Lucene search
+L

148 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/11/10 6:48 a.m.28 views

Security Bulletin: Multiple vulnerabilities in Db2 affect IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise

Summary IBM® Db2® shipped with IBM Cloud Orchestrator and IBM Cloud Orchestrator Enterprise is vulnerable to information disclosure. Vulnerabilities have been identified in IBM Db2 and information about their fixes are published in a security bulletin. Vulnerability Details CVEID: CVE-2020-4387...

8.4CVSS0.6AI score0.0241EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/29 1:50 p.m.29 views

Security Bulletin: Multiple vulnerabilities in IBM DB2 affect IBM Operations Analytics Predictive Insights

Summary There are multiple vulnerabilities in IBM® DB2 used by IBM Operations Analytics Predictive Insights 1.3.6 and earlier. IBM Operations Analytics Predictive Insights has addressed the applicable CVEs CVE-2020-4386, CVE-2020-4355, CVE-2020-4420,CVE-2020-4414, CVE-2020-4363, CVE-2020-4387...

8.4CVSS2.8AI score0.0241EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/07/09 12:0 a.m.50 views

IBM DB2 9.7 < FP11 40162 / 10.1 < FP6 40161 / 10.5 < FP11 40160 / 11.1 < FP5 40159 / 11.5 < Mod 4 FP0 Multiple Vulnerabilities (Windows)

According to its version, the installation of IBM DB2 running on the remote host is either 9.7 prior to Fix Pack 11 Special Build 40162, 10.1 prior to Fix Pack 6 Special Build 40161, 10.5 prior to Fix Pack 11 Special Build 40160, or 11.1 prior to Fix Pack 5 Special Build 40159, 11.5 prior to Mod ...

8.4CVSS7.6AI score0.0241EPSS
Exploits0References12
CVE
CVE
added 2020/07/01 2:25 p.m.64 views

CVE-2020-4355

IBM DB2 for Linux/UNIX/Windows (including DB2 Connect Server) versions 9.7, 10.1, 10.5, 11.1 and 11.5 are affected by CVE-2020-4355 due to improper SSL renegotiation handling, enabling a remote attacker to cause high resource usage and a denial of service. Connected IBM bulletins corroborate the ...

5.3CVSS6AI score0.02161EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2020/05/13 12:0 a.m.23 views

Ubuntu: Security Advisory (USN-4355-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.3CVSS4.1AI score0.0033EPSS
Exploits0References3
CVE
CVE
added 2019/04/03 5:43 p.m.79 views

CVE-2018-4355

The CVE-2018-4355 entry refers to a configuration issue that affected iOS prior to 12 and macOS Mojave 10.14. According to Apple’s security content, the issue involved Bluetooth and was mitigated by applying additional restrictions and input validation changes. Affected products include iPhone/iP...

5.5CVSS6.2AI score0.0081EPSS
Exploits0References2Affected Software2
Tenable Nessus
Tenable Nessus
added 2018/12/20 12:0 a.m.41 views

Debian DSA-4355-1 : openssl1.0 - security update

Several local side channel attacks and a denial of service via large Diffie-Hellman parameters were discovered in OpenSSL, a Secure Sockets Layer toolkit. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4355...

7.5CVSS6.8AI score0.49268EPSS
Exploits4References7
CVE
CVE
added 2018/03/16 2:4 p.m.21 views

CVE-2017-4355

This CVE entry is rejected/not used and does not represent an active vulnerability.

7.3AI score
Exploits0
Cvelist
Cvelist
added 2018/03/16 2:4 p.m.11 views

CVE-2017-4355

...

Exploits0
Cvelist
Cvelist
added 2017/05/11 2:1 p.m.9 views

CVE-2014-4355

...

Exploits0
CVE
CVE
added 2017/05/11 2:1 p.m.23 views

CVE-2014-4355

CVE-2014-4355 entry is rejected/not used and does not represent an active vulnerability.

6.9AI score
Exploits0
OSV
OSV
added 2016/06/13 7:59 p.m.4 views

CVE-2016-4355

Multiple integer overflows in ber-decoder.c in Libksba before 1.3.3 allow remote attackers to cause a denial of service crash via crafted BER data, which leads to a buffer overflow...

7.5CVSS6.9AI score
Exploits0References5
OSV
OSV
added 2016/06/13 7:59 p.m.0 views

BELL-CVE-2016-4355 CVE-2016-4355 does not affect BellSoft software

Bulletin has no description...

7.5CVSS5.8AI score0.01866EPSS
Exploits0References1
CVE
CVE
added 2016/06/13 7:0 p.m.87 views

CVE-2016-4355

CVE-2016-4355 is a vulnerability in Libksba prior to 1.3.3 where multiple integer overflows in ber-decoder.c allow remote attackers to trigger a denial of service (crash) via crafted BER data, which can lead to a buffer overflow. The connected documents corroborate that the issue affects Libksba’...

7.5CVSS7.3AI score0.01866EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/05/18 12:0 a.m.54 views

Ubuntu 14.04 LTS / 16.04 LTS : Libksba vulnerabilities (USN-2982-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2982-1 advisory. Hanno Bck discovered that Libksba incorrectly handled decoding certain BER data. An attacker could use this issue to cause Libksba to crash,...

7.5CVSS8.1AI score0.03205EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/04/29 12:0 a.m.27 views

CVE-2016-4355

Multiple integer overflows in ber-decoder.c in Libksba before 1.3.3 allow remote attackers to cause a denial of service crash via crafted BER data, which leads to a buffer overflow...

7.5CVSS7.4AI score0.01866EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.31 views

Oracle: Security Advisory (ELSA-2013-1790)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS7.4AI score0.0381EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.43 views

Oracle: Security Advisory (ELSA-2010-0054)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.1CVSS6.8AI score0.08941EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.31 views

Oracle: Security Advisory (ELSA-2013-1790-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

1.5CVSS6.7AI score0.0031EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2015/09/29 12:0 a.m.30 views

Gentoo Security Advisory GLSA 201407-03

Gentoo Linux Local Security Checks GLSA 201407-03 SPDX-FileCopyrightText: 2015 Eero Volotinen Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later ifdescription...

8.3CVSS6.5AI score0.00876EPSS
Exploits0References1
Rows per page
Query Builder