Vulnerabilities > Oracle > Communications Cloud Native Core Policy > High

DATE CVE VULNERABILITY TITLE RISK
2021-10-19 CVE-2021-37136 Resource Exhaustion vulnerability in multiple products
The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data (which affects the allocation size used during decompression).
network
low complexity
netty quarkus oracle netapp debian CWE-400
7.5
2021-09-17 CVE-2021-3807 ansi-regex is vulnerable to Inefficient Regular Expression Complexity
network
low complexity
ansi-regex-project oracle
7.5
2021-08-23 CVE-2021-39150 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39152 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39139 XStream is a simple library to serialize objects to XML and back again. 8.8
2021-08-23 CVE-2021-39141 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39144 Deserialization of Untrusted Data vulnerability in multiple products
XStream is a simple library to serialize objects to XML and back again.
8.5
2021-08-23 CVE-2021-39145 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39146 XStream is a simple library to serialize objects to XML and back again. 8.5
2021-08-23 CVE-2021-39147 XStream is a simple library to serialize objects to XML and back again. 8.5