Lucene search
+L

247 matches found

euvd
euvd
added 2026/04/02 12:31 a.m.8 views

EUVD-2025-209176

IBM DataPower Gateway 10.6CD 10.6.1.0 through 10.6.5.0 and IBM DataPower Gateway 10.5.0 10.5.0.0 through 10.5.0.20 and IBM DataPower Gateway 10.6.0 10.6.0.0 through 10.6.0.8 IBM DataPower Gateway is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and...

6.5CVSS5.9AI score0.00167EPSS
Exploits0References2
euvd
euvd
added 2026/04/01 9:30 p.m.7 views

EUVD-2025-209174

IBM DataPower Gateway 10.6CD 10.6.1.0 through 10.6.5.0 and IBM DataPower Gateway 10.5.0 10.5.0.0 through 10.5.0.20 and IBM DataPower Gateway 10.6.0 10.6.0.0 through 10.6.0.8 IBM DataPower Gateway could disclose sensitive system information from other domains to an administrative user...

4.1CVSS5.8AI score0.00252EPSS
Exploits0References2
nvd
nvd
added 2026/04/01 9:16 p.m.16 views

CVE-2025-36373

IBM DataPower Gateway 10.6CD 10.6.1.0 through 10.6.5.0 and IBM DataPower Gateway 10.5.0 10.5.0.0 through 10.5.0.20 and IBM DataPower Gateway 10.6.0 10.6.0.0 through 10.6.0.8 IBM DataPower Gateway could disclose sensitive system information from other domains to an administrative user...

6.8CVSS0.00252EPSS
Exploits0References1
cve
cve
added 2026/04/01 8:47 p.m.22 views

CVE-2025-36373

IBM DataPower Gateway contains an information-disclosure vulnerability (CVE-2025-36373) where sensitive system information from other domains can be disclosed to an administrative user. Affected are IBM DataPower Gateway 10.6CD (10.6.1.0–10.6.5.0), 10.5.0 series (10.5.0.0–10.5.0.20), and 10.6.0 s...

6.8CVSS5.8AI score0.00252EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2026/04/01 12:0 a.m.8 views

PT-2026-29640

IBM DataPower Gateway 10.6CD 10.6.1.0 through 10.6.5.0 and IBM DataPower Gateway 10.5.0 10.5.0.0 through 10.5.0.20 and IBM DataPower Gateway 10.6.0 10.6.0.0 through 10.6.0.8 IBM DataPower Gateway is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and...

6.5CVSS5.9AI score0.00167EPSS
Exploits0References3
cnnvd
cnnvd
added 2026/04/01 12:0 a.m.9 views

IBM DataPower Gateway 安全漏洞

IBM DataPower Gateway is a suite of International Business Machines IBM security and integration platforms designed specifically for mobile, cloud, application programming interfaces APIs, web, service-oriented architecture SOA, B2B and cloud workloads. The platform protects, integrates and...

6.8CVSS5.8AI score0.00252EPSS
Exploits0References1
ibm
ibm
added 2026/03/30 3:20 p.m.7 views

Security Bulletin: IBM DataPower Gateway vulnerable to Denial of Service due to body-parser

Summary The affected package is used in the UI Vulnerability Details CVEID:CVE-2025-13466 DESCRIPTION: body-parser 2.2.0 is vulnerable to denial of service due to inefficient handling of URL-encoded bodies with very large numbers of parameters. An attacker can send payloads containing thousands o...

6.9CVSS5.9AI score0.0035EPSS
Exploits0Affected Software1
ibm
ibm
added 2026/03/27 5:55 p.m.11 views

Security Bulletin: IBM DataPower Gateway vulnerable to Denial of Service

Summary Processing a malformed PKCS12 file can cause an appliance reload. Vulnerability Details CVEID:CVE-2026-22795 DESCRIPTION: Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a...

5.5CVSS5.8AI score0.00144EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/12/22 2:10 p.m.11 views

Security Bulletin: IBM DataPower Gateway potentially vulnerable to library path manipulation

Summary GNU C is used by IBM DataPower Gateway as part of the Supervisor component. Vulnerability Details CVEID:CVE-2025-4802 DESCRIPTION: Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared...

7.8CVSS7.3AI score0.00548EPSS
Exploits1Affected Software1
ibm
ibm
added 2025/12/04 1:28 p.m.10 views

Security Bulletin: IBM DataPower Gateway vulnerable to a denial of service due to C-Ares

Summary C-Ares is used in IBM DataPower Gateway's DNS resolver Vulnerability Details CVEID:CVE-2025-31498 DESCRIPTION: c-ares is an asynchronous resolver library. From 1.32.3 through 1.34.4, there is a use-after-free in readanswers when processanswer may re-enqueue a query either due to a DNS...

8.3CVSS6.5AI score0.00577EPSS
Exploits0Affected Software1
ibm
ibm
added 2025/10/30 2:10 p.m.8 views

Security Bulletin: IBM DataPower Gateway vulnerable to data corruption due to LZ4 (CVE-2019-17543)

Summary LZ4 is used in multiple components of IBM DataPower Gateway Vulnerability Details CVEID:CVE-2019-17543 DESCRIPTION: LZ4 before 1.9.2 has a heap-based buffer overflow in LZ4write32 related to LZ4compressdestSize, affecting applications that call LZ4compressfast with a large input. This iss...

8.1CVSS7AI score0.09116EPSS
Exploits0Affected Software1
euvd
euvd
added 2025/10/07 12:30 a.m.11 views

EUVD-2020-25826

Malware in sbrugna...

7.5CVSS7.6AI score0.0224EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-25309

Malware in sbrugna...

7.5CVSS5.7AI score0.0142EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-26241

Malware in sbrugna...

7.5CVSS5.7AI score0.0142EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-26255

Malware in sbrugna...

5.3CVSS4.7AI score0.00868EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-12248

Malware in sbrugna...

7.1CVSS7AI score0.01853EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2018-12243

Malware in sbrugna...

7.8CVSS6.9AI score0.00379EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-14228

Malware in sbrugna...

9.8CVSS8.2AI score0.01635EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-25827

Malware in sbrugna...

7.5CVSS7.6AI score0.01602EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-26261

Malware in sbrugna...

6.7CVSS6.6AI score0.00868EPSS
Exploits1References3
Rows per page
Query Builder