23 matches found
Security Bulletin: Multiple vulnerabilities in IBM Rapid Infrastructure Automation
Summary IBM Concert Workflows addresses multiple security vulnerabilities that originate from IBM Rapid Infrastructure Automation. IBM Concert Workflows is built on the same underlying technology and provides equivalent core functionality. Vulnerability Details CVEID:CVE-2025-23022 DESCRIPTION:...
Linux Distros Unpatched Vulnerability : CVE-2013-2024
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OS command injection vulnerability in the qs procedure from the utils module in Chicken before 4.9.0. CVE-2013-2024 Note that Nessus relies on the presence of t...
Security Bulletin: IBM Security Verify Governance is affected by multiple vulnerabilities
Summary IBM Security Verify Governance uses various components, such as IBM Java, and Dojo. Security vulnerabilities in multiple components have been addressed in the IBM Security Verify Governance update. Vulnerability Details CVEID:CVE-2021-22569 DESCRIPTION: Google Protocol Buffer protobuf-jav...
Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilties
Summary IBM Planning Analytics Workspace is affected by vulnerabilities. Node.js is an open-source and cross-platform JavaScript runtime environment CVE-2022-35255, CVE-2022-35256. Node-tar is a full function tar library for node.js CVE-2018-20834. Swagger UI is used to visualize and interact wit...
Security Bulletin: qs (QueryString) package in the Service Portal of IBM Control Desk is vulnerable (CVE-2014-7191 and CVE-2017-1000048)
Summary As per the BlackDuck Scan, there is one package qs QueryString which is vulnerable in the Service Portal. The qs QueryString package is coming from multer modules installed as npm package. Vulnerability Details CVEID:CVE-2014-7191 DESCRIPTION: Node.js is vulnerable to a denial of service,...
KB3058865 - SQL Server 2014 Service Pack 1 release information
KB3058865 - SQL Server 2014 Service Pack 1 release information This article contains important information to read before you install Microsoft SQL Server 2014 Service Pack 1 SP1. It describes how to obtain the service pack, the list of fixes that are included in the service pack, how to select t...
KB2674319 - Bugs that are fixed in SQL Server 2012 Service Pack 1
KB2674319 - Bugs that are fixed in SQL Server 2012 Service Pack 1 INTRODUCTION This article lists the bugs that are fixed in Microsoft SQL Server 2012 Service Pack 1 SP1. Notes Additional fixes that are not documented here may also be included in the service pack. This list will be updated when...
Security Bulletin: Multiple vulnerabilities affecting the Cordova platform and IBM SDK Node.js packaged with Rational Software Architect and Rational Software Architect for WebSphere Software
Summary Multiple vulnerabilities have been discovered that affect the Cordova platform and IBM SDK Node.js packaged with Rational Software Architect and Rational Software Architect for WebSphere software CVE-2014-3500, CVE-2014-3501, CVE-2014-3502, CVE-2014-5256, CVE-2014-7191, CVE-2014-7192,...
CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
DEBIAN-CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
UBUNTU-CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
Command injection
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken before 4.9.0...
CVE-2013-2024
In Chicken, CVE-2013-2024 describes an OS command injection vulnerability in the qs procedure from the utils module, affecting versions before 4.9.0. The root cause is unsafely handling or composing OS commands within that path, enabling an attacker to execute arbitrary commands on the host. The ...
PT-2019-6871 · Chicken +1 · Chicken +1
Name of the Vulnerable Software and Affected Versions: Chicken versions prior to 4.9.0 Description: The issue is related to an OS command injection vulnerability in the qs procedure from the utils module. Recommendations: For versions prior to 4.9.0, update to version 4.9.0 or later to resolve th...
British Airways Hack Triggers GDPR Concerns, as World Awaits Windows 0-Day Patch
A swipe of confidential data from almost 400,000 British Airways customers. A string of app takedowns at the Mac App Store after exfiltration findings. A gargantuan data breach at a Chinese hotel chain. An unpatched zero-day Windows bug exploited in the wild. These are some of the security news...
MySQL Enterprise Monitor 3.1.x < 3.1.7.8023 / 3.2.x < 3.2.7.1204 / 3.3.x < 3.3.3.1199 Multiple Vulnerabilities (April 2017 CPU)
According to its self-reported version, the MySQL Enterprise Monitor application running on the remote host is 3.1.x prior to 3.1.7.8023, 3.2.x prior to 3.2.7.1204, or 3.3.x prior to 3.3.3.1199. It is, therefore, affected by multiple vulnerabilities : - A denial of service vulnerability exists in...