CVE-2026-34917

Low‑privileged session IDs generated for the web admin console could be reused in the XML‑RPC API, whose authentication is normally restricted to admin users. An attacker could leverage this to gain unauthorised access and exploit API‑level vulnerabilities. The session context web/API is now...

MAL-2025-34917 Malicious code in test-mlw2-axman-rebec (npm)

The package test-mlw2-axman-rebec was found to contain malicious code...

Security Bulletin: Vulnerabilities in Apache Kafke affect watsonx.data

Summary Apache Kafka is vulnerable to denial of service attacks and to arbitrary code executed on the system attacks. This could affect watsonx.data. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By...

Security Bulletin: IBM Sterling B2B Integrator is Vulnerable to Denial of Service due to Apache Kafka (CVE-2022-34917)

Summary IBM Sterling B2B Integrator has addressed the denail of service vulnerability from Apache Kafka Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, a remote...

Security Bulletin: There is a vulnerability in Apache Kafka used by IBM Maximo Asset Management (CVE-2022-34917)

Summary There is a vulnerability in Apache Kafka used by IBM Maximo Asset Management. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, a remote attacker could...

CVE-2023-34917

creationtimestamp| type| source ---|---|--- 2023-07-31 20:37:53+00:00| seen| https://t.me/cibsecurity/67483...

CVE-2023-34917

Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...

CVE-2023-34917

Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...

CVE-2023-34917

CVE-2023-34917 affects Fuge CMS v1.0 and stems from an Open Redirect vulnerability in the file member/RegisterAct.java. The Open Redirect is the explicit issue described for this CVE, with the affected software identified as Fuge CMS version 1.0. The available documents do not provide concrete de...

CVE-2023-34917

Fuge CMS v1.0 contains an Open Redirect vulnerability in member/RegisterAct.java...

Security Bulletin: Apache Kafka is vulnerable to CVE-2022-34917 and CVE-2023-25194 used in IBM Maximo Application Suite - Monitor Component

Summary IBM Maximo Application Suite - Monitor Component uses Apache Kafka which is vulnerable to CVE-2022-34917 and CVE-2023-25194. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a...

Security Bulletin: IBM Spectrum Control is vulnerable to weakness related to Apache Kafka

Summary Vulnerability in Apache Kafka to allow denial of service, caused by improper input validation may affect IBM Spectrum Control. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a...

CVE-2022-34917 - OutOfMemoryException in Apache Kafka

A security vulnerability has been identified in Apache Kafka. It affects all releases since 2.8.0. The vulnerability allows malicious unauthenticated clients to allocate large amounts of memory on brokers. This can lead to brokers hitting OutOfMemoryException and causing denial of service. Exampl...

Security Bulletin: IBM Security Guardium is affected by the following vulnerabilities [CVE-2022-39166, CVE-2022-34917, CVE-2022-42889]

Summary IBM Security Guardium has addressed these vulnerabilities CVE-2022-39166, CVE-2022-34917, CVE-2022-42889 Vulnerability Details CVEID:CVE-2022-39166 DESCRIPTION: IBM Security Guardium could allow a privileged user to obtain sensitive information inside of an HTTP response. CVSS Base score:...

Oracle Primavera Unifier (Jan 2023 CPU)

The versions of Primavera Unifier installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2023 CPU advisory. - Vulnerability in the Primavera Unifier product of Oracle Construction and Engineering component: User Interface UnderscoreJS. Supported version...

Security Bulletin: IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library is affected by vulnerability in Apache Kafka (CVE-2022-34917)

Summary Apache Kafka is used by IBM Tivoli Netcool/OMNIbus Transport Module Common Integration Library as part of the Kafka integration. The latest patch includes Apache Kafka 2.8.2 to fix the vulnerability. CVE-2022-34917 Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is...

Security Bulletin: IBM InfoSphere Information Server is affected by a denial of service vulnerability in Apache Kafka (CVE-2022-34917)

Summary A denial of service vulnerability in Apache Kafka used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request...

Security Bulletin: A Kafka vulnerability affects IBM Operations Analytics Predictive Insights (CVE-2022-34917 )

Summary Kafka vulnerability affects IBM Operations Analytics Predictive Insights CVE-2022-34917. Kafka is used by IBM Operations Analytics Predictive Insight in the data ingestion and processing services. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2022-34917...

Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow - CVE-2022-34917

Summary Event emitters for Business Automation Insights in IBM Business Automation Workflow are affected by a Denial of Service attack. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a...

Security Bulletin: Vulnerability in the Apache Kafka affects IBM Event Streams (CVE-2022-34917)

Summary This security vulnerability affects Apache Kafka that is used by IBM Event Streams. Vulnerability Details CVEID:CVE-2022-34917 DESCRIPTION: Apache Kafka is vulnerable to a denial of service, caused by improper input validation. By sending a specially-crafted request, a remote attacker cou...