Retail Workforce Management Software CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (6 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2018-19362	4 Debian, Fasterxml, Oracle and 1 more	22 Debian Linux, Jackson-databind, Business Process Management Suite and 19 more	2024-11-21	N/A
FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the jboss-common-core class from polymorphic deserialization.
CVE-2018-19361	4 Debian, Fasterxml, Oracle and 1 more	22 Debian Linux, Jackson-databind, Business Process Management Suite and 19 more	2024-11-21	N/A
FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the openjpa class from polymorphic deserialization.
CVE-2018-19360	4 Debian, Fasterxml, Oracle and 1 more	22 Debian Linux, Jackson-databind, Business Process Management Suite and 19 more	2024-11-21	N/A
FasterXML jackson-databind 2.x before 2.9.8 might allow attackers to have unspecified impact by leveraging failure to block the axis2-transport-jms class from polymorphic deserialization.
CVE-2018-14719	5 Debian, Fasterxml, Netapp and 2 more	31 Debian Linux, Jackson-databind, Oncommand Workflow Automation and 28 more	2024-11-21	9.8 Critical
FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the blaze-ds-opt and blaze-ds-core classes from polymorphic deserialization.
CVE-2018-14718	5 Debian, Fasterxml, Netapp and 2 more	36 Debian Linux, Jackson-databind, Oncommand Workflow Automation and 33 more	2024-11-21	9.8 Critical
FasterXML jackson-databind 2.x before 2.9.7 might allow remote attackers to execute arbitrary code by leveraging failure to block the slf4j-ext class from polymorphic deserialization.
CVE-2015-9251	3 Jquery, Oracle, Redhat	51 Jquery, Agile Product Lifecycle Management For Process, Banking Platform and 48 more	2024-11-21	N/A
jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-domain Ajax request is performed without the dataType option, causing text/javascript responses to be executed.

Page 1 of 1.