28 matches found
EUVD-2014-0919
Malware in sbrugna...
EUVD-2016-7034
Malware in sbrugna...
EUVD-2013-6147
Malware in sbrugna...
EUVD-2017-10372
Malware in sbrugna...
EUVD-2017-10369
Malware in sbrugna...
EUVD-2017-10370
Malware in sbrugna...
EUVD-2013-6160
Malware in sbrugna...
Security Bulletin: IBM Atlas eDiscovery Process Management vulnerable to cross-site scripting.
Summary Atlas eDiscovery Process Management has addressed cross-site scripting vulnerability, which allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. Due to this...
Security Bulletin: IBM Atlas eDiscovery Process Management vulnerable to SQL injection.
Summary Atlas eDiscovery Process Management has addressed vulnerablility due to SQL injection, where a remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. Vulnerability Details CVEID:...
Security Bulletin: IBM Atlas eDiscovery Process Management affected by vulnerability due to sensitive information stored in URL parameters.
Summary Atlas eDiscovery Process Management has addressed vulnerability due to sensitive information stored in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. Vulnerability Details CVEID:...
Security Bulletin: IBM Atlas eDiscovery Process Management vulnerable to unsafe third-party links.
Summary Atlas eDiscovery Process Management has addressed the following vulnerability: An authenticated attacker could obtain sensitive information when an unsuspecting user clicks on unsafe third-party links. The third-party links with target="blank" attribute and no rel="noopener noreferrer"...
Security Bulletin: Open Source Apache Tomcat Commons FileUpload Vulnerabilities affects Atlas Policy Suite (CVE-2016-3092)
Summary Apache Commons Fileupload vulnerability affects Atlas Policy Suite Vulnerability Details CVEID: CVE-2016-3092 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons FileUpload component. By sending file upload requests, an attacker could...
Security Bulletin: OpenSource Apache Taglibs Vulnerability affects Atlas Policy Suite (CVE-2015-0254)
Summary Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection XXE error when processing XML data. Vulnerability Details CVEID: CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs could allow a remote attacker to...
IBM Atlas eDiscovery Process Management Information Disclosure Vulnerability (CNVD-2018-00312)
IBM Atlas eDiscovery Process Management helps attorneys, paralegals, and evidence supervisors rigorously and logically manage legal evidence retention workflows. An information disclosure vulnerability exists in IBM Atlas eDiscovery Process Management 6.0.3. An authenticated attacker could exploi...
IBM Atlas eDiscovery Process Management Cross-Site Scripting Vulnerability
IBM Atlas eDiscovery Process Management helps attorneys, paralegals, and evidence supervisors rigorously and logically manage legal evidence retention workflows. A cross-site scripting vulnerability exists in IBM Atlas eDiscovery Process Management 6.0.3. The vulnerability can be exploited to emb...
Information disclosure
IBM Atlas eDiscovery Process Management 6.0.3 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 126682...
CVE-2017-1354
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...
CVE-2017-1355
IBM Atlas eDiscovery Process Management 6.0.3 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 126682...
CVE-2017-1356
IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 126683...
IBM Atlas eDiscovery Process Management Information Disclosure Vulnerability
IBM Atlas eDiscovery Process Management is a product within the Information Lifecycle Governance solution from IBM USA that is used to help attorneys, paralegals, and evidence supervisors rigorously and logically manage legal evidence retention workflows. An information disclosure vulnerability...