Modified|
|CVE-2021-43859||XStream is an open source java library to serialize objects to XML and back again. Versions prior to 1.4.19 may allow a remot...||7.5 - HIGH||2022-02-01||2022-08-09|
|CVE-2021-38153||Some components in Apache Kafka use `Arrays.equals` to validate a password or key, which is vulnerable to timing attacks that...||5.9 - MEDIUM||2021-09-22||2022-10-05|
|CVE-2021-37137||The Snappy frame decoder function doesn't restrict the chunk length which may lead to excessive memory usage. Beside this it ...||7.5 - HIGH||2021-10-19||2022-10-05|
|CVE-2021-37136||The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affec...||7.5 - HIGH||2021-10-19||2022-10-05|
|CVE-2021-29505||XStream is software for serializing Java objects to XML and back again. A vulnerability in XStream versions prior to 1.4.17 m...||8.8 - HIGH||2021-05-28||2022-07-25|
|CVE-2021-22118||In Spring Framework, versions 5.2.x prior to 5.2.15 and versions 5.3.x prior to 5.3.7, a WebFlux application is vulnerable to...||7.8 - HIGH||2021-05-27||2022-10-25|
|CVE-2021-21409||Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high p...||5.9 - MEDIUM||2021-03-30||2022-05-12|
|CVE-2021-21290||Netty is an open-source, asynchronous event-driven network application framework for rapid development of maintainable high p...||5.5 - MEDIUM||2021-02-08||2022-05-12|
|CVE-2020-11612||The ZlibDecoders in Netty 4.1.x before 4.1.46 allow for unbounded memory allocation while decoding a ZlibEncoded byte stream....||7.5 - HIGH||2020-04-07||2022-04-26|
|CVE-2020-5397||Spring Framework, versions 5.2.x prior to 5.2.3 are vulnerable to CSRF attacks through CORS preflight requests that target Sp...||5.3 - MEDIUM||2020-01-17||2022-07-25|