Skip to main content

Juddi

3 CVEs product

Monthly

CVE-2021-37578 Maven CRITICAL PATCH Act Now

Apache jUDDI uses several classes related to Java's Remote Method Invocation (RMI) which (as an extension to UDDI) provides an alternate transport for accessing UDDI services. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Deserialization Apache Java Juddi
NVD
CVSS 3.1
9.8
EPSS
4.1%
CVE-2018-1307 Maven HIGH PATCH This Week

In Apache jUDDI 3.2 through 3.3.4, if using the WADL2Java or WSDL2Java classes, which parse a local or remote XML document and then mediates the data structures into UDDI data structures, there are. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This XML External Entity (XXE) vulnerability could allow attackers to read arbitrary files or perform SSRF through XML processing.

XXE Apache Juddi
NVD
CVSS 3.0
8.1
EPSS
1.7%
CVE-2015-5241 Maven MEDIUM PATCH This Month

After logging into the portal, the logout jsp page redirects the browser back to the login page after. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Apache Juddi
NVD
CVSS 3.0
6.1
EPSS
3.0%
EPSS 4% CVSS 9.8
CRITICAL PATCH Act Now

Apache jUDDI uses several classes related to Java's Remote Method Invocation (RMI) which (as an extension to UDDI) provides an alternate transport for accessing UDDI services. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Deserialization Apache +2
NVD
EPSS 2% CVSS 8.1
HIGH PATCH This Week

In Apache jUDDI 3.2 through 3.3.4, if using the WADL2Java or WSDL2Java classes, which parse a local or remote XML document and then mediates the data structures into UDDI data structures, there are. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. This XML External Entity (XXE) vulnerability could allow attackers to read arbitrary files or perform SSRF through XML processing.

XXE Apache Juddi
NVD
EPSS 3% CVSS 6.1
MEDIUM PATCH This Month

After logging into the portal, the logout jsp page redirects the browser back to the login page after. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Open Redirect Apache Juddi
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy