EUVD-2026-24428

Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications component: App Server. Supported versions that are affected are 7.0.1.0 and 7.0.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Life...

Oracle Life Sciences InForm 安全漏洞

Oracle Life Sciences InForm is a clinical trial data collection and management system developed by Oracle Corporation. Versions 7.0.1.0 and 7.0.1.1 of Oracle Life Sciences InForm contain security vulnerabilities. These vulnerabilities stem from issues with the App Server component, which may allo...

MAL-2026-945 Malicious code in ui5-cap-event-app-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 837e841e2b75385a4e7c030237983cfe52f91373ffa3e56859c7055ac0a80f4d The package ui5-cap-event-app-server was found to contain malicious code. Source: ossf-package-analysis...

PT-2026-2342

Name of the Vulnerable Software and Affected Versions NetWeaver Application Server for Java NW AS Java affected versions not specified Description The User Management Engine UME within the software uses an outdated cryptographic algorithm to encrypt User Mapping data. This could allow an attacker...

EUVD-2021-25574

Malware in sbrugna...

EUVD-2016-6450

Malware in sbrugna...

EUVD-2011-3522

Malware in sbrugna...

Security Bulletin: The IBM Engineering Test Management product using WebSphere Application Server is affected by a denial of service with glassfish jsonp (CVE-2025-36097)

Summary IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by a denial of service. This affects WebSphere Liberty with the jsonp-1.0, jsonp-1.1, or jsonp-2.0 features enabled. It has been addressed in this bulletin. Vulnerability Details Refer to the security...

MAL-2025-3883 Malicious code in driver-app-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3570e82c82a42968f9af1f2c57c421f5b73880688f83466fc4310325ecb60dff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in driver-app-server (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3570e82c82a42968f9af1f2c57c421f5b73880688f83466fc4310325ecb60dff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

LoLLMs Web UI 安全漏洞

LoLLMs Web UI is a web user interface for large languages and multimodal systems by the individual developer Saifeddine ALOUI. A security vulnerability exists in LoLLMs Web UI version V12, which stems from the startappserver function not properly cleaning up the appname parameter, which could lea...

Is Your Cloud App Server Secure? Best Practices for Data Protection

Almost every company nowadays depends on cloud computing since it is a necessary tool in the world of…...

Security Bulletin: IBM Tivoli Netcool Impact is vulnerable to server-side request forgery due to IBM WebSphere Application Server Liberty (CVE-2024-22329)

Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. Information about a security vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. Vulnerability Details...

PT-2024-25051

Name of the Vulnerable Software and Affected Versions SAP NetWeaver App Server ABAP & ABAP Platform affected versions not specified Description The issue allows an unauthenticated attacker to upload a malicious file to the server. When accessed by a victim, this file can enable the attacker to...

CVE-2024-2227

IdentityIQ (SailPoint) is affected by a JavaServer Faces path traversal vulnerability (JSF 2.2.20) that allows reading arbitrary files from the application server filesystem. Root cause: path traversal in JSF 2.2.20, as described in CVE-2020-6950 lineage. Affected IdentityIQ versions include 8.3 ...

CVE-2023-40375

Integrated application server for IBM i 7.2, 7.3, 7.4, and 7.5 contains a local privilege escalation vulnerability. A malicious actor with command line access to the host operating system can elevate privileges to gain root access to the host operating system. IBM X-Force ID: 263580...

CVE-2023-40375

CVE-2023-40375 concerns the Integrated application server for IBM i, affecting IBM i versions 7.2–7.5. The Red Hat/IBM bulletin and IBM i security pages describe a local privilege escalation vulnerability: a user with command-line access to the host OS can elevate privileges to root. Root cause i...

CVE-2022-4039

A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled. This flaw allows an attacker to use this interface to deploy malicious code and access and modify potentially sensitive information in the app server...

CVE-2022-4039 Rhsso-container-image: unsecured management interface exposed to adjecent network

A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled. This flaw allows an attacker to use this interface to deploy malicious code and access and modify potentially sensitive information in the app server...

CVE-2022-4039 Rhsso-container-image: unsecured management interface exposed to adjecent network

A flaw was found in Red Hat Single Sign-On for OpenShift container images, which are configured with an unsecured management interface enabled. This flaw allows an attacker to use this interface to deploy malicious code and access and modify potentially sensitive information in the app server...