Utilities framework
This hub aggregates every CVE we track for Utilities framework, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
40
CVEs tracked
7
Critical
21
High
2
In CISA KEV
Severity distribution
HIGH21MEDIUM11CRITICAL7LOW1
Monthly trend
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
2024-082026-07
Latest CVEs
The 15 most recently published vulnerabilities affecting Utilities framework.
- CVE-2026-21924Vulnerability in the Oracle Utilities Application Framework product of Oracle Utilities Applications (component: General). Supported versions that are affected are 4.4.0.3.0, 4.5.0.0.0, 4.5.0.1.1,...5.4
- CVE-2020-36518jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.7.5
- CVE-2021-45105Apache Log4j2 does not always protect from infinite recursion in lookup evaluation5.9
- CVE-2021-39150A Server-Side Forgery Request vulnerability in XStream via PriorityQueue unmarshaling8.5
- CVE-2021-39152A Server-Side Forgery Request vulnerability in XStream via HashMap unmarshaling8.5
- CVE-2021-39140XStream can cause a Denial of Service6.5
- CVE-2021-39149XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39148XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39147XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39146XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39145XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39141XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39153XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39151XStream is vulnerable to an Arbitrary Code Execution attack8.5
- CVE-2021-39139XStream is vulnerable to an Arbitrary Code Execution attack8.5
Product normalization is registry-driven with AI assist and human review. How it works