Lucene search
K

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/07/12 11:40 p.m.26 views

Security Bulletin: IBM MQ Appliance is affected by an improper validation vulnerability (CVE-2021-38910)

Summary IBM MQ Appliance has resolved an improper validation vulnerability. Vulnerability Details CVEID: CVE-2021-38910 DESCRIPTION: IBM DataPower Gateway V10CD, 10.0.1, and 2108.4.1 could allow a remote attacker to bypass security restrictions, caused by the improper validation of input. By...

5.3CVSS2.3AI score0.01076EPSS
Exploits0Affected Software1
OSV
OSV
added 2022/03/10 8:15 p.m.4 views

CVE-2021-38910

IBM DataPower Gateway V10CD, 10.0.1, and 2108.4.1 could allow a remote attacker to bypass security restrictions, caused by the improper validation of input. By sending a specially crafted JSON message, an attacker could exploit this vulnerability to modify structure and fields. IBM X-Force ID:...

5.3CVSS5.8AI score0.01076EPSS
Exploits0References2
CVE
CVE
added 2022/03/10 7:50 p.m.102 views

CVE-2021-38910

CVE-2021-38910 affects IBM DataPower Gateway V10CD (10.0.2.x+), 10.0.1, and 2108.4.1. The root cause is improper input validation, enabling a remote attacker to bypass security restrictions by sending a crafted JSON message to modify structure and fields. Documented impact is bypass of security c...

5.3CVSS5.2AI score0.01076EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/03/09 7:10 p.m.60 views

Security Bulletin: IBM DataPower Gateway permits reflected JSON injection (CVE-2021-38910)

Summary IBM has addressed the CVE Vulnerability Details CVEID: CVE-2021-38910 DESCRIPTION: IBM DataPower Gateway could allow a remote attacker to bypass security restrictions, caused by the improper validation of input. By sending a specially crafted JSON message, an attacker could exploit this...

5.3CVSS5.2AI score0.01076EPSS
Exploits0Affected Software3
Rows per page
Query Builder