MAL-2025-37405 Malicious code in typeorm-neptunology-await-biohacking (npm)

The package typeorm-neptunology-await-biohacking was found to contain malicious code...

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

CVE-2023-37405

creationtimestamp| type| source ---|---|--- 2025-03-27 18:26:39+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9164 2025-03-27 20:50:32+00:00| seen| https://t.me/cvedetector/21338...

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

CVE-2023-37405

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

CVE-2023-37405 IBM Cloud Pak System information disclosure

IBM Cloud Pak System 2.3.3.0, 2.3.3.3, 2.3.3.3 iFix1, 2.3.3.4, 2.3.3.5, 2.3.3.6, 2.3.36 iFix1, 2.3.3.6 iFix2, 2.3.3.7, 2.3.3.7 iFix1, 2.3.4.0, and 2.3.4.1 stores sensitive data in memory, that could be obtained by an unauthorized user...

CVE-2023-37405

IBM Cloud Pak System stores sensitive data in memory across versions 2.3.3.0 through 2.3.4.1, enabling potential unauthorized access (information disclosure). The issue is documented as CVE-2023-37405 with CVSS v3.1 Base Score 6.5 (Impact: Confidentiality High, others None). Remediation: for Inte...

Security Bulletin: IBM Cloud Pak System cli is vulnerable to sensitive information exposure

Summary IBM Cloud Pak System cli is vulnerable to sensitive information exposure. CVE-2023-37405, CVE-2023-38272 Vulnerability Details CVEID:CVE-2023-37405 DESCRIPTION: IBM Cloud Pak System stores sensitive data in memory, that could be obtained by an unauthorized user. CWE:CWE-311: Missing...

CVE-2024-37405

Livechat messages can be leaked by combining two NoSQL injections affecting livechat:loginByToken pre-authentication and livechat:loadHistory...

CVE-2024-37405

Livechat messages can be leaked by combining two NoSQL injections affecting livechat:loginByToken pre-authentication and livechat:loadHistory...

CVE-2021-37405

Rejected reason: This is unused...

CVE-2022-37405

Cross-Site Request Forgery CSRF vulnerability in Mickey Kay's Better Font Awesome plugin = 2.0.1 at WordPress...

CVE-2022-37405 WordPress Better Font Awesome plugin <= 2.0.1 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Mickey Kay's Better Font Awesome plugin = 2.0.1 at WordPress...

CVE-2022-37405

CVE-2022-37405 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Better Font Awesome (versions &lt;= 2.0.1). Multiple connected sources confirm the flaw: an attacker could trigger unintended actions by exploiting CSRF, particularly in settings update flows (WPVul...

Reolink Rlc-410W Denial of Service Vulnerability (CNVD-2022-37405)

Reolink Rlc-410W is a Wifi security camera from Reolink China. The Reolink Rlc-410W suffers from a denial of service vulnerability that can be exploited by an attacker to cause a reboot via a compiled HTTP request...

CVE-2021-37405

CVE-2021-37405 entry is rejected/not used and does not represent an active vulnerability.