Lucene search
K

235 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/07/01 11:33 a.m.52 views

Security Bulletin: IBM Cloud Pak for Integration is vulnerable to OpenSSL vulnerability (CVE-2020-1971)

Summary IBM Cloud Pak for Integration is vulnerable to OpenSSL vulnerability CVE-2020-1971 with details below. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference. If the GENERALNAMEcmp function contain an...

5.9CVSS5.8AI score0.06968EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/29 3:25 p.m.52 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Rational ClearQuest

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project. OpenSSL is used by IBM Rational ClearQuest. IBM Rational ClearQuest has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-23839 DESCRIPTION: OpenSSL could provide weaker than expected security, caused by...

7.5CVSS7.2AI score0.50732EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/29 1:35 p.m.40 views

Security Bulletin: Vulnerability in OpenSSL affects IBM Rational ClearCase (CVE-2020-1971, CVE-2021-23839, CVE-2021-23840, CVE-2021-23841, CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project. OpenSSL is used by IBM Rational ClearCase. IBM Rational ClearCase has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointe...

7.5CVSS0.8AI score0.62906EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/14 9:22 p.m.34 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Spectrum Protect Backup-Archive Client NetApp Services (CVE-2020-1971, CVE-2021-23840, CVE-2021-23841)

Summary OpenSSL vulnerabilities were disclosed on December 8, 2020 and February 16, 2021 by the OpenSSL Project. OpenSSL, used by the IBM Spectrum Protect Backup-Archive Client for network connections with NetApp services, has addressed the applicable CVEs. UPDATED: 14 June 2021 - Added 7.1 fix...

7.5CVSS0.4AI score0.50732EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.348 views

SUSE SLES11 Security Update : openssl1 (SUSE-SU-2020:14560-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2020:14560-1 advisory. - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL...

5.9CVSS7.1AI score0.06968EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.31 views

OracleVM 3.4 : openssl (OVMSA-2021-0011)

The remote OracleVM system is missing necessary patches to address security updates: - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERALNAMEcmp which compares different...

5.9CVSS7.1AI score0.06968EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2021/06/09 12:0 a.m.262 views

Oracle MySQL Workbench < 8.0.23 Multiple Vulnerabilities (Jan 2021)

The version of Oracle MySQL Workbench installed on the remote Windows host is prior to 8.0.23. It is, therefore, affected by multiple vulnerabilities as referenced in the advisory. - SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window...

7.5CVSS6.7AI score0.06968EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2012:1167-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS9.3AI score0.07762EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2020:3720-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.06968EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2020:14560-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.2AI score0.06968EPSS
Exploits3References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2020:3721-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.06968EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.26 views

SUSE: Security Advisory (SUSE-SU-2021:0082-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.9AI score0.16296EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.28 views

SUSE: Security Advisory (SUSE-SU-2021:0062-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7AI score0.54164EPSS
Exploits6References3
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.46 views

SUSE: Security Advisory (SUSE-SU-2021:0068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.9AI score0.16296EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2021/05/12 12:0 a.m.139 views

Nessus Network Monitor < 5.13.1 Multiple Vulnerabilities (TNS-2021-09)

The version of Nessus Network Monitor NNM installed on the remote host is prior to 5.13.1. It is, therefore, affected by multiple vulnerabilities: - The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL...

7.5CVSS7.1AI score0.62906EPSS
Exploits7References6
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/30 10:43 a.m.65 views

Security Bulletin: Vulnerability in OpenSSL affects IBM Integrated Analytics System

Summary Redhat provided OpenSSL is used by IBM Integrated Analytics System. IBM Integrated Analytics System has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference. If the...

5.9CVSS5.8AI score0.06968EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/29 11:3 a.m.57 views

Security Bulletin: IBM App Connect Enterprise Certified Container may be vulnerable to multiple denial of service and HTTP request smuggling vulnerabilities

Summary App Connect Enterprise flows may be susceptible to denial of service attacks due to CVE-2020-1971 and CVE-2020-8265 in the Node.js runtime, and all components may be vulnerable to HTTP request smuggling due to CVE-2020-8287. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL ...

8.1CVSS0.7AI score0.16296EPSS
Exploits6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/04/28 3:55 p.m.45 views

Security Bulletin: App Connect Enterprise Certified Container may be vulnerable to a denial of service vulnerability (CVE-2020-1971)

Summary If an App Connect flow calls a URL at an endpoint controlled by a malicious user that also controls a Certificate Revocation List, those calls may trigger an application crash resulting in a denial of service. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable t...

5.9CVSS0.9AI score0.06968EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/04/22 12:0 a.m.25 views

Oracle Enterprise Manager Ops Center (Apr 2021 CPU)

The 12.4.0.0 versions of Enterprise Manager Ops Center installed on the remote host are affected by a vulnerablity as referenced in the April 2021 CPU advisory. - Vulnerability in the Enterprise Manager Ops Center product of Oracle Enterprise Manager component: Satellite Framework OpenSSL. The...

5.9CVSS6.9AI score0.06968EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2021/04/21 12:0 a.m.33 views

Oracle MySQL Server <= 5.7.32 / 8.0 <= 8.0.22 Security Update (cpuapr2021) - Windows

Oracle MySQL Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:oracle:mysql"; if...

5.9CVSS6.9AI score0.06968EPSS
Exploits3References2
Rows per page
Query Builder