CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2023/07/14 12:0 a.m.•6 views

SUSE SLED12 / SLES12 Security Update : installation-images (SUSE-SU-2023:2819-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:2819-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version...

5.6AI score

6.5CVSS6.7AI score0.00719EPSS

BMC AMI 路径遍历漏洞

BMC AMI BMC Automated Mainframe Intelligence is an automated mainframe intelligence solution from BMC USA. A security vulnerability exists in BMC AMI. An attacker exploiting this vulnerability could access arbitrary files, which could lead to information disclosure...

8.8CVSS8.3AI score0.0084EPSS

BMC AMI 操作系统命令注入漏洞

BMC AMI BMC Automated Mainframe Intelligence is an automated mainframe intelligence solution from BMC USA. A security vulnerability exists in BMC AMI. An attacker exploiting this vulnerability could inject arbitrary shell commands that could lead to code execution, denial of service, information...

8.8CVSS8.1AI score0.0084EPSS

BMC AMI 操作系统命令注入漏洞

BMC AMI BMC Automated Mainframe Intelligence is an automated mainframe intelligence solution from BMC USA. A security vulnerability exists in BMC AMI that stems from the presence of an arbitrary shell command injection vulnerability, which could lead to code execution, denial of service,...

9.1CVSS8.2AI score0.00393EPSS

BMC AMI 访问控制错误漏洞

BMC AMI BMC Automated Mainframe Intelligence is an automated mainframe intelligence solution from BMC USA. A security vulnerability exists in BMC AMI that stems from allowing an unauthenticated host to write to the mainframe SPI flash memory, bypassing secure boot protection and potentially leadi...

CNNVD•added 2023/06/12 12:0 a.m.•2 views

BMC AMI 安全漏洞

BMC AMI BMC Automated Mainframe Intelligence is an automated mainframe intelligence solution from BMC USA. A security vulnerability exists in BMC AMI that stems from the presence of a buffer overflow that could lead to code execution, denial of service, or privilege escalation...

8.8CVSS8.3AI score0.00665EPSS

CNNVD•added 2023/06/12 12:0 a.m.•4 views

BMC AMI 安全漏洞

BMC AMI BMC Automated Mainframe Intelligence is an automated mainframe intelligence solution from BMC USA. A security vulnerability exists in BMC AMI. An attacker exploiting this vulnerability could use certain oracles to guess valid usernames, leading to information disclosure...

5.3CVSS5.8AI score0.0045EPSS

Openbugbounty•added 2023/05/22 4:19 p.m.•8 views

ibmmainframeforum.com Improper Access Control vulnerability OBB-3358537

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.6AI score

CNNVD•added 2023/04/26 12:0 a.m.•2 views

IBM DB2 安全漏洞

IBM DB2 is a relational database management system from International Business Machines IBM. The main execution environments for this system are UNIX, Linux, IBMi, z/OS, and Windows server versions. A code execution vulnerability exists in IBM DB2, which can be exploited by an attacker to cause...

7.2CVSS7.7AI score0.01513EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 3:59 a.m.•1 views

SUSE CVE-2020-11884

In the Linux kernel 4.19 through 5.6.7 on the s390 platform, code execution may occur because of a race condition, as demonstrated by code in enablesacfuaccess in arch/s390/lib/uaccess.c that fails to protect against a concurrent page table upgrade, aka CID-3f777e19d171. A crash could also occur...

7CVSS6.9AI score0.00397EPSS

Exploits0References4

Imperva Blog•added 2022/12/08 9:0 a.m.•19 views

2023 Predictions: The Data Security Shake-up

The move to the cloud continues to create complexity around data security. In 2023, Imperva believes the increasingly diverse data landscape will drive a fundamental shift in the people, processes, and technology in cybersecurity. Imperva’s data security leaders explain how IT environments will...

7.3AI score

OSV•added 2022/11/14 6:15 p.m.•3 views

CVE-2022-34329

IBM CICS TX 11.7 could allow an attacker to obtain sensitive information from HTTP response headers. IBM X-Force ID: 229467...

5.3CVSS5.8AI score0.00673EPSS

Exploits0References3

Qualys Blog•added 2022/10/12 3:47 p.m.•33 views

Award-winning Qualys Vulnerability and Compliance Solution now available on IBM zSystems & LinuxONE

Todays modern IBM mainframe is central to hybrid cloud environments, valued by two-thirds of the Fortune 100 as a highly secured platform for running mission-critical workloads. Not surprisingly, according to a recent IBM commissioned study by Celent, it is estimated that 70% of global bank cards...

0.1AI score

CNNVD•added 2022/03/24 12:0 a.m.•2 views

IBM Power System安全漏洞

The IBM Power System is a Power processor-based server computer from IBM in the United States. A security vulnerability exists in the IBM Power System 9 AC922 OP910, OP920, OP930, OP940, which stems from a downgrade attack on the BMC IBM Power 9 AC922 OP910, OP920, OP930, OP940, which affects its...

9.1CVSS7AI score0.00962EPSS

Exploits0References3

Qualys Blog•added 2021/12/07 7:51 p.m.•25 views

Continuous Security Hardening and Monitoring for IBM® z/OS® Mainframes and Databases Using Qualys Policy Compliance

Mainframes are a key infrastructure component for many enterprises worldwide. Arguably the most secure, reliable, and efficient computing platform, mainframes hold some 70% of the worlds business-critical data. Even though they are highly secure and resilient, it’s a common misconception that...

7.4AI score