Lucene search
K

9 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/04 9:24 p.m.20 views

Security Bulletin: IBM Storage Fusion Data Foundation is vulnerable to Improper and Incorrect Authorization and SQL Injection in Vault (CVE-2023-0665, CVE-2023-24999, CVE-2023-0620)

Summary Vault is used by IBM Storage Fusion Data Foundation as part of user authentication. This bulletin identifies the steps to take to address the vulnerability in IBM Storage Fusion Data Foundation. CVE-2023-0665, CVE-2023-24999, CVE-2023-0620. Vulnerability Details CVEID:CVE-2023-0665...

8.1CVSS7.8AI score0.00597EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/10/31 12:54 p.m.53 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.14.0 bug fix and security update

Red Hat OpenShift Container Platform release 4.14.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a...

9.8CVSS7AI score0.99999EPSS
Exploits29References1323
RedHat Linux
RedHat Linux
added 2023/06/21 3:22 p.m.67 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.13.0 security and bug fix update

Updated images that include numerous enhancements, security, and bug fixes are now available in Red Hat Container Registry for Red Hat OpenShift Data Foundation 4.13.0 on Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.1CVSS6.8AI score0.24928EPSS
Exploits10References200
RedHat Linux
RedHat Linux
added 2023/05/17 10:30 p.m.47 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.13.0 security update

Red Hat OpenShift Container Platform release 4.13.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.13. Red Hat Product Security has rated this update as having a...

9.1CVSS7AI score0.05994EPSS
Exploits9References909
NVD
NVD
added 2023/03/30 1:15 a.m.44 views

CVE-2023-0620

HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL MSSQL Database Storage Backend. When configuring the MSSQL plugin through the local, certain parameters are not sanitized when passed to the user-provide...

6.7CVSS7AI score0.00378EPSS
Exploits0References2
Wolfi
Wolfi
added 2023/03/30 1:15 a.m.22 views

CVE-2023-0620 vulnerabilities

Vulnerabilities for packages: k3d...

6.7CVSS7.5AI score0.00378EPSS
Exploits0
Chainguard
Chainguard
added 2023/03/30 1:15 a.m.36 views

CVE-2023-0620 vulnerabilities

Vulnerabilities for packages: k3d...

6.7CVSS7.3AI score0.00378EPSS
Exploits0
CVE
CVE
added 2023/03/30 12:28 a.m.384 views

CVE-2023-0620

HashiCorp Vault/Vault Enterprise versions 0.8.0–1.13.1 are vulnerable to SQL injection when configuring the Microsoft SQL (MSSQL) Database Storage Backend. In the MSSQL plugin configuration, certain parameters are not sanitized before being passed to the backend, allowing a local attacker to modi...

6.7CVSS6.9AI score0.00378EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/30 12:28 a.m.8 views

CVE-2023-0620 Vault Vulnerable to SQL Injection When Configuring the Microsoft SQL Database Storage Backend

HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL MSSQL Database Storage Backend. When configuring the MSSQL plugin through the local, certain parameters are not sanitized when passed to the user-provide...

6.5CVSS6.7AI score0.00378EPSS
Exploits0References2
Rows per page
Query Builder