Communications cloud native core automated test suite

This hub aggregates every CVE we track for Communications cloud native core automated test suite, a product in the databases space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Communications cloud native core automated test suite.

• CVE-2022-22965A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution (RCE) via data binding. The specific exploit requires the application to run on Tomcat as a W...KEV9.8Apr 1, 2022
• CVE-2022-22963In Spring Cloud Function versions 3.1.6, 3.2.2 and older unsupported versions, when using routing functionality it is possible for a user to provide a specially crafted SpEL as a routing-expression...KEV9.8Apr 1, 2022
• CVE-2021-43859Denial of Service by injecting highly recursive collections or maps in XStream7.5Feb 1, 2022
• CVE-2022-20615Jenkins Matrix Project Plugin 1.19 and earlier does not escape HTML metacharacters in node and label names, and label descriptions, resulting in a stored cross-site scripting (XSS) vulnerability ex...5.4Jan 12, 2022
• CVE-2022-20612A cross-site request forgery (CSRF) vulnerability in Jenkins 2.329 and earlier, LTS 2.319.1 and earlier allows attackers to trigger build of job without parameters when no security realm is set.4.3Jan 12, 2022
• CVE-2022-20614A missing permission check in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier allows attackers with Overall/Read access to use the DNS used by the Jenkins instance to resolve an attacker-spe...4.3Jan 12, 2022
• CVE-2022-20613A cross-site request forgery (CSRF) vulnerability in Jenkins Mailer Plugin 391.ve4a_38c1b_cf4b_ and earlier allows attackers to use the DNS used by the Jenkins instance to resolve an attacker-speci...4.3Jan 12, 2022
• CVE-2021-39150A Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling8.5Aug 23, 2021
• CVE-2021-39152A Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling8.5Aug 23, 2021
• CVE-2021-39140XStream can cause a Denial of Service6.5Aug 23, 2021
• CVE-2021-39149XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39148XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39147XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39146XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021
• CVE-2021-39145XStream is vulnerable to an Arbitrary Code Execution attack8.5Aug 23, 2021