CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3221 matches found

IBM Security Bulletins•added 2020/05/01 6:33 p.m.•44 views

Security Bulletin: Windows DLL injection vulnerability in IBM Java Runtime affects Collaboration and Deployment Services

Summary There is a Windows DLL injection vulnerability in IBM® Runtime Environment Java™ Version JRE71SR4FP15, JRE71SR4FP45 and JRE8SR5FP36 used by Collaboration and Deployment Services on windows platform. This issue was disclosed as part of the IBM Java SDK updates in January 2020. Vulnerabilit...

7.2CVSS0.8AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/30 3:6 p.m.•22 views

Security Bulletin: Vulnerability in IBM Java Runtime affects Host On-Demand

Summary There is a vulnerability in IBM® Runtime Environment Java™ Version 8 used by Host On-Demand. Host On-Demand has addressed the applicable CVE. The issue was disclosed as part of the IBM Java SDK and Runtime Environment updates in January 2020. Vulnerability Details CVEID: CVE-2019-4732...

7.2CVSS2.6AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/29 11:17 a.m.•38 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Content Collector for SAP Applications

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition used by Content Collector for SAP Applications. These issues were disclosed as part of the IBM Java SDK updates in January 2020. Vulnerability Details CVEID: CVE-2020-2593 DESCRIPTION: An unspecified vulnerability in...

7.2CVSS1.2AI score0.00752EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/28 8:7 p.m.•21 views

Security Bulletin: Vulnerability in IBM Java SDK affect Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections

Summary There is vulnerability in IBM® SDK Java™ Technology Edition, Version 8 used by Content Collector for Email, Content Collector for File Systems, Content Collector for Microsoft SharePoint and Content Collector for IBM Connections. Vulnerability Details CVEID: CVE-2019-4732 DESCRIPTION: IBM...

7.2CVSS0.8AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/28 7:12 p.m.•19 views

7.2CVSS0.7AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/27 8:41 a.m.•20 views

Security Bulletin: Vulnerability in IBM Java Runtime affect DB2 Recovery Expert for Linux, Unix and Windows(IBM SDK, Java Technology Edition Quarterly CPU - Jan 2020)

Summary DB2 Recovery Expert for Linux, UNIX and Windows has addressed the following vulnerabilities:IBM SDK, Java Technology Edition Quarterly CPU - Jan 2020 - Includes Oracle Jan 2020 CPU minus CVE-2020-2585, CVE-2020-2654, and CVE-2020-2590. These issues were disclosed as part of the IBM Java S...

8.1CVSS0.9AI score0.01699EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/24 4:52 a.m.•42 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Websphere Message Broker V8.

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, used by WebSphere Message Broker. These issues were disclosed as part of the IBM Java SDK updates in Jan 2020. Vulnerability Details CVEID: CVE-2020-2604 DESCRIPTION: An unspecified vulnerability in Java SE could all...

8.1CVSS1.2AI score0.01699EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/23 1:50 p.m.•52 views

Security Bulletin: A vulnerability in IBM Java SDK affects IBM Cloud App Management (CVE-2020-2593)

Summary An unspecified vulnerability in Java SE related to the Java SE Networking component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and no availability impact. This vulnerability has been addressed by IBM Cloud App Management in a later...

5.8CVSS2.2AI score0.00752EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/23 1:39 p.m.•25 views

Security Bulletin: Multiple vulnerabilities in IBMJava SDK affect IBM Cloud App Management

Summary There are vulnerabilities in IBM Java SDK used by IBM® Cloud App Management. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2019-2989 DESCRIPTION: An unspecified vulnerability in Java SE could allow an unauthenticated...

6.8CVSS2AI score0.02946EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/16 6:34 p.m.•25 views

Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime Affect IBM Sterling Connect:Direct FTP+

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Versions 8.0.5.40, used by IBM Sterling Connect:Direct FTP+. IBM Sterling Connect:Direct FTP+ has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-4732 DESCRIPTION: IBM SDK, Java Technology Edition...

7.2CVSS1.8AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/16 7:59 a.m.•32 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM SPSS Statistics: CVE-2015-1932, CVE-2015-2601, CVE-2015-2613, CVE-2015-2625

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Versions 1.6 and 1.7 that are used by IBM SPSS Statistics. These issues were disclosed as part of the IBM Java SDK updates in July 2015. Vulnerability Details CVEID: CVE-2015-2613 DESCRIPTION: An...

5.5CVSS0.7AI score0.02698EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/14 11:27 a.m.•37 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Performance Management products

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition used by IBM Performance Management. IBM Performance Management has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-2604 DESCRIPTION: An unspecified vulnerability in Java SE could allow an...

8.1CVSS1.2AI score0.01699EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/13 8:34 p.m.•27 views

Security Bulletin: A vulnerability in IBM Java Runtime affect Financial Transaction Manager for Corporate Services v2.1.1 (CVE-2019-4732)

Summary There is vulnerability in IBM® Runtime Environment Java™ Version 7 used by Financial Transaction Manager for Corporate Services. Financial Transaction Manager for Corporate Services FTM CPS has addressed the applicable CVE.brIf you run your own Java code using the IBM Java Runtime deliver...

7.2CVSS1.9AI score0.00164EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/10 6:15 p.m.•26 views

Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime affect IBM LKS Administration & Reporting Tool and Agent

Summary Mutiple security vulnerabilities have been found in IBM Java Runtime used by IBM LKS Administration & Reporting Tool ART and Agent. A mitigation has been included in the latest release. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected...

8.1CVSS1.8AI score0.01699EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/10 4:54 p.m.•21 views

Security Bulletin: A vulnerability in IBM Java affects IBM Decision Optimization Center (CVE-2020-2654)

Summary There is a vulnerability in IBM® Java™ Version 8 used by IBM Decision Optimization Center. IBM Decision Optimization Center has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-2654 DESCRIPTION: An unspecified vulnerability in Java™ SE related to the Java™ SE Libraries...

4.3CVSS1.2AI score0.00339EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2020/04/10 3:24 p.m.•22 views

Security Bulletin: A vulnerability in IBM Java affects IBM ILOG CPLEX Optimization Studio and IBM CPLEX Enterprise Server (CVE-2020-2654)

Summary There is a vulnerability in IBM® Java™ Version 8 used by IBM CPLEX Optimization Studio and IBM CPLEX Enterprise Server. IBM CPLEX Optimization Studio and IBM CPLEX Enterprise Server have addressed the applicable CVE. Vulnerability Details CVEID: CVE-2020-2654 DESCRIPTION: An unspecified...

4.3CVSS1.1AI score0.00339EPSS

Exploits0Affected Software1

Veracode•added 2020/04/10 12:59 a.m.•14 views

Privilege Escalation

ibm java is vulnerable to privilege escalation. A flaw was found in the way JAXP Java API for XML Processing components were handled, allowing them to be manipulated by untrusted applets. This could be used to elevate privileges and bypass secure XML processing restrictions...

5CVSS2.5AI score0.08078EPSS

Exploits0References19Affected Software1

Veracode•added 2020/04/10 12:57 a.m.•21 views

Denial Of Service (DoS)

IBM Java 2 Runtime Environment is vulnerable to Denial Of Service DoS. Detailed vulnerability descriptions are linked from the IBM "Security alerts" page, listed in the References section...

10CVSS2.6AI score0.03506EPSS

Exploits0References14Affected Software1

Veracode•added 2020/04/10 12:57 a.m.•24 views

Unspecified Vulnerability

IBM Java 2 Runtime Environment is vulnerable to unspecified vulnerability. Users of Red Hat Network Satellite 5.4.1 are advised to upgrade to these updated java-1.6.0-ibm packages, which contain the IBM 1.6.0 SR9-FP1 Java release. For this update to take effect, Red Hat Network Satellite must be...

10CVSS3.8AI score0.01103EPSS

Exploits0References11Affected Software1

Veracode•added 2020/04/10 12:57 a.m.•31 views

Denial Of Service (DoS)

IBM Java 2 Runtime Environment is vulnerable to denial of service DoS. It allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality, integrity, and availability via unknown vectors related to Swing...

10CVSS6AI score0.06495EPSS

Exploits1References24Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by