Lucene search
K

41 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/10/03 7:25 p.m.10 views

Security Bulletin: Vulnerability in go package in nginx-controller affects IBM Db2 Data Management Console

Summary go package in nginx-controller open source library is used by IBM Db2 Data Management Console . This bulletin describes the upgrades necessary to address the vulnerability. Vulnerability Details CVEID:CVE-2023-24532 DESCRIPTION: An unspecified error with return an incorrect result in the...

7.5CVSS6.7AI score0.04561EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/07/11 12:0 a.m.5 views

CBL Mariner 2.0 Security Update: golang (CVE-2023-24532)

The version of golang installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-24532 advisory. - The ScalarMult and ScalarBaseMult methods of the P256 Curve May return an incorrect result if called with so...

5.3CVSS6.9AI score0.00817EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/26 3:50 a.m.101 views

Security Bulletin: Vulnerabilities in Python, OpenSSH, Golang Go, Minio and Redis may affect IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift

Summary IBM Spectrum Protect Plus Container backup and restore for Kubernetes and OpenShift can be affected by vulnerabilities in Python, OpenSSH, Golang Go, Minio and Redis. Vulnerabilities include denial of service, gain elevated privileges on the system, allow a remote attacker to execute...

9.8CVSS9.6AI score0.02453EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-24532

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ScalarMult and ScalarBaseMult methods of the P256 Curve may return an incorrect result if called with some specific unreduced scalars a scalar larger than t...

5.3CVSS6.7AI score0.00817EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2024/11/13 9:13 a.m.31 views

CVE-2023-24532 affecting package golang for versions less than 1.20.2-1

CVE-2023-24532 affecting package golang for versions less than 1.20.2-1. A patched version of the package is available...

5.3CVSS5.4AI score0.00817EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/05 6:34 p.m.26 views

Security Bulletin: Vulnerability in Go affects watsonx.data

Summary TheScalarMult and ScalarBaseMult methods of the P256 Curve in Golang Go have an unspecified error that returns an incorrect result which has an unknown impact and attack vector. watsonx.data may be affected by this. Vulnerability Details CVEID:CVE-2023-24532 DESCRIPTION: An unspecified...

5.3CVSS7.2AI score0.00817EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/03 8:26 p.m.40 views

Security Bulletin: Vulnerabilities in Golang Go affect watsonx.data

Summary Golang Go has multiple vulnerabilities that include HTTP request smuggling, remote attacks to obtain sensitive information, denial of service, and unspecified errors with return an incorrect results. These can affect watsonx.data. Vulnerability Details CVEID:CVE-2022-1705 DESCRIPTION:...

6.5CVSS7.8AI score0.05623EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/08 3:20 p.m.47 views

Security Bulletin: IBM Cloud Pak for Data is vulnerable to several issues due to go modules used in nginx ( CVE-2023-24532, CVE-2022-41724, CVE-2022-41725, CVE-2022-41723 )

Summary Nginx is used by IBM Cloud Pak for Data as part of the web interface. CVE-2023-24532, CVE-2022-41724, CVE-2022-41725, CVE-2022-41723. Vulnerability Details CVEID:CVE-2023-24532 DESCRIPTION: An unspecified error with return an incorrect result in the ScalarMult and ScalarBaseMult methods o...

7.5CVSS6.9AI score0.04561EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/06/28 12:45 p.m.24 views

Security Bulletin: A vulnerability in Go affects Data Replication on Cloud Pak for Data

Summary A vulnerability in the Go package has been addressed. Vulnerability Details CVEID:CVE-2023-24532 DESCRIPTION: An unspecified error with return an incorrect result in the ScalarMult and ScalarBaseMult methods of the P256 Curve in Golang Go has an unknown impact and attack vector. CVSS Base...

5.3CVSS7.1AI score0.00817EPSS
Exploits0Affected Software1
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.28 views

CVE-2023-24532 affecting package golang for versions less than 1.20.2-1

CVE-2023-24532 affecting package golang for versions less than 1.20.2-1. A patched version of the package is available...

5.3CVSS5.5AI score0.00817EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/02/25 3:0 a.m.36 views

CVE-2023-24532 affecting package golang for versions less than 1.21.6-1

CVE-2023-24532 affecting package golang for versions less than 1.21.6-1. A patched version of the package is available...

5.3CVSS7.8AI score0.00817EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/02/25 3:0 a.m.24 views

CVE-2023-24532 affecting package golang for versions less than 1.21.6-1

CVE-2023-24532 affecting package golang for versions less than 1.21.6-1. A patched version of the package is available...

5.3CVSS7.3AI score0.00817EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/16 12:0 a.m.35 views

Oracle TimesTen 22.x < 22.1.1.7.0 Multiple Vulnerabilities (July 2023 CPU)

The version of Oracle TimesTen installed on the remote host is 22.x prior to 22.1.1.7.0. It is, therefore, affected by multiple vulnerabilities as referenced in the July 2023 CPU advisory - Vulnerability in Oracle TimesTen In-Memory Database component: TimesTen IMDB Dell BSAFE Micro Edition Suite...

9.8CVSS6.9AI score0.01466EPSS
Exploits2References12
RedHat Linux
RedHat Linux
added 2023/10/26 12:47 a.m.39 views

Important: Red Hat Security Advisory: Run Once Duration Override Operator for Red Hat OpenShift 1.0.1 security update

An update for run-once-duration-override-container, run-once-duration-override-operator-bundle-container, and run-once-duration-override-operator-container is now available for RODOO-1.0-RHEL-8. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

9.8CVSS7.1AI score0.99999EPSS
Exploits19References16
RedHat Linux
RedHat Linux
added 2023/10/20 5:18 p.m.44 views

Important: Red Hat Security Advisory: Service Telemetry Framework 1.5.2 security update

An update is now available for Service Telemetry Framework 1.5.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References9
RedHat Linux
RedHat Linux
added 2023/10/19 4:50 p.m.42 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.5 security update

An update for osp-director-agent-container, osp-director-downloader-container, osp-director-operator-bundle-container, and osp-director-operator-container is now available for Red Hat OpenStack Platform 16.2.5. Red Hat Product Security has rated this update as having a security impact of Importan...

7.5CVSS7.1AI score0.99999EPSS
Exploits19References9
Amazon
Amazon
added 2023/10/03 12:0 a.m.43 views

Important: golang

Issue Overview: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the...

9.8CVSS8.5AI score0.05623EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/09/20 3:43 p.m.29 views

Moderate: Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.6 security and bug fix update

OpenShift API for Data Protection OADP 1.1.6 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.8CVSS6.8AI score0.05994EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2023/08/31 12:59 a.m.35 views

Moderate: Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.12 security and bug fix update

The Migration Toolkit for Containers MTC 1.7.12 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

5.3CVSS6.7AI score0.00817EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/08/30 2:43 p.m.46 views

Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps

Summary Multiple vulnerabilities were addressed in IBM Cloud Pak for Watson AIOps version 4.1.2 Vulnerability Details CVEID:CVE-2023-24532 DESCRIPTION: An unspecified error with return an incorrect result in the ScalarMult and ScalarBaseMult methods of the P256 Curve in Golang Go has an unknown...

9.8CVSS9.6AI score0.02281EPSS
Exploits0Affected Software1
Rows per page
Query Builder