The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
The ASN.1 parser in Bouncy Castle Crypto (aka BC Java) 1.63 can trigger a large attempted memory allocation, and resultant OutOfMemoryError error, via crafted ASN.1 data. This is fixed in 1.64.
Base Score: 5
Impact Score: 2.9
Exploitability Score: 10
Base Score: 7.5
Impact Score: 3.6
Exploitability Score: 3.9
|147717||JFrog Artifactory < 6.23.1 Multiple Vulnerabilities||Nessus||Misc.|
|144301||JFrog Artifactory < 7.10.5 Multiple Vulnerabilities||Nessus||Misc.|
|135850||Oracle WebCenter Portal Multiple Vulnerabilities (Apr 2020 CPU)||Nessus||Misc.|
|135680||Oracle WebLogic Server Multiple Vulnerabilities (Apr 2020 CPU)||Nessus||Misc.|
|132961||Oracle WebLogic Server Multiple Vulnerabilities (Jan 2020 CPU)||Nessus||Misc.|