Lucene search
K

145 matches found

NVD
NVD
added 2020/10/22 9:15 p.m.22 views

CVE-2020-11853

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS0.7699EPSS
Exploits6References9
OSV
OSV
added 2020/10/22 9:15 p.m.5 views

CVE-2020-11853

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS7.9AI score0.7699EPSS
Exploits6References9
ATTACKERKB
ATTACKERKB
added 2020/10/22 9:15 p.m.2 views

CVE-2020-11853

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS9.2AI score0.7699EPSS
Exploits6References53Affected Software7
Prion
Prion
added 2020/10/22 9:15 p.m.26 views

Remote code execution

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

6.5CVSS8.8AI score0.7699EPSS
Exploits6References9Affected Software7
Cvelist
Cvelist
added 2020/10/22 8:37 p.m.54 views

CVE-2020-11853 Arbitrary code execution vulnerability on multiple Micro Focus products

Arbitrary code execution vulnerability affecting multiple Micro Focus products. 1. Operation Bridge Manager affecting version: 2020.05, 2019.11, 2019.05, 2018.11, 2018.05, versions 10.6x and 10.1x and older versions. 2. Application Performance Management affecting versions : 9.51, 9.50 and 9.40...

8.8CVSS9AI score0.7699EPSS
Exploits6References9
IBM Security Bulletins
IBM Security Bulletins
added 2020/09/22 2:34 a.m.49 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2020-15358)

Summary In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. Vulnerability Details CVEID: CVE-2020-15358 DESCRIPTION: SQLite is vulnerable to a heap-based buffe...

5.5CVSS1.5AI score0.01027EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/12 3:46 a.m.25 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2020-9327)

Summary In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations. Vulnerability Details CVEID: CVE-2020-9327 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by a NULL pointer...

7.5CVSS1.9AI score0.03683EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/12 2:39 a.m.27 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2020-11655, CVE-2020-11656)

Summary SQLite through 3.31.1 allows attackers to cause a denial of service segmentation fault via a malformed window-function query because the AggInfo object's initialization is mishandled. Or the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belong...

9.8CVSS0.9AI score0.07407EPSS
Exploits1Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/05/13 12:0 a.m.8 views

The vulnerability of the Application Performance Management (EM Request Monitoring) component of the Oracle Enterprise Manager software allows a perpetrator to gain access to modify, add, or delete data, or to unauthorizedly access protected information.

The vulnerability of the Application Performance Management EM Request Monitoring component of the Oracle Enterprise Manager is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain access to modify, add, or delete data, or to unauthorizedly acce...

6.5CVSS6.6AI score0.01335EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2020/04/15 2:15 p.m.16 views

CVE-2020-2946

Vulnerability in the Application Performance Management product of Oracle Enterprise Manager component: EM Request Monitoring. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.5CVSS5.5AI score0.01335EPSS
Exploits0References1
Prion
Prion
added 2020/04/15 2:15 p.m.12 views

Code injection

Vulnerability in the Application Performance Management product of Oracle Enterprise Manager component: EM Request Monitoring. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6.5CVSS5.8AI score0.01335EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2020/04/15 1:29 p.m.7 views

CVE-2020-2946

Vulnerability in the Application Performance Management product of Oracle Enterprise Manager component: EM Request Monitoring. Supported versions that are affected are 12.1.0.5, 13.2.0.0 and 13.3.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...

6CVSS6.3AI score0.01335EPSS
Exploits0References1
CVE
CVE
added 2020/04/15 1:29 p.m.45 views

CVE-2020-2946

CVE-2020-2946 affects Oracle Enterprise Manager’s Application Performance Management component (EM Request Monitoring). Affected supported versions are 12.1.0.5, 13.2.0.0 and 13.3.0.0. The vulnerability allows a high-privileged attacker with network access over HTTP to compromise APM, potentially...

6.5CVSS5.6AI score0.01335EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2020/04/15 12:0 a.m.4 views

Oracle Application Performance Management Unauthorized Access Vulnerability

Oracle Enterprise Manager is Oracle's on-premise deployment management platform that provides a single management platform for managing all customer Oracle deployments. application Performance Management is the application performance management component of this. A security vulnerability exists ...

6.5CVSS8.5AI score0.01335EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/07 1:33 p.m.31 views

Security Bulletin: A vulnerability in SQLite affects IBM Cloud Application Performance Management Response Time Monitoring Agent (CVE-2019-19925, CVE-2019-19645, CVE-2019-19924, CVE-2019-19923, CVE-2019-19880, CVE-2019-19646, CVE-2019-19926)

Summary SQLite is vulnerable to a denial of service. Vulnerability Details CVEID: CVE-2019-19925 DESCRIPTION: SQLite is vulnerable to a denial of service, caused by the mishandling of a NULL pathname in the zipfileUpdate function in ext/misc/zipfile.c. By sending a specially-crafted request, a...

9.8CVSS0.9AI score0.0825EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/20 5:1 a.m.23 views

Security Bulletin: Multiple vulnerabilities in the IBM SDK, Java Technology Edition affects IBM Performance Management products

Summary Multiple vulnerabilities in the Oracle Java SE and the Java SE Embedded impact the IBM SDK, Java Technology Edition. Vulnerability Details CVEID: CVE-2020-2593 DESCRIPTION: An unspecified vulnerability in Java SE related to the Java SE Networking component could allow an unauthenticated...

8.1CVSS0.5AI score0.04903EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/02/04 6:52 a.m.24 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment Response Time Monitoring Agent (CVE-2019-16168)

Summary SQLite is vulnerable to a denial of service, caused by missing validation of a sqlitestat1 sz field in whereLoopAddBtreeIndex in sqlite3.c. By providing specially-crafted input, a remote attacker could exploit this vulnerability to cause the application to crash. Vulnerability Details...

6.5CVSS0.5AI score0.04253EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/21 2:51 a.m.33 views

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2019-16168)

Summary SQLite is vulnerable to a denial of service, caused by missing validation of a sqlitestat1 sz field in whereLoopAddBtreeIndex in sqlite3.c. By providing specially-crafted input, a remote attacker could exploit this vulnerability to cause the application to crash. Vulnerability Details...

6.5CVSS0.6AI score0.04253EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/19 3:39 p.m.12 views

Security Bulletin: A vulnerability in IBM Jazz for Service Management affects IBM Performance Management products (CVE-2016-9975)

Summary IBM Jazz for Service Management is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. Vulnerability Details CVEID: CVE-2016-9975 DESCRIPTION: IBM Jazz for Service Management ...

8.8CVSS1.3AI score0.00454EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/11/05 9:58 p.m.35 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Performance Management products

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition used by IBM Monitoring. IBM Monitoring has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-2422 DESCRIPTION: An unspecified vulnerability in Oracle Java SE related to the Java SE Libraries compone...

6.5CVSS0.8AI score0.05074EPSS
Exploits1Affected Software1
Rows per page
Query Builder