Severity Critical High Medium Low Informational Vulnerability Categories Broken Link Exploit Issue Tracking Mailing List Mitigation Not Applicable Patch Permissions Required Press Media Coverage Product Release Notes Technical Description Third Party Advisory Tool Signature URL Repurposed US Government Resource VDB Entry Vendor Advisory Vulnerability Name CVE CWE CWE Severity CVE-2017-16226 Vulnerability in npm package static-eval CWE-20 CWE-20 Critical CVE-2017-17485 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind CWE-502 CWE-502 Critical CVE-2017-18197 Vulnerability in maven package org.webjars.bower:mxgraph CWE-611 CWE-611 Critical CVE-2017-18197 Vulnerability in maven package org.webjars.npm:mxgraph CWE-611 CWE-611 Critical CVE-2017-18197 Vulnerability in npm package mxgraph CWE-611 CWE-611 Critical CVE-2017-18239 Vulnerability in maven package com.jason-goodwin:authentikat-jwt Critical CVE-2017-18239 Vulnerability in maven package com.jason-goodwin:authentikat-jwt_2.10 Critical CVE-2017-18239 Vulnerability in maven package com.jason-goodwin:authentikat-jwt_2.11 Critical CVE-2017-18239 Vulnerability in maven package com.jason-goodwin:authentikat-jwt_2.12 Critical CVE-2017-18349 Vulnerability in maven package com.alibaba:fastjson CWE-20 CWE-20 Critical CVE-2017-20151 Vulnerability in maven package com.itextpdf:itext-rups Critical CVE-2017-20160 Vulnerability in npm package express-param Critical CVE-2017-1000353 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-502 CWE-502 Critical CVE-2017-1000354 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-287 CWE-287 Critical CVE-2017-1000356 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-352 CWE-352 Critical CVE-2017-1000393 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-78 CWE-78 Critical CVE-2017-1000403 Vulnerability in maven package org.jvnet.hudson.plugins:speaks CWE-732 CWE-732 Critical CVE-2017-1000421 Vulnerability in maven package org.webjars:gifsicle CWE-416 CWE-416 Critical CVE-2017-1000421 Vulnerability in npm package gifsicle CWE-416 CWE-416 Critical CVE-2017-1000486 Vulnerability in maven package org.primefaces:primefaces CWE-326 CWE-326 Critical CVE-2017-1000487 Vulnerability in maven package org.codehaus.plexus:plexus-utils CWE-78 CWE-78 Critical CVE-2017-1000502 Vulnerability in maven package org.jenkins-ci.plugins:ec2 CWE-78 CWE-78 Critical CVE-2017-1000503 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-362 CWE-362 Critical CVE-2017-1000504 Vulnerability in maven package org.jenkins-ci.main:jenkins-core CWE-352 CWE-352 Critical CVE-2018-1051 Vulnerability in maven package org.jboss.resteasy:resteasy-yaml-provider CWE-502 CWE-502 Critical CVE-2018-1131 Vulnerability in maven package org.infinispan:infinispan-core CWE-502 CWE-502 Critical CVE-2018-1192 Vulnerability in maven package org.cloudfoundry.identity:cloudfoundry-identity-uaa CWE-200 CWE-200 Critical CVE-2018-1230 Vulnerability in maven package org.springframework.batch:spring-batch-admin CWE-352 CWE-352 Critical CVE-2018-1256 Vulnerability in maven package io.pivotal.spring.cloud:spring-cloud-sso-connector Critical CVE-2018-1258 Vulnerability in maven package org.springframework:spring-core CWE-863 CWE-863 Critical CVE-2018-1260 Vulnerability in maven package org.springframework.security.oauth:spring-security-oauth2 CWE-94 CWE-94 Critical CVE-2018-1270 Vulnerability in maven package org.springframework:spring-messaging Critical CVE-2018-1273 Vulnerability in maven package org.springframework.data:spring-data-commons Critical CVE-2018-1275 Vulnerability in maven package org.springframework:spring-messaging Critical CVE-2018-1282 Vulnerability in maven package org.apache.hive:hive-jdbc CWE-89 CWE-89 Critical CVE-2018-1287 Vulnerability in maven package org.apache.jmeter:apachejmeter Critical CVE-2018-1295 Vulnerability in maven package org.apache.ignite:ignite-core CWE-502 CWE-502 Critical CVE-2018-1297 Vulnerability in maven package org.apache.jmeter:apachejmeter CWE-319 CWE-319 Critical CVE-2018-1307 Vulnerability in maven package org.apache.juddi:juddi-client CWE-611 CWE-611 Critical CVE-2018-1309 Vulnerability in maven package org.apache.nifi:nifi-standard-processors CWE-611 CWE-611 Critical CVE-2018-1317 Vulnerability in maven package org.apache.zeppelin:zeppelin CWE-287 CWE-287 Critical CVE-2018-1331 Vulnerability in maven package org.apache.storm:storm-core Critical CVE-2018-1335 Vulnerability in maven package org.apache.tika:tika-core Critical CVE-2018-1335 Vulnerability in maven package org.apache.tika:tika-server Critical CVE-2018-1337 Vulnerability in maven package org.apache.directory.api:api-ldap-client-api CWE-200 CWE-200 Critical CVE-2018-3258 Vulnerability in maven package mysql:mysql-connector-java Critical CVE-2018-3719 Vulnerability in maven package org.webjars.npm:mixin-deep CWE-20 CWE-20 Critical CVE-2018-3719 Vulnerability in npm package mixin-deep CWE-20 CWE-20 Critical CVE-2018-3720 Vulnerability in npm package assign-deep Critical CVE-2018-3722 Vulnerability in maven package org.webjars.npm:merge-deep Critical CVE-2018-3722 Vulnerability in npm package merge-deep Critical CVE-2018-3723 Vulnerability in npm package defaults-deep CWE-20 CWE-20 Critical CVE-2018-3728 Vulnerability in maven package org.webjars.npm:hoek CWE-471 CWE-471 Critical CVE-2018-3728 Vulnerability in npm package hoek CWE-471 CWE-471 Critical CVE-2018-3739 Vulnerability in maven package org.webjars.npm:https-proxy-agent CWE-125 CWE-125 Critical CVE-2018-3739 Vulnerability in npm package https-proxy-agent CWE-125 CWE-125 Critical CVE-2018-3744 Vulnerability in npm package html-pages CWE-22 CWE-22 Critical CVE-2018-3745 Vulnerability in maven package org.webjars.bowergithub.node-browser-compat:atob CWE-125 CWE-125 Critical CVE-2018-3745 Vulnerability in maven package org.webjars.npm:atob CWE-125 CWE-125 Critical CVE-2018-3745 Vulnerability in npm package atob CWE-125 CWE-125 Critical CVE-2018-3746 Vulnerability in npm package pdfinfojs CWE-78 CWE-78 Critical CVE-2018-3749 Vulnerability in maven package org.webjars.npm:deap CWE-20 CWE-20 Critical CVE-2018-3749 Vulnerability in npm package deap CWE-20 CWE-20 Critical CVE-2018-3750 Vulnerability in maven package org.webjars.npm:deep-extend CWE-20 CWE-20 Critical CVE-2018-3750 Vulnerability in npm package deep-extend CWE-20 CWE-20 Critical CVE-2018-3751 Vulnerability in npm package merge-recursive CWE-20 CWE-20 Critical CVE-2018-3752 Vulnerability in npm package merge-options CWE-20 CWE-20 Critical CVE-2018-3753 Vulnerability in npm package merge-objects CWE-20 CWE-20 Critical CVE-2018-3754 Vulnerability in npm package query-mysql CWE-89 CWE-89 Critical CVE-2018-3757 Vulnerability in npm package pdf-image CWE-78 CWE-78 Critical CVE-2018-3758 Vulnerability in npm package express-cart CWE-434 CWE-434 Critical CVE-2018-3767 Vulnerability in npm package memjs Critical CVE-2018-3772 Vulnerability in npm package whereis CWE-20 CWE-20 Critical CVE-2018-3774 Vulnerability in maven package org.webjars.npm:url-parse CWE-601 CWE-601 Critical CVE-2018-3774 Vulnerability in npm package url-parse CWE-601 CWE-601 Critical 1...3456...36 4 / 36
