PT-2021-3750

Name of the Vulnerable Software and Affected Versions Java SE versions 7u301, 8u291, 11.0.11, 16.0.1 Oracle GraalVM Enterprise Edition versions 20.3.2 and 21.1.0 Description The issue is related to insufficient input validation in the Networking component of Java SE and Oracle GraalVM Enterprise...

SUSE: Security Advisory (SUSE-SU-2016:0636-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2016:0428-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM DataPower Gateway affected by multiple vulnerabilities in Java Runtime

Summary IBM has addressed the following CVEs: CVE-2020-2593, CVE-2020-2583 Vulnerability Details CVEID: CVE-2020-2593 DESCRIPTION: An unspecified vulnerability in Java SE related to the Java SE Networking component could allow an unauthenticated attacker to cause low confidentiality impact, low...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect Rational Synergy

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 Service Refresh 16 Fix Pack 30 and earlier releases that is used by IBM Rational Synergy. These issues were disclosed as part of the IBM Java SDK updates in October 2016 and Jan 2017...

Information Disclosure

chromium is vulnerable to information disclosure. An out of bounds read flaw was found in the networking component of the Chromium browser...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM ILOG CPLEX Optimization Studio

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by IBM CPLEX Optimization Studio. IBM CPLEX Optimization Studio has addressed the applicable CVEs. Vulnerability Details If you run your own Java code using the IBM Java Runtime delivered with this product...

The vulnerability of the Networking component in the Google Chrome web browser, which allows a hacker to increase their privileges

The vulnerability of the Networking component in the Google Chrome web browser is related to privilege management errors. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

The vulnerability of the Networking component in the Google Chrome web browser, which allows a hacker to increase their privileges

The vulnerability of the Networking component in the Google Chrome web browser is related to privilege management errors. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

The vulnerability of Google Chrome’s networking component allows a hacker to replace the domain name.

The vulnerability of Google Chrome’s networking component is related to errors in the implementation of security checks for standard elements. Exploiting this vulnerability can allow a malicious actor to remotely replace a domain name...

KLA12009 Multiple vulnerabilities in Google Chrome

Multiple vulnerabilities were found in Google Chrome. Malicious users can exploit these vulnerabilities to obtain sensitive information, execute arbitrary code, cause denial of service, bypass security restrictions, spoof user interface. Below is a complete list of vulnerabilities: 1. An...

Cisco IOS XE & Cisco IOS XE SDWAN Ethernet Frame DoS (cisco-sa-le-drTOB625)

According to its self-reported version, Cisco IOS XE or Cisco IOS XE SDWAN is affected by a denial of service DoS vulnerability in its networking component due to a failure to handle malformed ethernet frames. An unauthenticated, adjacent attacker can exploit this issue, by sending specially...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Sterling Connect:Direct Browser User Interface (CVE-2016-3426, CVE-2016-3485)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 7.0 that is used by IBM Sterling Connect:Direct Browser User Interface. These issues were disclosed as part of the IBM Java Runtime updates in April 2016 and July 2016. Vulnerability Details...

Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime Affect IBM Sterling Secure Proxy

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 1.8 used by IBM Sterling Secure Proxy. These issues were disclosed as part of the IBM Java SDK updates in July and October 2018. Vulnerability Details CVEID: CVE-2018-1517 DESCRIPTION: A flaw in the java.math...

Security Bulletin: Multiple vulnerabilities in IBMJava SDK affect IBM Cloud App Management

Summary There are vulnerabilities in IBM Java SDK used by IBM® Cloud App Management. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2019-2989 DESCRIPTION: An unspecified vulnerability in Java SE could allow an unauthenticated...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Integration Bus and IBM App Connect Enterpise v11

Summary Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8.0.5.27 & Versions 7.0.10.35 used by IBM Integration Bus & IBM App Connect Enterprise V11. These issues were disclosed as part of the IBM Java SDK updates in January 2019 Vulnerability Details CVEID:...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect WebSphere Message Broker and IBM Integration Bus (CVE-2016-3485)

Summary Multiple security vulnerabilities exist in the IBM® Runtime Environment Java™ Technology Edition 6.0.16.26 and earlier used by WebSphere Message Broker, and the IBM® Runtime Environment Java™ Technology Edition 7.0.9.40 and earlier used by WebSphere Message Broker and IBM Integration Bus,...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect z/TPF

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by the z/TPF system. z/TPF has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-2604 DESCRIPTION: An unspecified vulnerability in Java SE could allow an unauthenticated attacker to take...

Security Bulletin: Multiple vulnerabilities in the IBM SDK, Java Technology Edition affects IBM Performance Management products

Summary Multiple vulnerabilities in the Oracle Java SE and the Java SE Embedded impact the IBM SDK, Java Technology Edition. Vulnerability Details CVEID: CVE-2020-2593 DESCRIPTION: An unspecified vulnerability in Java SE related to the Java SE Networking component could allow an unauthenticated...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM WebSphere Cast Iron Solution

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 8.0.5.40 and 7.0.10.45 used by IBM Cast Iron. These issues were disclosed as part of the IBM Java SDK updates in July 2019. IBM Cast Iron has addressed the applicable CVEs. Vulnerability Details CVEID:...