Security Bulletin: Multiple vulnerabilities found in IBM EntireX through the use of webMethods Integration Server.

Summary As IBM EntireX Adapter runs in the webMethods Integration Server and the webMethods Integration Server has been updated in order to address the vulnerabilities, the fix for webMethods Integration Server will need to be applied by IBM EntireX customers. Vulnerability Details...

Security Bulletin: Due to the use of FIPS 140-2 Bouncy Castle Crypto package, IBM EntireX is vulnerable to an Allocation of Resources Without Limits or Throttling vulnerability (CVE-2025-8885).

Summary Due to the use of FIPS 140-2 Bouncy Castle Crypto package, IBM EntireX is vulnerable to an Allocation of Resources Without Limits or Throttling vulnerability CVE-2025-8885. The FIPS 140-2 Bouncy Castle Crypto package has been updated in order to address the vulnerability. Vulnerability...

EUVD-2024-53940

Malicious code in bioql PyPI...

EUVD-2024-53942

Malicious code in bioql PyPI...

EUVD-2024-53941

Malicious code in bioql PyPI...

EUVD-2024-53943

Malicious code in bioql PyPI...

EUVD-2024-53944

Malicious code in bioql PyPI...

EUVD-2024-53945

Malicious code in bioql PyPI...

EUVD-2024-53946

Malicious code in bioql PyPI...

EUVD-2025-1517

Malicious code in bioql PyPI...

EUVD-2024-53939

Malicious code in bioql PyPI...

EUVD-2024-52325

Malicious code in bioql PyPI...

EUVD-2024-53167

Malicious code in bioql PyPI...

The vulnerability of software for integrating old and new technologies from IBM EntireX, related to a processing error in exception states, allows a perpetrator to trigger a service failure.

The vulnerability of the software for integrating old and new technologies from IBM EntireX is related to an error in handling exceptional states. Exploiting this vulnerability can allow a perpetrator to trigger a service failure...

The vulnerability of software for integrating old and new technologies from IBM EntireX arises from incorrect restrictions on XML references to external objects, allowing attackers to disclose protected information.

The vulnerability of the software for integrating old and new technologies from IBM EntireX is related to incorrect restrictions on XML links to external objects. Exploiting this vulnerability can allow a malicious actor to disclose protected information remotely...

The vulnerability of software for integrating old and new technologies from IBM EntireX, related to deficiencies in the error reporting mechanism, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the software for integrating old and new IBM EntireX technologies is related to deficiencies in the mechanism for generating error reports. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

Security Bulletin: Multiple vulnerabilities found in IBM EntireX.

Summary IBM EntireX has been updated in order to address multiple vulnerabilities. Vulnerability Details CVEID:CVE-2024-56812 DESCRIPTION: IBM EntireX could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in...

Security Bulletin: Multiple vulnerabilities found in IBM EntireX.

Summary IBM EntireX has been updated in order to address the multiple vulnerabilities CVE-2024-54171, CVE-2024-56467 & CVE-2025-0158. Vulnerability Details CVEID:CVE-2024-54171 DESCRIPTION: IBM EntireX is vulnerable to an XML external entity injection XXE attack when processing XML data. An...

IBM EntireX Information Disclosure Vulnerability (CNVD-2025-05562)

IBM EntireX is a versatile middleware solution from International Business Machines IBM designed to facilitate seamless integration between core enterprise applications and modern applications. An information disclosure vulnerability exists in IBM EntireX version 11.1 that originates from the...

Unspecified Vulnerability in IBM EntireX

IBM EntireX is a versatile middleware solution from International Business Machines IBM designed to facilitate seamless integration between core enterprise applications and modern applications. A security vulnerability exists in IBM EntireX version 11.1, which stems from a security issue that can...