Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows RT 8.1, And Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016 Security Vulnerabilities and Issues — Page 7 of Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1, Windows RT 8.1, And Windows Server 2012 And R2, Windows 10 Gold, 1511, 1607, And 1703, And Windows Server 2016 CVE List

ibm

Security Bulletin: IBM PowerVM Novalink is vulnerable because IBM WebSphere Application Server Liberty 18.0.0.2 through 24.0.0.4 is vulnerable to a denial of service, caused by sending a specially crafted request. (CVE-2024-27268)

Summary IBM PowerVM Novalink is vulnerable because IBM WebSphere Application Server Liberty 18.0.0.2 through 24.0.0.4 is vulnerable to a denial of service, caused by sending a specially crafted request. A remote attacker could exploit this vulnerability to cause the server to consume memory...

5.9CVSS

6.5AI Score

0.0004EPSS

2024-07-01 03:43 PM

1

ibm

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to XML External Entity Injection attack due to IBM WebSphere Application Server Liberty (CVE-2024-22354)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details ** CVEID:.....

7CVSS

7.7AI Score

0.0004EPSS

2024-07-01 03:32 PM

github

ag-grid-community were discovered to contain a prototype pollution via the _.mergeDeep function

ag-grid-community v31.3.2 and ag-grid-enterprise v31.3.2 were discovered to contain a prototype pollution via the _.mergeDeep function. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service (DoS) via injecting arbitrary...

8.2AI Score

EPSS

2024-07-01 03:32 PM

1

ibm

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to cross-site scripting due to IBM WebSphere Application Server Liberty (CVE-2024-27270)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details ** CVEID:.....

4.7CVSS

6.1AI Score

0.0004EPSS

2024-07-01 03:31 PM

1

ibm

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to denial of service due to IBM WebSphere Application Server Liberty (CVE-2024-22353)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details ** CVEID:.....

7.5CVSS

7.7AI Score

0.0004EPSS

2024-07-01 03:31 PM

ibm

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to server-side request forgery due to IBM WebSphere Application Server Liberty (CVE-2024-22329)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details ** CVEID:.....

4.3CVSS

5.1AI Score

0.0004EPSS

2024-07-01 03:30 PM

1

ibm

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to denial of service due to IBM WebSphere Application Server Liberty (CVE-2024-27268)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details ** CVEID:.....

5.9CVSS

6.6AI Score

0.0004EPSS

2024-07-01 03:30 PM

1

ibm

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to denial of service due to IBM WebSphere Application Server Liberty (CVE-2023-51775)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details ** CVEID:.....

7.5AI Score

0.0004EPSS

2024-07-01 03:30 PM

1

ibm

Security Bulletin: IBM PowerVM Novalink is vulnerable because IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.3 are vulnerable to server-side request forgery. (CVE-2024-22329)

Summary IBM PowerVM Novalink is vulnerable because IBM WebSphere Application Server Liberty 17.0.0.3 through 24.0.0.3 are vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, an attacker could exploit this vulnerability to conduct the SSRF attack. X-Force ID:...

4.3CVSS

5.1AI Score

0.0004EPSS

2024-07-01 03:29 PM

1

wolfi

CVE-2024-29018 vulnerabilities

Vulnerabilities for packages: dagger, buf, kaniko, grype, telegraf, zot, crossplane, conftest, kargo, aactl, kubescape, melange, datadog-agent, ctop, loki, up, buildkitd, cadvisor, wolfictl, syft, ko, trivy, spire-server, goreleaser, docker-compose, tkn,...

5.9CVSS

6.1AI Score

0.0004EPSS

2024-07-01 03:27 PM

164

wolfi

CVE-2024-2961 vulnerabilities

Vulnerabilities for packages:...

6.8AI Score

0.0005EPSS

2024-07-01 03:27 PM

217

wolfi

GHSA-95PR-FXF5-86GV vulnerabilities

Vulnerabilities for packages: zarf, flux-source-controller, policy-controller, skaffold, neuvector-sigstore-interface, zot, vexctl, gitsign, aactl, tekton-chains, kubescape, melange, wolfictl, slsa-verifier, falcoctl, ko, spire-server, goreleaser, tkn, falco,...

7.5AI Score

2024-07-01 03:27 PM

94

wolfi

GHSA-JQ35-85CJ-FJ4P vulnerabilities

Vulnerabilities for packages: skaffold, k3s, tekton-pipelines, k3d, aactl, chartmuseum, kubescape, kpt, tekton-chains, ctop, loki, up, scorecard, slsa-verifier, cert-manager, bom, goreleaser, falco, paranoia,...

7.5AI Score

2024-07-01 03:27 PM

354

wolfi

GHSA-MRWW-27VC-GGHV vulnerabilities

Vulnerabilities for packages: caddy, spicedb, temporal-server, vault, src, kine, kube-bench, amass, ferretdb, keda, telegraf, step-ca, trillian, kots, argo-workflows,...

7.5AI Score

2024-07-01 03:27 PM

118

wolfi

CVE-2023-46402 vulnerabilities

Vulnerabilities for packages: argo-cd, flux-notification-controller, melange, argo-workflows,...

7.5CVSS

7.7AI Score

0.0005EPSS

2024-07-01 03:27 PM

327

wolfi

CVE-2024-3177 vulnerabilities

Vulnerabilities for packages: aws-ebs-csi-driver, nodetaint, kubernetes-csi-driver-hostpath, local-static-provisioner, node-feature-discovery, spark-operator, calico, kubernetes-dns-node-cache, ip-masq-agent, cluster-autoscaler,...

2.7CVSS

4.3AI Score

0.0004EPSS

2024-07-01 03:27 PM

84

wolfi

CVE-2024-36129 vulnerabilities

Vulnerabilities for packages: opentelemetry-collector, datadog-agent, opentelemetry-collector-contrib,...

8.2CVSS

8AI Score

0.001EPSS

2024-07-01 03:27 PM

27

wolfi

CVE-2024-1597 vulnerabilities

Vulnerabilities for packages: keycloak, dependency-track, mariadb,...

10CVSS

10AI Score

0.001EPSS

2024-07-01 03:27 PM

209

wolfi

GHSA-RHH4-RH7C-7R5V vulnerabilities

Vulnerabilities for packages: k9s, zarf, wolfictl, kubescape, datadog-agent,...

7.5AI Score

2024-07-01 03:27 PM

47

wolfi

CVE-2024-28219 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server, pytorch,...

6.7CVSS

7AI Score

0.0004EPSS

2024-07-01 03:27 PM

44

wolfi

CVE-2024-27304 vulnerabilities

Vulnerabilities for packages: caddy, spicedb, temporal-server, vault, src, kine, kube-bench, amass, ferretdb, keda, telegraf, step-ca, trillian, kots, argo-workflows,...

9.8CVSS

9.7AI Score

0.0004EPSS

2024-07-01 03:27 PM

137

wolfi

GHSA-HHHV-Q57G-882Q vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-07-01 03:27 PM

44

wolfi

CVE-2024-25710 vulnerabilities

Vulnerabilities for packages: gradle, wavefront-proxy, neo4j, trino, jenkins, opensearch, dependency-track,...

8.1CVSS

7AI Score

0.001EPSS

2024-07-01 03:27 PM

97

wolfi

CVE-2024-6104 vulnerabilities

Vulnerabilities for packages: zarf, consul, flux, influxd, flux-source-controller, policy-controller, ksops, timestamp-authority, flux-helm-controller, opentofu, fulcio, argo-cd, neuvector-sigstore-interface, zot, nuclei, pulumi-kubernetes-operator, k3s, vexctl, glab, snyk-cli, kargo,...

6CVSS

6AI Score

0.0004EPSS

2024-07-01 03:27 PM

17

wolfi

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: flux-source-controller, grype, kubeflow-katib, ip-masq-agent, nghttp2, cortex, tctl, gke-gcloud-auth-plugin, mc, kubescape, gitlab-shell, kyverno, node-problem-detector, weaviate, kaf, metacontroller, prometheus-blackbox-exporter, helm, cluster-autoscaler,...

7.5CVSS

9AI Score

0.732EPSS

2024-07-01 03:27 PM

632

wolfi

GHSA-2C7C-3MJ9-8FQH vulnerabilities

Vulnerabilities for packages: istio-pilot-discovery, flux-source-controller, cloudflared, argo-cd, fulcio, vexctl, traefik, tekton-pipelines, terragrunt, gitsign, aactl, keda, kubescape, sops, kots, tekton-chains, external-secrets-operator, cosign, kyverno, vault, slsa-verifier, cilium-envoy,...

7.5AI Score

2024-07-01 03:27 PM

355

wolfi

GHSA-MQ39-4GV4-MVPX vulnerabilities

Vulnerabilities for packages: dagger, buf, kaniko, grype, telegraf, zot, crossplane, conftest, kargo, aactl, kubescape, melange, datadog-agent, ctop, loki, up, buildkitd, cadvisor, wolfictl, syft, ko, trivy, spire-server, goreleaser, docker-compose, tkn,...

7.5AI Score

2024-07-01 03:27 PM

149

wolfi

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: temporal-ui-server, supercronic, docker, logstash-exporter, prometheus-alertmanager, doppler-kubernetes-operator, flux-source-controller, kuberay-operator, grype, policy-controller, k8sgpt-operator, cloud-sql-proxy, kubeflow-katib, ip-masq-agent, zot, golangci-lint,...

7.5AI Score

2024-07-01 03:27 PM

189

wolfi

GHSA-X84C-P2G9-RQV9 vulnerabilities

Vulnerabilities for packages: harbor-scanner-trivy, docker, dagger, buf, tekton-pipelines, docker-compose, helm-push, kaniko, neuvector-scanner, cri-tools, k3d, syft, grype, policy-controller, prometheus, wolfictl,...

7.5AI Score

2024-07-01 03:27 PM

69

wolfi

CVE-2024-23652 vulnerabilities

Vulnerabilities for packages: conftest, docker, guac, buildkitd, scorecard, kaniko, skaffold, kubescape, trivy, datadog-agent,...

10CVSS

9.7AI Score

0.001EPSS

2024-07-01 03:27 PM

274

wolfi

CVE-2024-21626 vulnerabilities

Vulnerabilities for packages: runc, docker, zarf, kaniko, grype, telegraf, skaffold, zot, kubernetes, k3s, k3d, kubescape, newrelic-infrastructure-agent, kots, datadog-agent, ctop, k9s, buildkitd, cadvisor, ingress-nginx-controller, syft, wolfictl, trivy, nvidia-device-plugin, nerdctl,...

8.6CVSS

9.2AI Score

0.051EPSS

2024-07-01 03:27 PM

302

wolfi

GHSA-7WW5-4WQC-M92C vulnerabilities

Vulnerabilities for packages: kaniko, flux-source-controller, grype, telegraf, skaffold, flux-helm-controller, zot, tekton-pipelines, helm-push, k3d, kubescape, melange, kots, newrelic-infrastructure-agent, ctop, up, cert-manager, trivy, eksctl, helm, neuvector-agent, fuse-overlayfs-snapshotter,...

7.5AI Score

2024-07-01 03:27 PM

226

wolfi

CVE-2024-25620 vulnerabilities

Vulnerabilities for packages: helm-operator, k9s, k8sgpt, zarf, helm-push, istio-operator, flux-source-controller, cilium-cli, cert-manager, chartmuseum, kubescape, flux-helm-controller, kots, trivy, eksctl, zot,...

6.4CVSS

6.7AI Score

0.0004EPSS

2024-07-01 03:27 PM

106

wolfi

GHSA-R53H-JV2G-VPX6 vulnerabilities

Vulnerabilities for packages: helm-operator, k9s, k8sgpt, zarf, helm-push, istio-operator, flux-source-controller, cilium-cli, cert-manager, chartmuseum, kubescape, flux-helm-controller, kots, trivy, eksctl, zot,...

7.5AI Score

2024-07-01 03:27 PM

106

wolfi

CVE-2024-0874 vulnerabilities

Vulnerabilities for packages: consul, cloudflared,...

5.3CVSS

5.5AI Score

0.0004EPSS

2024-07-01 03:27 PM

51

wolfi

GHSA-HMR7-M48G-48F6 vulnerabilities

Vulnerabilities for packages: cloudwatch-exporter,...

7.5AI Score

2024-07-01 03:27 PM

201

wolfi

CVE-2024-21506 vulnerabilities

Vulnerabilities for packages: kubeflow-pipelines-visualization-server, datadog-agent,...

6.7AI Score

0.0004EPSS

2024-07-01 03:27 PM

48

wolfi

GHSA-4265-CCF5-PHJ5 vulnerabilities

Vulnerabilities for packages: gradle, wavefront-proxy, neo4j, trino, jenkins, opensearch, dependency-track,...

7.5AI Score

2024-07-01 03:27 PM

98

wolfi

GHSA-VQ7J-GX56-RXJH vulnerabilities

Vulnerabilities for packages: metrics-server, kind,...

7.5AI Score

2024-07-01 03:27 PM

164

wolfi

CVE-2023-46407 vulnerabilities

Vulnerabilities for packages:...

5.5CVSS

7.7AI Score

0.001EPSS

2024-07-01 03:27 PM

194

wolfi

CVE-2024-23944 vulnerabilities

Vulnerabilities for packages: spark, kafka, solr,...

8.2AI Score

0.0004EPSS

2024-07-01 03:27 PM

81

wolfi

GHSA-R978-9M6M-6GM6 vulnerabilities

Vulnerabilities for packages: spark, kafka, solr,...

7.5AI Score

2024-07-01 03:27 PM

64

wolfi

CVE-2024-26141 vulnerabilities

Vulnerabilities for packages: kube-fluentd-operator, ruby3.2-rack,...

5.8CVSS

6.2AI Score

0.0004EPSS

2024-07-01 03:27 PM

65

wolfi

GHSA-M87M-MMVP-V9QM vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-07-01 03:27 PM

10

wolfi

CVE-2022-36227 vulnerabilities

Vulnerabilities for packages:...

9.8CVSS

7.7AI Score

0.005EPSS

2024-07-01 03:27 PM

272

wolfi

GHSA-J7HP-H8JX-5PPR vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-07-01 03:27 PM

100

wolfi

CVE-2023-40577 vulnerabilities

Vulnerabilities for packages: prometheus, loki,...

7.5CVSS

6.6AI Score

0.0004EPSS

2024-07-01 03:27 PM

165

wolfi

GHSA-R38F-C4H4-HQQ2 vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-07-01 03:27 PM

24

wolfi

GHSA-88CC-G835-76RP vulnerabilities

Vulnerabilities for packages:...

7.5AI Score

2024-07-01 03:27 PM

44

wolfi

CVE-2024-36127 vulnerabilities

Vulnerabilities for packages: pombump,...

7.5CVSS

7.7AI Score

0.0004EPSS

2024-07-01 03:27 PM

15