Vulnerabilities > Talend > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-01-09 | CVE-2021-4311 | XXE vulnerability in Talend Open Studio A vulnerability classified as problematic was found in Talend Open Studio for MDM. | 9.8 |
| 2021-11-05 | CVE-2021-42837 | Improper Authentication vulnerability in Talend Data Catalog An issue was discovered in Talend Data Catalog before 7.3-20210930. | 9.8 |
| 2021-09-22 | CVE-2021-40684 | Unspecified vulnerability in Talend ESB Runtime 5.1 Talend ESB Runtime in all versions from 5.1 to 7.3.1-R2021-09, 7.2.1-R2021-09, 7.1.1-R2021-09, has an unauthenticated Jolokia HTTP endpoint which allows remote access to the JMX of the runtime container, which would allow an attacker the ability to read or modify the container or software running in the container. | 9.1 |
| 2020-02-19 | CVE-2014-2228 | XML Entity Expansion vulnerability in Talend Restlet 1.1.10/2.1.7/2.2 The XStream extension in HP Fortify SCA before 2.2 RC3 allows remote attackers to execute arbitrary code via unsafe deserialization of XML messages. | 9.8 |