Lucene search
+L

14 matches found

CNNVD
CNNVD
added 2026/05/26 12:0 a.m.10 views

IBM Engineering Lifecycle Management 安全漏洞

IBM Engineering Lifecycle Management is an engineering lifecycle management platform provided by American multinational company International Business Machines IBM. Versions 7.0.3, 7.1.0, and 7.2.0 of IBM Engineering Lifecycle Management contain security vulnerabilities. These vulnerabilities ste...

7.1CVSS5.8AI score0.00354EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/11 5:26 p.m.10 views

CVE-2025-25032 IBM Cognos Analytics denial of service

IBM Cognos Analytics 11.2.0, 11.2.1, 11.2.2, 11.2.3, 11.2.4, 12.0.0, 12.0.1, 12.0.2, 12.0.3, and 12.0.4 could allow an authenticated user to cause a denial of service by sending a specially crafted request that would exhaust memory resources...

7.5CVSS6.7AI score0.00321EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/11 12:0 a.m.16 views

PT-2025-25232 · Ibm · Ibm Cognos Analytics

Name of the Vulnerable Software and Affected Versions: IBM Cognos Analytics versions 11.2.0 through 12.0.4 Description: The issue allows an authenticated user to cause a denial of service by sending a specially crafted request that would exhaust memory resources. Recommendations: For IBM Cognos...

7.8CVSS6AI score0.00321EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/02/18 6:27 p.m.21 views

CVE-2025-26465 Openssh: machine-in-the-middle attack if verifyhostkeydns is enabled

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. Fo...

6.8CVSS6.6AI score0.07449EPSS
Exploits4References8
RedhatCVE
RedhatCVE
added 2025/02/18 11:22 a.m.14 views

CVE-2025-26465

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. Fo...

6.8CVSS6.4AI score0.07449EPSS
Exploits4References3
Positive Technologies
Positive Technologies
added 2025/01/21 12:0 a.m.4 views

PT-2025-4251 · Oracle +8 · Mysql Server +7

Name of the Vulnerable Software and Affected Versions: MySQL Server versions 8.0.40 and prior MySQL Server versions 8.4.3 and prior MySQL Server versions 9.1.0 and prior Description: A vulnerability in the MySQL Server product allows a high privileged attacker with network access via multiple...

9.1CVSS6.7AI score0.17301EPSS
Exploits3References349
RedHat Linux
RedHat Linux
added 2024/07/16 3:39 p.m.5 views

nghttp2: CONTINUATION frames DoS

A vulnerability was found in how nghttp2 implements the HTTP/2 protocol. There are insufficient limitations placed on the amount of CONTINUATION frames that can be sent within a single stream. This issue could allow an unauthenticated remote attacker to send packets to vulnerable servers, which...

5.3CVSS6.8AI score0.8496EPSS
Exploits1References7
VulnCheck KEV
VulnCheck KEV
added 2024/01/22 12:0 a.m.3 views

VulnCheck KEV: CVE-2020-4463

IBM Maximo Asset Management 7.6.0.1 and 7.6.0.2 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 181484...

8.2CVSS7.3AI score0.3159EPSS
Exploits1References1
OSV
OSV
added 2022/01/21 6:15 p.m.5 views

CVE-2020-4875

IBM Cognos Controller 10.4.0, 10.4.1, and 10.4.2 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 190838...

8.2CVSS5.8AI score0.01726EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/06/22 1:8 p.m.6 views

expat: large number of colons in input makes parser consume high amount of resources, leading to DoS

It was discovered that the "setElementTypePrefix" function incorrectly extracted XML namespace prefixes. By tricking an application into processing a specially crafted XML file, an attacker could cause unusually high consumption of memory resources and possibly lead to a denial of service...

7.8CVSS7.2AI score0.07107EPSS
Exploits1References5
CVE
CVE
added 2018/04/04 4:0 p.m.53 views

CVE-2017-13279

CVE-2017-13279 affects Android’s M3UParser parsing path (M3UParser.cpp). The issue is a memory resource exhaustion caused by a large loop that pushes items into a vector, leading to remote denial of service. Impacted Android versions include 6.0–8.1. Exploitation requires user interaction, and th...

5.5CVSS5.9AI score0.00536EPSS
Exploits0References1Affected Software1
OpenVAS
OpenVAS
added 2016/04/08 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-2917-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.04192EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/10 12:0 a.m.38 views

Ubuntu: Security Advisory (USN-2917-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.30946EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2013/04/10 12:0 a.m.22 views

Microsoft Windows Active Directory Denial of Service Vulnerability (2830914)

This host is missing an important security update according to Microsoft Bulletin MS13-032. OpenVAS Vulnerability Test $Id: secpodms13-032.nasl 8276 2018-01-03 12:29:18Z asteins $ Microsoft Windows Active Directory Denial of Service Vulnerability 2830914 Authors: Antu Sanadi Copyright: Copyright ...

5CVSS6.5AI score0.27005EPSS
Exploits0References4
Rows per page
Query Builder