Lucene search
K

1176 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/18 9:45 a.m.11 views

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to vulnerability in Axios

Summary Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to vulnerability in Axios. CVE-2026-40175 The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2026-40175 DESCRIPTION: Axios is a promise based HTTP client for the browser and...

9CVSS6.9AI score0.01815EPSS
Exploits5Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/13 11:7 p.m.9 views

Security Bulletin: IBM i is Affected By A Cross-Site Scripting Vulnerability in Navigator for i [CVE-2026-0540]

Summary Navigator for IBM i uses the Monaco editor to edit config files. The Monaco editor uses DOMPurify to sanitize the HyperText Markup Language HTML in the editor. DOMPurify is vulnerable to improper neutralization of input by using rawtext elements missing from the SAFEFORXML regex...

6.1CVSS5.8AI score0.0034EPSS
Exploits0Affected Software5
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/08 6:21 a.m.7 views

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities in Lodash

Summary Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities in Lodash. CVE-2026-2950, CVE-2026-4800 The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2026-2950 DESCRIPTION: Impact: Lodash versions 4.17.23 and...

9.8CVSS6.8AI score0.01735EPSS
Exploits0Affected Software2
SUSE CVE
SUSE CVE
added 2026/05/08 2:23 a.m.7 views

SUSE CVE-2026-23926

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/07 1:31 p.m.7 views

Security Bulletin: IBM Content Navigator is affected by Log4J 1.2.14

Summary IBM Content Navigator is affected by multiple vulnerabilities in Apache Log4j 1.x, a logging library that reached end of life in August 2015. These include multiple Deserialization of Untrusted Data flaws in components such as SocketServer, JMSAppender, JMSSink, and Chainsaw, the most...

9.8CVSS8.1AI score0.81147EPSS
Exploits13Affected Software1
EUVD
EUVD
added 2026/05/07 9:31 a.m.32 views

EUVD-2025-209709

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

8.3CVSS5.9AI score0.00547EPSS
Exploits0References2
NVD
NVD
added 2026/05/07 9:16 a.m.22 views

CVE-2025-1978

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

9.8CVSS0.00547EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/07 8:5 a.m.8 views

CVE-2025-1978 Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

8.3CVSS5.9AI score0.00547EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/07 8:5 a.m.52 views

CVE-2025-1978 Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

8.3CVSS0.00547EPSS
Exploits0References1
CVE
CVE
added 2026/05/07 8:5 a.m.16 views

CVE-2025-1978

CVE-2025-1978 is a Remote Code Execution vulnerability in Hitachi Storage Navigator and the maintenance console affecting Hitachi Virtual Storage Platform family (G130/G150/G350/G370/G700/G900, F350/F370/F700/F900, E390/E590/E790/E990, E390H/E590H/E790H/E1090H, One Block 23/24/26/28). The issue i...

9.8CVSS5.9AI score0.00547EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/07 8:5 a.m.8 views

CVE-2025-1978

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

8.3CVSS5.9AI score0.00547EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.20 views

PT-2026-38349

Remote Code Execution Vulnerability in Hitachi Storage Navigator and the maintenance console in Hitachi Virtual Storage Platform G130, G150, G350, G370, G700, G900, F350, F370, F700, F900, Hitachi Virtual Storage Platform E390, E590, E790, E990, E1090, E390H, E590H, E790H, E1090H, Hitachi Virtual...

8.3CVSS5.9AI score0.00547EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/06 11:30 a.m.19 views

Security Bulletin: Platform Navigator in IBM Cloud Pak for Integration is vulnerable to multiple vulnerabilities in undici

Summary Platform Navigator in IBM Cloud Pak for Integration is vulnerable to multiple vulnerabilities in undici CVE-2026-1525, CVE-2026-1526, CVE-2026-1527, CVE-2026-1528, CVE-2026-2229, CVE-2026-2581. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2026-1525 DESCRIPTION:...

9.8CVSS7AI score0.0115EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/05/06 8:16 a.m.5 views

DEBIAN-CVE-2026-23926

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References1
NVD
NVD
added 2026/05/06 8:16 a.m.7 views

CVE-2026-23926

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS0.00285EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/05/06 8:16 a.m.7 views

CVE-2026-23926

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/06 6:58 a.m.6 views

CVE-2026-23926 Stored XSS vulnerability in Host navigator widget maintenance tooltip

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/06 6:58 a.m.7 views

EUVD-2026-27527

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/06 6:58 a.m.29 views

CVE-2026-23926 Stored XSS vulnerability in Host navigator widget maintenance tooltip

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS0.00285EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 6:58 a.m.10 views

CVE-2026-23926

An authenticated non-super administrator can create a maintenance period with a JavaScript payload that is executed by any user that opens tooltip for that maintenance period in the Host navigator widget. This can allow the attacker to perform unauthorized actions depending on which user opens th...

7.3CVSS5.8AI score0.00285EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder