Security Bulletin: Multiple Vulnerabilities have been identified in IBM DB2 shipped with IBM WebSphere Remote Server

Summary IBM DB2 is shipped with IBM WebSphere Remote Server. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin CVE-2025-36122, CVE-2025-14688, CVE-2025-67735, CVE-2025-68161, CVE-2026-1352, CVE-2025-12183, CVE-2026-1577, CVE-2026-3676...

IBM DB2 Federated Server DoS (7269435) (Unix)

According to its self-reported version number, IBM Db2 is affected by a denial of service vulnerability: - IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in the data...

IBM DB2 Federated Server DoS (7269435) (Windows)

According to its self-reported version number, IBM Db2 is affected by a denial of service vulnerability: - IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in the data...

Security Bulletin: IBM® Db2® Federated server is vulnerable to a denial of service with a specially crafted query in a Fenced environment (CVE-2026-3676)

Summary IBM® Db2® Federated server is vulnerable to a denial of service with a specially crafted query in a Fenced environment CVE-2026-3676 Vulnerability Details CVEID:CVE-2026-3676 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server could allow an authenticated user to...

EUVD-2008-3839

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2023-3676

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes...

RHSA-2024:3676

creationtimestamp| type| source ---|---|--- 2025-07-24 13:36:22+00:00| seen| Telegram/GCTI22YP1CSYMpL-V3OiPdnPXzKD3Fjy8IUdp0zDr1mxfY...

TencentOS Server 4: kubernetes (TSSA-2024:0867)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0867 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2022-3676

creationtimestamp| type| source ---|---|--- 2025-05-07 16:23:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15339...

CVE-2025-3676

A vulnerability classified as critical has been found in xxyopen Novel-Plus 3.5.0. This affects an unknown part of the file /api/front/search/books. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-3676 xxyopen Novel-Plus books sql injection

A vulnerability classified as critical has been found in xxyopen Novel-Plus 3.5.0. This affects an unknown part of the file /api/front/search/books. The manipulation of the argument sort leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the...

CVE-2025-3676

CVE-2025-3676 affects xxyopen Novel-Plus 3.5.0. The issue is an SQL injection in the /api/front/search/books endpoint caused by improper handling of the sort parameter, enabling remote exploitation. Public exploit/disclosure is noted and vendor response was absent. Mitigation guidance from PT Sec...

RHEL 8 / 9 : OpenShift Container Platform 4.15.17 (RHSA-2024:3676)

The remote Redhat Enterprise Linux 8 / 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:3676 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

CGA-7M24-4QQX-3676

Bulletin has no description...

Security Bulletin: Vulnerability in IBM® SDK, Java™ Technology affects IBM Cloud Pak System [CVE-2022-3676]

Summary Vulnerability in IBM® SDK, Java™ Technology affect Cloud Pak System. Vulnerability Details CVEID:CVE-2022-3676 DESCRIPTION: Eclipse Openj9 could allow a remote attacker to bypass security restrictions, caused by improper runtime type check by the interface calls. By sending a...

openSUSE: Security Advisory for the Linux Kernel RT (Live Patch 1 for SLE 15 SP5) (SUSE-SU-2023:3676-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 9.0.0 security update

The components for Red Hat OpenShift for Windows Containers 9.0.0 are now available. This product release includes bug fixes and security updates for the following packages: windows-machine-config-operator and windows-machine-config-operator-bundle. Red Hat Product Security has rated this update ...

Fedora 39 : kubernetes (2023-8f8ddb2428)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-8f8ddb2428 advisory. Updates to Kubernetes for F38 and F39. Security fixes for CVE-2023-3955 and CVE-2023-3676. Related update for rawhide already in stable. Update for...

CVE-2023-3676

A security issue was discovered in Kubernetes where a user that can create pods on Windows nodes may be able to escalate to admin privileges on those nodes. Kubernetes clusters are only affected if they include Windows nodes...

CVE-2023-3676 vulnerabilities

Vulnerabilities for packages: aws-efs-csi-driver-fips...