CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3221 matches found

IBM Security Bulletins•added 2023/08/31 10:56 a.m.•31 views

Security Bulletin: TADDM affected by vulnerability due to IBM Java and its runtime

Summary IBM Tivoli Application Dependency Discovery Manager is vulnerable to denial of service due to use of IBM Java and runtimes CVE-2022-40609 Vulnerability Details CVEID:CVE-2022-40609 DESCRIPTION: IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute...

9.8CVSS9.2AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/31 12:56 a.m.•16 views

Security Bulletin: Security vulnerability in IBM Java Object Request Broker (ORB) in FileNet Content Manager

Summary Security vulnerability in IBM Java Object Request Broker ORB in FileNet Content Manager, affected and vulnerable Vulnerability Details CVEID:CVE-2022-40609 DESCRIPTION: IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute arbitrary code on the...

9.8CVSS9AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/31 12:45 a.m.•17 views

Security Bulletin: IBM Java Runtime (JRE) security vulnerabilities CVE-2022-21426 in FileNet Content Manager

Summary IBM Java Runtime JRE security vulnerabilities CVE-2022-21426 in FileNet Content Manager, affected, not vulnerable Vulnerability Details CVEID:CVE-2022-21426 DESCRIPTION: An unspecified vulnerability in Java SE related to the JAXP component could allow an unauthenticated attacker to cause ...

5.3CVSS6.6AI score0.00062EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/31 12:37 a.m.•41 views

Security Bulletin: IBM Java Runtime (JRE) security vulnerabilities CVE-2023-21830, CVE-2023-21843 in FileNet Content Manager

Summary Security Bulletin: IBM Java Runtime JRE security vulnerabilities CVE-2023-21830, CVE-2023-21843 in FileNet Content Manager, affected, but not vulnerable Vulnerability Details CVEID:CVE-2023-21830 DESCRIPTION: An unspecified vulnerability in Java SE related to the Serialization component...

5.3CVSS5.8AI score0.00135EPSS

Exploits0Affected Software1

RedHat Linux•added 2023/08/30 1:46 p.m.•29 views

Moderate: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

3.7CVSS6.7AI score0.00083EPSS

Exploits0References2

RedHat Linux•added 2023/08/30 1:46 p.m.•33 views

Moderate: Red Hat Security Advisory: java-1.8.0-ibm security update

An update for java-1.8.0-ibm is now available for Red Hat Enterprise Linux 7 Supplementary. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

3.7CVSS6.7AI score0.00083EPSS

Exploits0References2

IBM Security Bulletins•added 2023/08/29 3:16 p.m.•38 views

Security Bulletin: Vulnerabilities in IBM Java included with IBM Tivoli Monitoring.

Summary Vulnerabilities in IBM® Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring ITM components. CVEs: CVE-2023-21930, CVE-2023-21967, CVE-2023-21954, CVE-2023-21939, CVE-2023-21968, CVE-2023-21937, CVE-2023-21938, CVE-2023-2597 and CVE-2022-40609 Vulnerability...

9.8CVSS8.8AI score0.02108EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2023/08/28 10:31 a.m.•28 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Tivoli Netcool/OMNIbus WebGUI (CVE-2022-40609)

Summary Websphere Application Server WAS is shipped as a component of Tivoli Netcool/OMNIbus WebGUI. Information about a security vulnerability affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

9.8CVSS8.7AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/25 9:25 p.m.•35 views

Security Bulletin: IBM Java SDK and IBM Java Runtime for IBM i are vulnerable to arbitrary code execution due to an unsafe deserialization flaw (CVE-2022-40609).

Summary IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ used by IBM i are vulnerable to an attacker executing arbitrary code due to an unsafe deserialization flaw as described in the vulnerability details section. The vulnerability is fixed by applying an IBM i Group PTF for...

9.8CVSS9.1AI score0.00435EPSS

Exploits0Affected Software4

IBM Security Bulletins•added 2023/08/25 6:57 p.m.•40 views

Security Bulletin: Vulnerabilities in IBM Java Runtime affect z/Transaction Processing Facility

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 that is used by the z/TPF system. z/TPF has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-21967 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Editi...

5.9CVSS6.4AI score0.00099EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/25 8:58 a.m.•41 views

Security Bulletin: Multiple vulnerabilities found in IBM Java which is shipped with IBM® Intelligent Operations Center(CVE-2022-21541, CVE-2022-21540)

Summary Multiple vulnerabilities have been identified in IBM Java which is shipped with IBM® Intelligent Operations Center. Information about these vulnerabilities affecting IBM® Intelligent Operations Center have been published and addressed the applicable CVEs. Vulnerability Details...

5.9CVSS6.9AI score0.00438EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/23 10:52 a.m.•66 views

Security Bulletin: CVE-2022-40609 may affect IBM Java shipped with IBM CICS TX Advanced

Summary CVE-2022-40609 may affect IBM Java shipped with IBM CICS TX Advanced. IBM CICS TX Advanced has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2022-40609 DESCRIPTION: IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute arbitrary cod...

9.8CVSS9AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/22 4:46 p.m.•186 views

Security Bulletin: Vulnerabilities in Oracle Java and the IBM Java SDK (CVE-2023-21930, CVE-2023-21967, CVE-2023-21954, CVE-2023-21939, CVE-2023-21968 and CVE-2023-21937 ) affect Power HMC

Summary IBM SDK, JAVA is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-21930 DESCRIPTION: An unspecified vulnerability in Oracle Java SE, Oracle GraalVM Enterprise Edition related to the JSSE component could allow an...

7.4CVSS6.1AI score0.02108EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2023/08/18 9:41 p.m.•41 views

Security Bulletin: IBM Java SDK and IBM Java Runtime for IBM i are vulnerable to denial of service, availability, integrity, and confidentiality impacts due to multiple vulnerabilities.

Summary IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ used by IBM i are vulnerable to denial of service, availability, integrity, and confidentiality impacts as described in the vulnerability details section CVE-2022-21426, CVE-2023-2597, CVE-2023-21830, CVE-2023-21843,...

9.1CVSS7.3AI score0.02108EPSS

Exploits1Affected Software4

IBM Security Bulletins•added 2023/08/16 6:50 p.m.•29 views

Security Bulletin: Vulnerability in IBM Java SDK and IBM Java Runtime affect Rational Functional Tester

Summary There is vulnerability in IBM® SDK Java™ Technology Edition, Version 1.8 and IBM® Runtime Environment Java™ Version 1.8 used by Rational Functional Tester. Rational Functional Tester has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2022-40609 DESCRIPTION: IBM SDK, Java...

9.8CVSS8.9AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/10 10:22 p.m.•55 views

Security Bulletin: IBM InfoSphere Global Name Management Vulnerable to CVE-2023-30441

Summary InfoSphere Global Name Management bundles IBM Java as internal component. A combination of two flaws in the JSSE component and IBMJCEPlus security provider expose some IBM Java releases to various cryptographic attacks when acting as a TLS server. This vulnerability is addressed...

7.5CVSS7.5AI score0.00059EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/09 4:46 p.m.•32 views

Security Bulletin: Vulnerability in IBM® Java SDK affects IBM Liberty for Java for IBM Cloud due to CVE-2022-40609

Summary There is a vulnerability in the IBM® SDK, Java™ Technology Edition that is shipped with IBM Liberty for Java for IBM Cloud. The CVEs listed in this document might affect some configurations of IBM Liberty for Java for IBM Cloud. This product has addressed the applicable CVE. If you run yo...

9.8CVSS9AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/07 9:40 p.m.•32 views

Security Bulletin: A remote code execution vulnerability in IBM Java SDK affects IBM InfoSphere Information Server (CVE-2022-40609)

Summary A remote code execution vulnerability in the IBM® SDK Java™ Technology Edition, Version 8 that is used by IBM InfoSphere Information Server was addressed. Vulnerability Details CVEID:CVE-2022-40609 DESCRIPTION: IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote...

9.8CVSS9.1AI score0.00435EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2023/08/07 5:13 p.m.•25 views

Security Bulletin: Vulnerability in IBM® Java SDK affects IBM WebSphere Application Server due to CVE-2022-40609

Summary There is a vulnerability in the IBM® SDK, Java™ Technology Edition that is shipped with IBM WebSphere Application Server. The CVEs listed in this document might affect some configurations of IBM WebSphere Application Server traditional . This product has addressed the applicable CVE. If y...

9.8CVSS9.1AI score0.00435EPSS

Exploits0Affected Software1

SUSE CVE•added 2023/08/04 2:6 a.m.•2 views

SUSE CVE-2022-40609

IBM SDK, Java Technology Edition 7.1.5.18 and 8.0.8.0 could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization flaw. By sending specially-crafted data, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-For...

8.1CVSS7.8AI score0.00435EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by