Lucene search
+L

201 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/02/05 12:9 a.m.42 views

Security Bulletin: Vulnerabilities in OpenSSL affects Rational Application Developer for WebSphere Software (CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0205, CVE-2015-0206)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. OpenSSL is used by the Cordova platform packaged with Rational Application Developer for WebSphere Software and has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2014-3570 Description: An...

5CVSS0.6AI score0.98685EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 2:26 p.m.78 views

Security Bulletin: IBM i is affected by several OpenSSL vulnerabilities.

Summary OpenSSL vulnerabilities were disclosed by the OpenSSL Project. OpenSSL is used by IBM i. IBM i has addressed the applicable CVEs provided by OpenSSL. Vulnerability Details CVEID: CVE-2014-3569 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by the failure to properly...

5CVSS0.8AI score0.98685EPSS
Exploits0Affected Software1
CVE
CVE
added 2019/07/16 8:16 p.m.2775 views

CVE-2019-3571

WhatsApp Desktop versions prior to 0.3.3793 are affected by an input validation issue that allows malicious clients to send files to users that would be displayed with a wrong extension. Root cause: input validation weakness. Supported by multiple sources (NVD/NVD-linked CVE records). No exploit ...

5.3CVSS5.2AI score0.00776EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.40 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru Firmware and QLogic 8Gb FC Switch Module Firmware

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. This includes "FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. OpenSSL is used by IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru Firmware and QLogic 8Gb FC Switc...

5CVSS0.4AI score0.98685EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:55 a.m.45 views

Security Bulletin: Vulnerabilities in OpenSSL affect System x, BladeCenter and Flex Systems Unified Extensible Firmware Interface (UEFI) (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. OpenSSL is used by IBM System x, BladeCenter and Flex Systems Unified Extensible Firmware Interface UEFI. IBM System x, BladeCenter and Flex Systems UEFI has addressed the applicable CVEs. Vulnerability...

5CVSS0.8AI score0.22964EPSS
Exploits0Affected Software19
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:55 a.m.34 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Flex System Manager (FSM) SMIA Configuration Tool. (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2014-0205, CVE-2014-0206)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. OpenSSL is used by IBM Flex System Manager FSM SMIA Configuration Tool, SMIA Configuration Tool has addressed the applicable CVEs. Vulnerability Details Summary OpenSSL vulnerabilities were disclosed on...

6.9CVSS0.8AI score0.59319EPSS
Exploits1
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:55 a.m.48 views

Security Bulletin: Vulnerabilities in OpenSSL affect Integrated Management Module II (IMM2) (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0205, CVE-2015-0206)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. This includes "FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. OpenSSL is used by Integrated Management Module II IMM2. IMM2 has addressed the applicable CVEs...

5CVSS0.4AI score0.98685EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:55 a.m.35 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru Firmware (CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0205, CVE-2015-0206)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. This includes "FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. OpenSSL is used by IBM Flex System FC3171 8Gb SAN Switch and SAN Pass-thru Firmware. IBM Flex System FC3171...

5CVSS0.5AI score0.98685EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/08/03 4:23 a.m.59 views

Security Bulletin: Vulnerabilities in OpenSSL affect the Cordova platform packaged with Rational Application Developer affecting Rational Developer for i and Rational Developer for AIX and Linux

Summary Portions of IBM Rational Application Developer for WebSphere Software are shipped as a component of Rational Developer for i RPG and COBOL + Modernization Tools, Java and EGL editions, and Rational Developer for AIX and Linux. OpenSSL vulnerabilities were disclosed on January 8, 2015 by t...

5CVSS0.5AI score0.98685EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 1:27 a.m.52 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM SDN-VE (CVE-2014-3570, CVE- 2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0205, CVE-2015-0206)

Summary Security vulnerablities have been discovered in OpenSSL Vulnerability Details CVEID:CVE-2014-3570 DESCRIPTION: An unspecified error in OpenSSL related to the production of incorrect results on some platforms by Bignum squaring BNsqr has an unknown attack vector and impact. CVSS Base Score...

5CVSS0.9AI score0.98685EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:9 a.m.35 views

Security Bulletin: OpenSSL security vulnerabilities in IBM SONAS (CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0205, CVE-2015-0206)

Summary A fix is available for IBM SONAS, for the OpenSSL security vulnerabilities found in January 2015. Vulnerability Details OpenSSL is used in IBM SONAS for providing communication security by encrypting data being transmitted. CVEID: CVE-2014-3570 DESCRIPTION: OpenSSL could provide weaker th...

5CVSS0.8AI score0.98685EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:30 p.m.32 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Service Delivery Manager. OpenSSL is installed on the operating system shipped via IBM Service Delivery Manager

Summary OpenSSL contains vulnerabilities CVE-2014-3569, CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0205, CVE-2015-0206, CVE-2015-0209, CVE-2015-0286, CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-0292, CVE-2015-0293. OpenSSL is installed on the...

7.5CVSS1.3AI score0.98685EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:2 p.m.35 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Tivoli Netcool/Reporter (CVE’s: 2014-3569, 2014-3570, 2014-3571, 2014-3572, 2014-8275, 2015-0205, 2015-0206)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. OpenSSL is used by IBM Tivoli Netcool/Reporter Netcool/Reporter has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2014-3569 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused...

5CVSS0.5AI score0.59319EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 2:56 p.m.68 views

Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM Tivoli Netcool System Service Monitors/Application Service Monitors (CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, CVE-2015-0206)

Summary OpenSSL vulnerabilities were disclosed on January 8, 2015 by the OpenSSL Project. OpenSSL is used by IBM Tivoli Netcool System Service Monitors/Application Service Monitors has addressed the applicable CVEs. Vulnerability Details CVE-ID: CVE-2014-3570 DESCRIPTION: An unspecified error in...

5CVSS0.7AI score0.98685EPSS
Exploits0Affected Software1
CVE
CVE
added 2018/06/12 8:0 p.m.51 views

CVE-2018-3571

Summary: CVE-2018-3571 affects the Qualcomm KGSL driver used in Android CAF/Linux kernel releases. The vulnerability is a Use-After-Free condition that can occur when printing information about sparse memory allocations. Impact (as described): Local attacker could potentially cause memory corrupt...

7.8CVSS7.1AI score0.00165EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/04/24 7:0 p.m.44 views

CVE-2017-3571

CVE-2017-3571 affects Oracle PeopleSoft Enterprise SCM eBill Payment (component: Security) version 9.2. A vulnerability allows a high-privilege attacker with network access via HTTP to compromise the SCM eBill Payment component, potentially enabling unauthorized creation, deletion or modification...

6.5CVSS6.3AI score0.01904EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2016/07/21 10:14 a.m.19 views

CVE-2016-3571

Unspecified vulnerability in the Primavera P6 Enterprise Project Portfolio Management component in Oracle Primavera Products Suite 8.3, 8.4, 15.1, 15.2, and 16.1 allows remote attackers to affect confidentiality and integrity via vectors related to Web access, a different vulnerability than...

6.1CVSS5.4AI score0.01708EPSS
Exploits0References4
CVE
CVE
added 2016/07/21 10:0 a.m.51 views

CVE-2016-3571

CVE-2016-3571 concerns an unspecified vulnerability in Oracle Primavera P6 Enterprise Project Portfolio Management (Oracle Primavera Products Suite) affecting versions 8.3, 8.4, 15.1, 15.2, and 16.1. The issue is exploitable remotely via Web access and impacts confidentiality and integrity (parti...

6.1CVSS5.5AI score0.01708EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/06/22 12:0 a.m.32 views

OracleVM 3.2 : dhcp (OVMSA-2016-0058)

The remote OracleVM system is missing necessary patches to address critical security updates : - exit2 after sending DHCPDECLINE when dhclient has been started with '-1' RHBZ 756490 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected...

7.8CVSS6.5AI score0.84292EPSS
Exploits7References5
Tenable Nessus
Tenable Nessus
added 2016/06/22 12:0 a.m.244 views

OracleVM 3.2 : openssl (OVMSA-2016-0071)

The remote OracleVM system is missing necessary patches to address critical security updates : - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - f...

7.5CVSS7.4AI score0.38709EPSS
Exploits2References7
Rows per page
Query Builder