Lucene search
+L

151 matches found

Positive Technologies
Positive Technologies
added 2024/12/17 12:0 a.m.5 views

PT-2024-33694 · Ibm · Ibm Security Guardium Key Lifecycle Manager

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium Key Lifecycle Manager versions 4.1 through 4.2.1 Description: The issue concerns the storage of user credentials in configuration files by IBM Security Guardium Key Lifecycle Manager. These credentials can be accessed by...

4.4CVSS6.4AI score0.00189EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.6 views

PT-2024-4163 · Dell · Dell Bios

Name of the Vulnerable Software and Affected Versions: Dell BIOS affected versions not specified Description: The issue is related to improper input validation in the Dell BIOS, which can be exploited by a local authenticated malicious user with admin privileges. This exploitation can lead to the...

6.7CVSS7.2AI score0.00147EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/03/19 5:43 p.m.6 views

kernel: vmwgfx: race condition leading to information disclosure vulnerability

A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context o...

6.7CVSS6.8AI score0.00343EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/03/12 12:48 a.m.8 views

kernel: refcount leak in ctnetlink_create_conntrack()

A memory leak problem was found in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c in the Linux Kernel. This issue may allow a local attacker with CAPNETADMIN privileges to cause a denial of service DoS attack due to a refcount overflow...

5.5CVSS6.9AI score0.00301EPSS
Exploits0References5
OSV
OSV
added 2024/02/10 3:15 a.m.6 views

CVE-2023-28077

Dell BSAFE SSL-J, versions prior to 6.5, and versions 7.0 and 7.1 contain a debug message revealing unnecessary information vulnerability. This may lead to disclosing sensitive information to a locally privileged user...

4.4CVSS5.8AI score0.00176EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/12/08 12:0 a.m.21 views

IBM Informix Dynamic Server 12.10.x, 14.10.x Buffer Overflow (7070188)

The version of IBM Informix Dynamic Server installed on the remote is either 12.10.x or 14.10.x prior to 14.10.FC10W1. It is, therefore, affected by a buffer overflow, caused by improper bounds checking. A local privileged user could overflow a buffer and execute arbitrary code on the system or...

8.4CVSS6.9AI score0.00286EPSS
Exploits0References4
OSV
OSV
added 2023/10/17 12:15 a.m.2 views

CVE-2023-38719

IBM Db2 11.5 could allow a local user with special privileges to cause a denial of service during database deactivation on DPF. IBM X-Force ID: 261607...

4.4CVSS6.4AI score0.00194EPSS
Exploits0References3
OSV
OSV
added 2023/10/16 12:15 a.m.3 views

CVE-2023-35013

IBM Security Verify Governance 10.0, Identity Manager could allow a local privileged user to obtain sensitive information from source code. IBM X-Force ID: 257769...

4.4CVSS5.8AI score0.00174EPSS
Exploits0References2
NVD
NVD
added 2023/10/16 12:15 a.m.23 views

CVE-2023-35013

IBM Security Verify Governance 10.0, Identity Manager could allow a local privileged user to obtain sensitive information from source code. IBM X-Force ID: 257769...

4.4CVSS4.1AI score0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/16 12:0 a.m.4 views

IBM DB2 Input Validation Error Vulnerability

IBM DB2 is a relational database management system from International Business Machines IBM. The system is implemented in UNIX, Linux, IBMi, z/OS, and Windows server versions. An input validation error vulnerability exists in IBM DB2 version 11.5, which stems from a vulnerability that could allow...

5.1CVSS6.2AI score0.00194EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/10/15 11:43 p.m.13 views

CVE-2023-35013 IBM Security Verify Governance information disclosure

IBM Security Verify Governance 10.0, Identity Manager could allow a local privileged user to obtain sensitive information from source code. IBM X-Force ID: 257769...

2.3CVSS4.1AI score0.00174EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/10/15 11:43 p.m.26 views

CVE-2023-35013 IBM Security Verify Governance information disclosure

IBM Security Verify Governance 10.0, Identity Manager could allow a local privileged user to obtain sensitive information from source code. IBM X-Force ID: 257769...

2.3CVSS4.3AI score0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/10/15 12:0 a.m.3 views

IBM Security Verify Governance Security Breach

IBM Security Verify Governance is an intelligent identity access platform from International Business Machines IBM, Inc. provides organizations with a platform to analyze, define and control user access and access risk. A security vulnerability exists in IBM Security Verify Governance version 10....

4.4CVSS6AI score0.00174EPSS
Exploits0References4
OSV
OSV
added 2023/10/13 4:15 p.m.7 views

CVE-2023-40682

IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to obtain sensitive information from API logs. IBM X-Force ID: 263833...

4.4CVSS5.8AI score0.00179EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/10/13 3:41 p.m.16 views

CVE-2023-40682 IBM App Connect Enterprise information disclosure

IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to obtain sensitive information from API logs. IBM X-Force ID: 263833...

4.4CVSS4.2AI score0.00179EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/10/13 3:41 p.m.24 views

CVE-2023-40682 IBM App Connect Enterprise information disclosure

IBM App Connect Enterprise 12.0.1.0 through 12.0.8.0 contains an unspecified vulnerability that could allow a local privileged user to obtain sensitive information from API logs. IBM X-Force ID: 263833...

4.4CVSS4.4AI score0.00179EPSS
Exploits0References2
NVD
NVD
added 2023/10/11 6:15 a.m.21 views

CVE-2022-42451

Certain credentials within the BigFix Patch Management Download Plug-ins are stored insecurely and could be exposed to a local privileged user...

4.6CVSS4.5AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/10/11 5:1 a.m.38 views

CVE-2022-42451 HCL BigFix Patch Management is vulnerable to insecurely stored credentials

Certain credentials within the BigFix Patch Management Download Plug-ins are stored insecurely and could be exposed to a local privileged user...

4.6CVSS4.9AI score0.0015EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/10/11 12:0 a.m.8 views

PT-2023-14116 · Ibm · Bigfix Patch Management

Name of the Vulnerable Software and Affected Versions: BigFix Patch Management affected versions not specified Description: The issue concerns certain credentials within the BigFix Patch Management Download Plug-ins being stored insecurely. This could potentially expose them to a local privileged...

4.6CVSS6.4AI score0.0015EPSS
Exploits0References3
NVD
NVD
added 2023/07/24 4:15 p.m.27 views

CVE-2023-33951

A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context o...

6.7CVSS6.5AI score0.00343EPSS
Exploits0References9
Rows per page
Query Builder