43 matches found
Security Bulletin: Vulnerability in IBM's Common Cryptographic Architecture (CCA) (CVE-2025-13375)
Summary IBM Common Cryptographic Architecture CCA is used to interface with the IBM Hardware Security Module HSM. A security vulnerability exists that has a high confidentiality, integrity and availability impact on card and consuming applications. Vulnerability Details CVEID:CVE-2025-13375...
CVE-2025-13375
IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...
CVE-2025-13375
IBM Common Cryptographic Architecture (CCA) versions affected: 7.5.52 and 8.4.82. The Red Hat/IBM bulletin and NVD entries indicate an unauthenticated user could execute arbitrary commands with elevated privileges on systems running these CCA releases. Affected platforms include IBM AIX, IBM i, I...
CVE-2025-13375 IBM Common Cryptographic Architecture Arbitrary Command Execution
IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...
CVE-2025-13375 IBM Common Cryptographic Architecture Arbitrary Command Execution
IBM Common Cryptographic Architecture CCA 7.5.52 and 8.4.82 could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system...
PT-2026-5875
Name of the Vulnerable Software and Affected Versions IBM Common Cryptographic Architecture CCA versions 7.5.52 and 8.4.82 Description The software contains a flaw that could allow an unauthenticated user to execute arbitrary commands with elevated privileges on the system. This impacts systems...
IBM Common Cryptographic Architecture 安全漏洞
IBM Common Cryptographic Architecture is a cryptographic platform developed by the American multinational company International Business Machines IBM. It provides features for protecting financial transactions. Versions 7.5.52 and 8.4.82 of IBM Common Cryptographic Architecture contain security...
EUVD-2023-38005
Malicious code in bioql PyPI...
EUVD-2024-54203
Malicious code in bioql PyPI...
EUVD-2022-27569
Malicious code in bioql PyPI...
The vulnerability of the IBM Common Cryptographic Architecture (CCA) cryptographic platform, related to information disclosure, allows a perpetrator to gain unauthorized access to the protected information.
The vulnerability of the IBM Common Cryptographic Architecture CCA relates to the disclosure of information. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to the protected information during the generation of ECDSA signatures...
The vulnerability of the IBM Common Cryptographic Architecture (CCA) cryptographic platform, which arises from information disclosure due to incompatibilities, allows attackers to gain unauthorized access to protected information.
The vulnerability of the IBM Common Cryptographic Architecture CCA lies in the ability to disclose information through incompatibility. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the IBM Common Cryptographic Architecture (CCA) lies in the writing beyond the buffer boundaries in memory, which allows a attacker to trigger a failure in the operation of the Hardware Security Module (HSM).
The vulnerability of the IBM Common Cryptographic Architecture CCA lies in the writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor, operating remotely, to cause a failure in the Hardware Security Module HSM’s security hardware module by usin...
CVE-2024-49823
IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an authenticated user to cause a denial of service in the Hardware Security Module HSM using a specially crafted sequence of valid requests...
CVE-2024-22340
IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack...
CVE-2024-22340 IBM Common Cryptographic Architecture information disclosure
IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack...
CVE-2024-22340
The CVE-2024-22340 entry affects IBM Common Cryptographic Architecture (CCA) versions 7.0.0–7.5.51 for the 4769 family (MTM for 4769) across IBM AIX, IBM i, IBM PowerLinux, and Linux x86. The vulnerability could allow a remote attacker to obtain sensitive information during ECDSA signature creati...
CVE-2024-22340 IBM Common Cryptographic Architecture information disclosure
IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow a remote attacker to obtain sensitive information during the creation of ECDSA signatures to perform a timing-based attack...
CVE-2024-41760 IBM Common Cryptographic Architecture information disclosure
IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations...
CVE-2024-41760 IBM Common Cryptographic Architecture information disclosure
IBM Common Cryptographic Architecture 7.0.0 through 7.5.51 could allow an attacker to obtain sensitive information due to a timing attack during certain RSA operations...