Lucene search
K

43 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/05 4:38 p.m.8 views

Security Bulletin: Vulnerability in IBM's Common Cryptographic Architecture (CCA) (CVE-2025-13375)

Summary IBM Common Cryptographic Architecture CCA is used to interface with the IBM Hardware Security Module HSM. A security vulnerability exists that has a high confidentiality, integrity and availability impact on card and consuming applications. Vulnerability Details CVEID:CVE-2025-13375...

9.8CVSS6.1AI score0.00506EPSS
Exploits0Affected Software3
NVD
NVD
added 2026/02/04 9:15 p.m.6 views

CVE-2025-13375

IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...

9.8CVSS0.00506EPSS
Exploits0References1
CVE
CVE
added 2026/02/04 8:31 p.m.16 views

CVE-2025-13375

IBM Common Cryptographic Architecture (CCA) versions affected: 7.5.52 and 8.4.82. The Red Hat/IBM bulletin and NVD entries indicate an unauthenticated user could execute arbitrary commands with elevated privileges on systems running these CCA releases. Affected platforms include IBM AIX, IBM i, I...

9.8CVSS5.8AI score0.00506EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/04 8:31 p.m.30 views

CVE-2025-13375 IBM Common Cryptographic Architecture Arbitrary Command Execution

IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...

9.8CVSS0.00506EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/04 8:31 p.m.3 views

CVE-2025-13375 IBM Common Cryptographic Architecture Arbitrary Command Execution

IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...

9.8CVSS5.8AI score0.00506EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/04 12:0 a.m.6 views

PT-2026-5875

Name of the Vulnerable Software and Affected Versions IBM Common Cryptographic Architecture CCA versions 7.5.52 and 8.4.82 Description The software contains a flaw that could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system. This impacts systems...

9.8CVSS6AI score0.00506EPSS
Exploits0References13
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.7 views

IBM Common Cryptographic Architecture 安全漏洞

IBM Common Cryptographic Architecture is a cryptographic platform developed by the American multinational company International Business Machines IBM. It provides features for protecting financial transactions. Versions 7.5.52 and 8.4.82 of IBM Common Cryptographic Architecture contain security...

9.8CVSS6.1AI score0.00506EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-38005

Malicious code in bioql PyPI...

3.7CVSS6.6AI score0.00452EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-54203

Malicious code in bioql PyPI...

3.7CVSS6.6AI score0.00241EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-27569

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.00245EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/03 12:0 a.m.6 views

The vulnerability of the IBM Common Cryptographic Architecture (CCA) cryptographic platform, related to information disclosure, allows a perpetrator to gain unauthorized access to the protected information.

The vulnerability of the IBM Common Cryptographic Architecture CCA relates to the disclosure of information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to the protected information during the generation of ECDSA signatures...

6.8CVSS5.5AI score0.004EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/03 12:0 a.m.6 views

The vulnerability of the IBM Common Cryptographic Architecture (CCA) cryptographic platform, which arises from information disclosure due to incompatibilities, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM Common Cryptographic Architecture CCA lies in the ability to disclose information through incompatibility. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

3.7CVSS5.5AI score0.00241EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/03 12:0 a.m.8 views

The vulnerability of the IBM Common Cryptographic Architecture (CCA) lies in the writing beyond the buffer boundaries in memory, which allows a attacker to trigger a failure in the operation of the Hardware Security Module (HSM).

The vulnerability of the IBM Common Cryptographic Architecture CCA lies in the writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause a failure in the Hardware Security Module HSM’s security hardware module by usin...

6.8CVSS5.7AI score0.00346EPSS
Exploits0References3Affected Software2
NVD
NVD
added 2025/03/11 1:15 a.m.10 views

CVE-2024-49823

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an authenticated user to cause a denial of service in the Hardware Security Module HSM using a specially crafted sequence of valid requests...

6.5CVSS0.00346EPSS
Exploits0References1
NVD
NVD
added 2025/03/11 1:15 a.m.13 views

CVE-2024-22340

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack...

6.5CVSS0.004EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/11 12:50 a.m.14 views

CVE-2024-22340 IBM Common Cryptographic Architecture information disclosure

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack...

6.5CVSS0.004EPSS
Exploits0References1
CVE
CVE
added 2025/03/11 12:50 a.m.60 views

CVE-2024-22340

The CVE-2024-22340 entry affects IBM Common Cryptographic Architecture (CCA) versions 7.0.0–7.5.51 for the 4769 family (MTM for 4769) across IBM AIX, IBM i, IBM PowerLinux, and Linux x86. The vulnerability could allow a remote attacker to obtain sensitive information during ECDSA signature creati...

6.5CVSS6.5AI score0.004EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/03/11 12:50 a.m.11 views

CVE-2024-22340 IBM Common Cryptographic Architecture information disclosure

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack...

6.5CVSS6.5AI score0.004EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/11 12:49 a.m.8 views

CVE-2024-41760 IBM Common Cryptographic Architecture information disclosure

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations...

3.7CVSS6.4AI score0.00241EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/11 12:49 a.m.12 views

CVE-2024-41760 IBM Common Cryptographic Architecture information disclosure

IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations...

3.7CVSS0.00241EPSS
Exploits0References1
Rows per page
Query Builder