Lucene search
K

1378 matches found

Cvelist
Cvelist
added 2025/11/05 10:44 p.m.10 views

CVE-2025-55278 HCL DevOps Loop is susceptible to an improper authentication vulnerability

Improper authentication in the API authentication middleware of HCL DevOps Loop allows authentication tokens to be accepted without proper validation of their expiration and cryptographic signature. As a result, an attacker could potentially use expired or tampered tokens to gain unauthorized...

8.1CVSS0.00168EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/05 10:44 p.m.5 views

CVE-2025-55278 HCL DevOps Loop is susceptible to an improper authentication vulnerability

Improper authentication in the API authentication middleware of HCL DevOps Loop allows authentication tokens to be accepted without proper validation of their expiration and cryptographic signature. As a result, an attacker could potentially use expired or tampered tokens to gain unauthorized...

8.1CVSS6.8AI score0.00168EPSS
Exploits0References1
CVE
CVE
added 2025/11/05 10:44 p.m.30 views

CVE-2025-55278

CVE-2025-55278 affects HCL DevOps Loop. Concrete details across sources show improper authentication in the API authentication middleware, allowing tokens to be accepted without proper validation of expiration or cryptographic signature. Affected component is the API authentication layer; root ca...

8.1CVSS6.8AI score0.00168EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/05 12:0 a.m.5 views

HCL DevOps Loop 安全漏洞

HCL DevOps Loop is a suite of code development platforms from HCL India. A security vulnerability exists in HCL DevOps Loop that stems from the API authentication middleware not properly validating token expiration times and cryptographic signatures, which could lead to the use of expired or...

8.1CVSS7.2AI score0.00168EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.6 views

PT-2025-45165

Name of the Vulnerable Software and Affected Versions HCL DevOps Loop affected versions not specified Description The API authentication middleware in HCL DevOps Loop does not properly validate authentication tokens, specifically regarding their expiration and cryptographic signature. This could...

8.1CVSS6.7AI score0.00168EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/30 8:15 p.m.17 views

Security Bulletin: Multiple vulnerabilities in IBM DevOps Solution Workbench

Summary Multiple vulnerabilities were addressed in IBM DevOps Solution Workbench version 5.1. Vulnerability Details CVEID:CVE-2025-46701 DESCRIPTION: Improper Handling of Case Sensitivity vulnerability in Apache Tomcat's GCI servlet allows security constraint bypass of security constraints that...

9.8CVSS8.2AI score0.63258EPSS
Exploits13Affected Software1
OSV
OSV
added 2025/10/23 4:25 p.m.6 views

GO-2025-3995 Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook in github.com/argoproj/argo-cd

Argo CD Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook in github.com/argoproj/argo-cd...

7.5CVSS7.1AI score0.00549EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/14 2:36 p.m.6 views

Security Bulletin: IBM DevOps Deploy / IBM UrbanCode Deploy (UCD) is susceptible to multiple vulnerabilities in Netty (CVE-2025-58056, CVE-2025-58057)

Summary Netty is used by IBM DevOps Deploy / IBM UrbanCode Deploy UCD as part of the agent-server-relay communication system and is affected by CVE-2025-58056, CVE-2025-58057. Vulnerability Details CVEID:CVE-2025-58056 DESCRIPTION: Netty is an asynchronous event-driven network application framewo...

7.5CVSS6.3AI score0.00631EPSS
Exploits2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12204

Malware in sbrugna...

5.4CVSS6.4AI score0.01565EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-1621

Malware in sbrugna...

5.4CVSS5.6AI score0.01697EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-1619

Malware in sbrugna...

6.1CVSS6.3AI score0.02419EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-2299

Malware in sbrugna...

7.5CVSS7.4AI score0.01837EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.21 views

EUVD-2020-12203

Malware in sbrugna...

5.5CVSS5.5AI score0.01512EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-2193

Malware in sbrugna...

5.4CVSS5.6AI score0.01328EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-1624

Malware in sbrugna...

7.5CVSS7.5AI score0.03023EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-1713

Malware in sbrugna...

5.4CVSS5.6AI score0.01697EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-1615

Malware in sbrugna...

6.1CVSS6.3AI score0.02626EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-15137

Malware in sbrugna...

6.1CVSS6.8AI score0.02317EPSS
Exploits3References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-1723

Malware in sbrugna...

6.5CVSS6.5AI score0.0157EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-1623

Malware in sbrugna...

6.1CVSS6.3AI score0.01983EPSS
Exploits0References3
Rows per page
Query Builder