CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1006 matches found

IBM Security Bulletins•added 2026/02/23 9:12 p.m.•30 views

Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities

Summary IBM Security Guardium has addressed these vulnerabilities with an update Vulnerability Details CVEID:CVE-2024-37370 DESCRIPTION: MIT Kerberos 5 aka krb5 could allow a remote attacker to bypass security restrictions, caused by improper access control. By sending a specially crafted request...

7.8CVSS8.4AI score0.66594EPSS

Exploits0Affected Software1

RedhatCVE•added 2026/01/09 12:41 p.m.•4 views

CVE-2023-25689

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1 , and 4.1.1 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 24761...

5.3CVSS6.6AI score0.0068EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:31 a.m.•9 views

CVE-2023-25686

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 247601...

6.2CVSS6AI score0.00166EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:1 a.m.•10 views

CVE-2023-25925

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 247632...

8.8CVSS7.2AI score0.01351EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:1 a.m.•7 views

CVE-2023-25921

IBM Security Guardium Key Lifecycle Manager 3.0, 3.0.1, 4.0, 4.1, and 4.1.1 allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. IBM X-Force ID: 247620...

8.8CVSS6.3AI score0.01103EPSS

Exploits0References1