Lucene search
K

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/30 8:58 a.m.12 views

Security Bulletin: IBM InfoSphere Optim Archive Viewer is affected by a vulnerability in Next.js (CVE-2025-48068)

Summary A vulnerability involving cross-site WebSocket hijacking in the Next.js framework CVE-2025-48068 used by IBM InfoSphere Optim Archive Viewer has been addressed by upgrading to version 15.5.15. Vulnerability Details CVEID:CVE-2025-48068 DESCRIPTION: Next.js is a React framework for buildin...

4.3CVSS5.8AI score0.00174EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/12/19 9:13 p.m.9 views

Security Bulletin: IBM Security QRadar Network Threat Analytics app for IBM QRadar SIEM includes components with known vulnerabilities

Summary Components with known vulnerabilities were addressed in a IBM Security QRadar Network Threat Analytics app release Vulnerability Details CVEID:CVE-2025-29927 DESCRIPTION: Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to version...

9.1CVSS6.7AI score0.99301EPSS
Exploits58Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/23 1:11 p.m.11 views

Security Bulletin: IBM Security QRadar Network Threat Analytics app for IBM QRadar SIEM includes a component with known vulnerabilities (CVE-2025-29927 & CVE-2025-48068)

Summary The product includes a vulnerable component e.g., framework library that may be identified and exploited with automated tools. IBM Security QRadar Network Threat Analytics app for IBM QRadar SIEM has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-29927 DESCRIPTION:...

9.1CVSS7.4AI score0.99301EPSS
Exploits58Affected Software1
Cvelist
Cvelist
added 2025/05/30 3:37 a.m.37 views

CVE-2025-48068 Information exposure in Next.js dev server due to lack of origin verification

Next.js is a React framework for building full-stack web applications. In versions starting from 13.0 to before 14.2.30 and 15.0.0 to before 15.2.2, Next.js may have allowed limited source code exposure when the dev server was running with the App Router enabled. The vulnerability only affects...

2.3CVSS0.00174EPSS
Exploits0References2
Circl
Circl
added 2025/05/29 12:34 p.m.17 views

CVE-2025-48068

creationtimestamp| type| source ---|---|--- 2025-05-29 12:34:23+00:00| seen| https://bsky.app/profile/redmin78.bsky.social/post/3lqcq46gck22x 2025-05-29 13:59:57+00:00| seen| https://bsky.app/profile/azu.bsky.social/post/3lqcuvbhrsb27 2025-05-29 14:14:00+00:00| seen|...

4.3CVSS4.6AI score0.00174EPSS
Exploits0References7
Rows per page
Query Builder