CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

IBM Security Bulletins•added 2026/01/05 11:20 a.m.•6 views

Security Bulletin: Multiple Vulnerabilities in IBM Event Processing

Summary IBM Event Processing was affected by multiple vulnerabilities. These are affecting the operator and frontend components. Vulnerability Details CVEID:CVE-2025-57752 DESCRIPTION: Next.js is a React framework for building full-stack web applications. In versions before 14.2.31 and from 15.0....

7.5CVSS5.2AI score0.00687EPSS

Exploits3Affected Software1

Tenable Nessus•added 2025/08/30 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2023-31141

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSearch is open-source software suite for search, analytics, and observability applications. Prior to versions 1.3.10 and 2.7.0, there is an issue with the...

5.9CVSS5.9AI score0.00331EPSS

Exploits0References2

IBM Security Bulletins•added 2025/08/11 6:9 a.m.•5 views

Security Bulletin: Kafka client library upgraded to kafka-clients-3.9.1

Summary Kafka client library upgraded to kafka-clients-3.9.1. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients. Apache Kafka Clients accept configuration data for...

6.5CVSS6.7AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/08/06 5:16 p.m.•5 views

Security Bulletin: Multiple vulnerabilities in embedded Navigator affect IBM Business Automation Workflow - CVE-2024-38808, CVE-2024-31141

Summary IBM Business Automation Workflow repackages a version of IBM Content Navigator, which in turn repackages a vulnerable version of the kafka-clients library. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties, Improper Privilege...

6.5CVSS7AI score0.00809EPSS

Exploits0Affected Software2

IBM Security Bulletins•added 2025/07/10 8:55 a.m.•3 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in kafka-clients-3.4.0.jar

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of kafka-clients-3.4.0.jar Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients. Apache Kafka Clients...

6.5CVSS6.7AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/06/17 7:48 p.m.•1 views

Security Bulletin: Security Vulnerability in Apache Kafka Client Affects IBM Sterling B2B Integrator and IBM Sterling File Gateway (CVE-2024-31141)

Summary IBM Sterling B2B Integrator and IBM Sterling File Gateway have addressed the security vulnearbility in Apache Kafka Client Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kaf...

6.5CVSS6.8AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/01 10:28 a.m.•24 views

Security Bulletin: There is a vulnerability in kafka-clients-3.6.0.jar used by IBM Maximo Asset Management application (CVE-2024-31141)

Summary There is a vulnerability in kafka-clients-3.6.0.jar used by IBM Maximo Asset Management application CVE-2024-31141 Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka...

6.5CVSS6.5AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/01 9:15 a.m.•15 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to kafka-clients-3.7.1.jar CVE-2024-31141

Summary IBM Maximo Application Suite - Monitor Component is vulnerable to kafka-clients-3.7.1.jar CVE-2024-31141. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties,...

6.5CVSS6.8AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/03/28 9:54 p.m.•7 views

Security Bulletin: IBM InfoSphere Information Server is affected by a vulnerability in Apache Kafka (CVE-2024-31141)

Summary A vulnerability in Apache Kafka that is used by InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Apache Kafka could allow a local authenticated attacker to gain elevated privileges on the system, caused by an incorrect privilege manageme...

6.5CVSS6.7AI score0.0017EPSS

Exploits0Affected Software1

NVD•added 2025/03/27 12:15 p.m.•17 views

CVE-2025-31141

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page...

7.5CVSS0.00005EPSS

Exploits0References1

CVE•added 2025/03/27 11:24 a.m.•55 views

CVE-2025-31141

JetBrains TeamCity before 2025.03 is affected by CVE-2025-31141, where an exception on the Cloud Profiles page can lead to credential leakage. The issue is tied to TeamCity versions prior to 2025.03; no exploitation details are provided in the documents. Mitigation: upgrade to 2025.03 or later, a...

7.5CVSS6.9AI score0.00005EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/03/27 11:24 a.m.•10 views

CVE-2025-31141

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page...

2.7CVSS0.00005EPSS

Exploits0References1

Vulnrichment•added 2025/03/27 11:24 a.m.•7 views

CVE-2025-31141

In JetBrains TeamCity before 2025.03 exception could lead to credential leakage on Cloud Profiles page...

2.7CVSS7.1AI score0.00005EPSS

Exploits0References1

IBM Security Bulletins•added 2025/03/24 10:20 a.m.•20 views

Security Bulletin: Vulnerability in Apache Kafka Clients affects watsonx.data

Summary Files or Directories Accessible to External Parties, Improper Privilege Management vulnerability in Apache Kafka Clients.These could affect watsonx.data. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to External Parties, Improper Privilege...

6.5CVSS6.7AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/03/13 4:48 p.m.•21 views

Security Bulletin: Vulnerability in Apache Kafka Clients affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component.

Summary Potential vulnerability in Apache Kafka Clients has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. The vulnerability have been addressed. Refer to details for additional information...

6.5CVSS6.6AI score0.0017EPSS

Exploits0Affected Software2

IBM Security Bulletins•added 2025/02/25 5:5 p.m.•18 views

Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to improper privilege management due to Apache Kafka Client(CVE-2024-31141)

Summary IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to improper privilege management, allowing external parties access to files or directories due to Apache Kafka Client. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Files or Directories Accessible to...

6.5CVSS6.5AI score0.0017EPSS

Exploits0Affected Software2

IBM Security Bulletins•added 2025/02/19 10:31 a.m.•17 views

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands that use Kafka nodes are vulnerable to privilege escalation [CVE-2024-31141]

Summary The Apache Kafka client is used by IBM App Connect Enterprise Certified Container for the Kafka client nodes. IBM App Connect Enterprise Certified Container IntegrationServer and IntegrationRuntime operands that run toolkit flows containing Kafka nodes are vulnerable to privilege...

6.5CVSS6AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/01/28 9:51 p.m.•25 views

Security Bulletin: There is a vulnerability in kafka-clients-3.6.0.jar used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2024-31141)

Summary There is a vulnerability in kafka-clients-3.6.0.jar used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2024-31141 DESCRIPTION: Apache Kafka could allow a local authenticated attacker to gain elevated privileges on the system, caused by a...

6.5CVSS6.4AI score0.0017EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/12/19 3:29 p.m.•17 views

Security Bulletin: IBM Disconnected Log Collector is vulnerable to using components with known vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. This update addresses these CVEs. Vulnerability Details CVEID:CVE-2020-15250 DESCRIPTION: JUnit4 could allow a local attacker to obtain sensitive information,...

9.2CVSS8.8AI score0.00674EPSS

Exploits1Affected Software1

RedHat Linux•added 2024/12/02 4:6 p.m.•18 views

Important: Red Hat Security Advisory: Red Hat Build of Apache Camel 4.8 for Spring Boot security update.

Red Hat build of Apache Camel 4.8 for Spring Boot release and security update is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.7CVSS6.7AI score0.93188EPSS

Exploits5References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by