Download
| Alert*
|
oval:org.secpod.oval:def:2107791
Oracle Solaris 11 - ( CVE-2022-25762 ) oval:org.secpod.oval:def:1601570 A flaw was found in the tomcat package. When a web application sends a WebSocket message concurrently with the WebSocket connection closing, the application may continue to use the socket after it has been closed. In this case, the error handling triggered could cause the pooled object to be placed ... oval:org.secpod.oval:def:81758 The host is installed with Apache Tomcat 8.5.0 through 8.5.75 or 9.0.0.M1 through 9.0.20 and is prone to an improper resource shutdown vulnerability. A flaw is present in application, which fails to handle a WebSocket message sent concurrently with the WebSocket connection closed. Successful exploit ... oval:org.secpod.oval:def:504689 The Public Key Infrastructure Core contains fundamental packages required by Red Hat Certificate System. Security Fix: * jquery: Cross-site scripting via cross-domain ajax requests * bootstrap: XSS in the data-target attribute * bootstrap: Cross-site Scripting in the collapse data-parent attribu ... |
