Security Bulletin: IBM MQ Appliance is affected by multiple open source vulnerabilities.
Summary IBM MQ Appliance has addressed multiple open source vulnerabilities (CVE-2020-12762, CVE-2021-33631, CVE-2023-6931, CVE-2024-1086). Vulnerability Details CVEID: CVE-2020-12762 DESCRIPTION: json-c could allow a remote attacker to execute arbitrary code on the system, caused by an integer...
7.8CVSS
8.7AI Score
0.002EPSS
Developer Accounts Compromised Due to Credential Reuse in WordPress.org Supply Chain Attack
On June 24th, 2024, the Wordfence Threat Intelligence Team became aware of a WordPress plugin, Social Warfare, that was infected with malware through the WordPress repository. Upon further investigation, our team quickly identified 4 additional affected plugins through our internal Threat...
8.4AI Score
An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes a web interface on port 80. An unauthenticated GET request to a specific URL triggers the reboot of the Anybus gateway (or at least most of its modules). An attacker can use this feature to carry out a denial...
6.7AI Score
EPSS
An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes a web interface on port 80. An unauthenticated GET request to a specific URL triggers the reboot of the Anybus gateway (or at least most of its modules). An attacker can use this feature to carry out a denial...
EPSS
CVE-2023-25761 affecting package junit 4.13-5
CVE-2023-25761 affecting package junit 4.13-5. No patch is available...
5.4CVSS
7.5AI Score
0.001EPSS
CVE-2018-14628 affecting package samba 4.12.5-6
CVE-2018-14628 affecting package samba 4.12.5-6. No patch is available...
4.3CVSS
5.1AI Score
0.001EPSS
CVE-2022-1615 affecting package samba 4.12.5-6
CVE-2022-1615 affecting package samba 4.12.5-6. No patch is available...
5.5CVSS
5.9AI Score
0.001EPSS
CVE-2021-3670 affecting package samba 4.12.5-6
CVE-2021-3670 affecting package samba 4.12.5-6. No patch is available...
6.5CVSS
6.8AI Score
0.003EPSS
CVE-2020-17049 affecting package samba 4.12.5-6
CVE-2020-17049 affecting package samba 4.12.5-6. No patch is available...
6.6CVSS
7.9AI Score
0.027EPSS
CVE-2021-3738 affecting package samba 4.12.5-6
CVE-2021-3738 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
7.9AI Score
0.002EPSS
CVE-2021-23192 affecting package samba 4.12.5-6
CVE-2021-23192 affecting package samba 4.12.5-6. No patch is available...
7.5CVSS
7.6AI Score
0.001EPSS
CVE-2020-14323 affecting package samba 4.12.5-6
CVE-2020-14323 affecting package samba 4.12.5-6. No patch is available...
5.5CVSS
6AI Score
0.001EPSS
CVE-2020-14383 affecting package samba 4.12.5-6
CVE-2020-14383 affecting package samba 4.12.5-6. No patch is available...
6.5CVSS
6.7AI Score
0.004EPSS
CVE-2020-14318 affecting package samba 4.12.5-6
CVE-2020-14318 affecting package samba 4.12.5-6. No patch is available...
4.3CVSS
5.4AI Score
0.001EPSS
CVE-2016-9179 affecting package lynx 2.9.0~dev.9-5
CVE-2016-9179 affecting package lynx 2.9.0~dev.9-5. This CVE either no longer is or was never...
7.5CVSS
7AI Score
0.001EPSS
CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5
CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5. No patch is available...
7.5CVSS
7.8AI Score
0.003EPSS
CVE-1999-0817 affecting package lynx 2.9.0~dev.9-5
CVE-1999-0817 affecting package lynx 2.9.0~dev.9-5. This CVE either no longer is or was never...
7.2AI Score
0.007EPSS
CVE-2023-22466 affecting package netavark 1.0.3-5
CVE-2023-22466 affecting package netavark 1.0.3-5. This CVE either no longer is or was never...
5.4CVSS
5.9AI Score
0.001EPSS
CVE-2020-12825 affecting package libcroco 0.6.13-6
CVE-2020-12825 affecting package libcroco 0.6.13-6. No patch is available...
7.1CVSS
7.5AI Score
0.002EPSS
CVE-2022-32743 affecting package samba 4.12.5-6
CVE-2022-32743 affecting package samba 4.12.5-6. No patch is available...
7.5CVSS
6AI Score
0.002EPSS
CVE-2022-0336 affecting package samba 4.12.5-6
CVE-2022-0336 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
8.8AI Score
0.004EPSS
CVE-2022-32744 affecting package samba 4.12.5-6
CVE-2022-32744 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
8.5AI Score
0.001EPSS
CVE-2021-20316 affecting package samba 4.12.5-6
CVE-2021-20316 affecting package samba 4.12.5-6. No patch is available...
6.8CVSS
7AI Score
0.002EPSS
CVE-2022-28506 affecting package giflib 5.2.1-6
CVE-2022-28506 affecting package giflib 5.2.1-6. No patch is available...
5.5CVSS
5.5AI Score
0.001EPSS
CVE-2022-34176 affecting package junit 4.13-5
CVE-2022-34176 affecting package junit 4.13-5. No patch is available...
5.4CVSS
5.9AI Score
0.001EPSS
CVE-2022-28506 affecting package giflib 5.2.1-5
CVE-2022-28506 affecting package giflib 5.2.1-5. This CVE either no longer is or was never...
5.5CVSS
7.5AI Score
0.001EPSS
CVE-2020-25719 affecting package samba 4.12.5-6
CVE-2020-25719 affecting package samba 4.12.5-6. No patch is available...
7.2CVSS
7.2AI Score
0.001EPSS
CVE-2016-2124 affecting package samba 4.12.5-6
CVE-2016-2124 affecting package samba 4.12.5-6. No patch is available...
5.9CVSS
6.8AI Score
0.002EPSS
CVE-2021-43566 affecting package samba 4.12.5-6
CVE-2021-43566 affecting package samba 4.12.5-6. No patch is available...
2.5CVSS
4.2AI Score
0.001EPSS
CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5
CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5. No patch is available...
7.5CVSS
7.8AI Score
0.003EPSS
CVE-2021-3671 affecting package samba 4.12.5-6
CVE-2021-3671 affecting package samba 4.12.5-6. No patch is available...
6.5CVSS
7.7AI Score
0.005EPSS
CVE-2021-20254 affecting package samba 4.12.5-6
CVE-2021-20254 affecting package samba 4.12.5-6. No patch is available...
6.8CVSS
6.4AI Score
0.004EPSS
CVE-2021-20277 affecting package samba 4.12.5-6
CVE-2021-20277 affecting package samba 4.12.5-6. No patch is available...
7.5CVSS
7.8AI Score
0.006EPSS
CVE-2020-8908 affecting package guava 25.0-5
CVE-2020-8908 affecting package guava 25.0-5. This CVE either no longer is or was never...
3.3CVSS
6.7AI Score
0.001EPSS
CVE-2021-44141 affecting package samba 4.12.5-6
CVE-2021-44141 affecting package samba 4.12.5-6. No patch is available...
4.3CVSS
5.9AI Score
0.001EPSS
CVE-2023-0215 affecting package shim-unsigned-aarch64 15-5
CVE-2023-0215 affecting package shim-unsigned-aarch64 15-5. This CVE either no longer is or was never...
7.5CVSS
8.2AI Score
0.004EPSS
CVE-2022-45380 affecting package junit 4.13-5
CVE-2022-45380 affecting package junit 4.13-5. No patch is available...
5.4CVSS
5.9AI Score
0.001EPSS
CVE-2022-2031 affecting package samba 4.12.5-6
CVE-2022-2031 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
8.5AI Score
0.001EPSS
CVE-2022-32746 affecting package samba 4.12.5-6
CVE-2022-32746 affecting package samba 4.12.5-6. No patch is available...
5.4CVSS
6AI Score
0.001EPSS
CVE-2021-3716 affecting package nbdkit 1.20.7-5
CVE-2021-3716 affecting package nbdkit 1.20.7-5. This CVE either no longer is or was never...
3.1CVSS
7.5AI Score
0.001EPSS
CVE-2020-25722 affecting package samba 4.12.5-6
CVE-2020-25722 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
7.9AI Score
0.002EPSS
CVE-2010-4226 affecting package cpio 2.13-5
CVE-2010-4226 affecting package cpio 2.13-5. This CVE either no longer is or was never...
6.8AI Score
0.003EPSS
CVE-2022-3857 affecting package libpng for versions less than 1.6.39-1
CVE-2022-3857 affecting package libpng for versions less than 1.6.39-1. No patch is available...
5.5CVSS
5.5AI Score
0.001EPSS
CVE-2023-0286 affecting package reaper 3.1.1-6
CVE-2023-0286 affecting package reaper 3.1.1-6. This CVE either no longer is or was never...
7.4CVSS
8AI Score
0.003EPSS
CVE-2022-3437 affecting package samba 4.12.5-6
CVE-2022-3437 affecting package samba 4.12.5-6. No patch is available...
6.5CVSS
7.3AI Score
0.01EPSS
CVE-2023-22466 affecting package rpm-ostree 2022.1-6
CVE-2023-22466 affecting package rpm-ostree 2022.1-6. This CVE either no longer is or was never...
5.4CVSS
5.9AI Score
0.001EPSS
CVE-2022-42898 affecting package samba 4.12.5-6
CVE-2022-42898 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
8.1AI Score
0.005EPSS
CVE-2022-2989 affecting package podman 4.1.1-5
CVE-2022-2989 affecting package podman 4.1.1-5. This CVE either no longer is or was never...
7.1CVSS
7.8AI Score
0.0005EPSS
CVE-2022-32742 affecting package samba 4.12.5-6
CVE-2022-32742 affecting package samba 4.12.5-6. No patch is available...
4.3CVSS
5.2AI Score
0.038EPSS
CVE-2020-25718 affecting package samba 4.12.5-6
CVE-2020-25718 affecting package samba 4.12.5-6. No patch is available...
8.8CVSS
7.9AI Score
0.002EPSS