Vulnerabilities > Netflix

DATE CVE VULNERABILITY TITLE RISK
2020-07-14 CVE-2020-9297 Expression Language Injection vulnerability in Netflix Titus
Netflix Titus, all versions prior to version v0.1.1-rc.274, uses Java Bean Validation (JSR 380) custom constraint validators.
network
low complexity
netflix CWE-917
critical
9.8
2020-06-16 CVE-2020-9296 Expression Language Injection vulnerability in Netflix Conductor
Netflix Titus uses Java Bean Validation (JSR 380) custom constraint validators.
network
low complexity
netflix CWE-917
critical
9.8
2019-06-21 CVE-2019-10028 Unspecified vulnerability in Netflix Dial Reference
Denial of Service (DOS) in Dial Reference Source Code Used before June 18th, 2019.
network
low complexity
netflix
7.5
2017-08-09 CVE-2015-7764 Insufficient Entropy vulnerability in Netflix Lemur 0.1.4
Lemur 0.1.4 does not use sufficient entropy in its IV when encrypting AES in CBC mode.
network
low complexity
netflix CWE-331
7.5
2017-03-26 CVE-2017-7266 Open Redirect vulnerability in Netflix Security Monkey
Netflix Security Monkey before 0.8.0 has an Open Redirect.
network
low complexity
netflix CWE-601
6.1