Lucene search
K

284 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/04/29 9:7 a.m.5 views

Security Bulletin: IBM Engineering Lifecycle Management - Jazz Foundation is impacted by vulnerabilities in Json-smart

Summary A vulnerability has been identified in Json-smart library, which is used in IBM Engineering Lifecycle Management - Jazz Foundation. Vulnerability Details CVEID:CVE-2023-1370 DESCRIPTION:Json-smart is a performance focused, JSON processor lib. When reaching a ‘‘ or ‘‘ character in the JSON...

7.5CVSS6.3AI score0.01119EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/20 7:32 a.m.5 views

Security Bulletin: IBM Engineering Lifecycle Management - Jazz Foundation is impacted by vulnerabilities in Eclipse Paho Java client library

Summary A vulnerability has been identified in Eclipse Paho Java client library, which is used in IBM Engineering Lifecycle Management - Jazz Foundation. Vulnerability Details CVEID:CVE-2019-11777 DESCRIPTION: In the Eclipse Paho Java client library version 1.2.0, when connecting to an MQTT serve...

7.5CVSS6.6AI score0.00827EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/03 3:18 p.m.11 views

CVE-2025-15395

IBM Jazz Foundation 7.0.3 through 7.0.3 iFix019 and 7.1.0 through 7.1.0 iFix005 is vulnerable to access control violations that allows the users to view or access/perform actions beyond their expected capability...

5.4CVSS5.4AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2026/02/02 4:16 p.m.4 views

CVE-2025-15395

IBM Jazz Foundation 7.0.3 through 7.0.3 iFix019 and 7.1.0 through 7.1.0 iFix005 is vulnerable to access control violations that allows the users to view or access/perform actions beyond their expected capability...

5.4CVSS5.8AI score0.00176EPSS
Exploits0References1
NVD
NVD
added 2026/02/02 4:16 p.m.5 views

CVE-2025-15395

IBM Jazz Foundation 7.0.3 through 7.0.3 iFix019 and 7.1.0 through 7.1.0 iFix005 is vulnerable to access control violations that allows the users to view or access/perform actions beyond their expected capability...

5.4CVSS0.00176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/02 3:10 p.m.4 views

CVE-2025-15395 IBM Jazz Foundation access control violation

IBM Jazz Foundation 7.0.3 through 7.0.3 iFix019 and 7.1.0 through 7.1.0 iFix005 is vulnerable to access control violations that allows the users to view or access/perform actions beyond their expected capability...

4.3CVSS5.3AI score0.00176EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/02 3:10 p.m.30 views

CVE-2025-15395 IBM Jazz Foundation access control violation

IBM Jazz Foundation 7.0.3 through 7.0.3 iFix019 and 7.1.0 through 7.1.0 iFix005 is vulnerable to access control violations that allows the users to view or access/perform actions beyond their expected capability...

4.3CVSS0.00176EPSS
Exploits0References1
CVE
CVE
added 2026/02/02 3:10 p.m.16 views

CVE-2025-15395

CVE-2025-15395 affects IBM Engineering Lifecycle Management - Jazz Foundation. The vulnerability is an access control violation in Jazz Foundation components: IBM Jazz Foundation 7.0.3 with iFix019 and 7.1.0 with iFix005. Root cause details are not expanded beyond the access-control bypass in the...

5.4CVSS5.3AI score0.00176EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.8 views

PT-2026-5669

Name of the Vulnerable Software and Affected Versions IBM Jazz Foundation versions 7.0.3 through 7.0.3 iFix019 IBM Jazz Foundation versions 7.1.0 through 7.1.0 iFix005 Description The software contains access control issues that permit users to view or access data, or perform actions, beyond thei...

5.4CVSS5.4AI score0.00176EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/02 12:0 a.m.9 views

IBM Jazz Foundation 安全漏洞

IBM Jazz Foundation is a next-generation collaboration platform for software delivery technology developed by the American company International Business Machines IBM. Versions 7.0.3 to 7.0.3 iFix019 and 7.1.0 to 7.1.0 iFix005 of IBM Jazz Foundation contain security vulnerabilities. These...

5.4CVSS5.8AI score0.00176EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/27 6:55 a.m.8 views

Security Bulletin: IBM Engineering Lifecycle Management - Jazz Foundation is impacted by vulnerabilities in Apache PDFBox

Summary Vulnerabilities have been identified in Apache PDFBox, which is used in IBM Engineering Lifecycle Management - Jazz Foundation. Vulnerability Details CVEID:CVE-2021-27807 DESCRIPTION: A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apac...

5.5CVSS5.9AI score0.02979EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 9:27 a.m.8 views

CVE-2023-45181

IBM Jazz Foundation 7.0.2 and below are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...

6.1CVSS6.3AI score0.00288EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:4 a.m.7 views

CVE-2024-41780

IBM Jazz Foundation 7.0.2, 7.0.3, and 7.1.0 could could allow a physical user to obtain sensitive information due to not masking passwords during entry...

4.6CVSS5.9AI score0.00185EPSS
Exploits0References1
CVE
CVE
added 2025/10/07 5:50 p.m.16 views

CVE-2025-1826

CVE-2025-1826 affects IBM Engineering Requirements Management DOORS Next / Jazz Foundation (versions 7.0.2 to 7.1.0 with specific iFixes). It is a stored cross-site scripting vulnerability that allows an authenticated user on the host network to embed arbitrary JavaScript in the Web UI, potential...

5.4CVSS5.9AI score0.00166EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/07 5:50 p.m.3 views

CVE-2025-1826 IBM Jazz Foundation cross-site scripting

IBM Engineering Requirements Management DOORS Next IBM Jazz Foundation 7.0.2 to 7.0.2 iFix034, 7.0.3 to 7.0.3 iFix016, and 7.1.0 to 7.1.0 iFix004 is vulnerable to stored cross-site scripting. This vulnerability allows authenticated users on the host network to embed arbitrary JavaScript code in t...

5.4CVSS5.9AI score0.00166EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-25789

Malware in sbrugna...

5.4CVSS5.8AI score0.00561EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-16142

Malware in sbrugna...

5.4CVSS6AI score0.00495EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-10508

Malware in sbrugna...

8.1CVSS8.2AI score0.01517EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2017-10540

Malware in sbrugna...

4.3CVSS4.8AI score0.01854EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-10525

Malware in sbrugna...

4.3CVSS4.8AI score0.00976EPSS
Exploits0References3
Rows per page
Query Builder