Lucene search
K

49 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-25416

Malware in sbrugna...

7.5CVSS6.1AI score0.00951EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-25414

Malware in sbrugna...

6.5CVSS6.6AI score0.00953EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-25841

Malware in sbrugna...

7.5CVSS6.1AI score0.00783EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/19 8:12 p.m.40 views

Security Bulletin: IBM Security Guardium Insights is affected by Node.js vulnerability (CVE-2021-22939)

Summary IBM Security Guardium Insights addressed the following vulnerability. Vulnerability Details CVEID: CVE-2021-22939 DESCRIPTION: Node.js could allow a remote attacker to bypass security restrictions. If the https API was used incorrectly and "undefined" was in passed for the...

5.3CVSS1.7AI score0.1473EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/08 8:24 p.m.44 views

Security Bulletin: IBM Security Guardium Insights is affected by multiple vulnerabilities

Summary IBM Security Guardium Insights addressed the following issues with an update. Vulnerability Details CVEID: CVE-2021-43797 DESCRIPTION: Netty is vulnerable to HTTP request smuggling, caused by improper parsing of the HTTP transfer-encoding request header names. By sending a specially-craft...

9.1CVSS0.7AI score0.03958EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/04 9:33 p.m.68 views

Security Bulletin: IBM Security Guardium Insights is affected by multipe vulnerabilities

Summary IBM Security Guardium Insights adreesed the following issues Vulnerability Details CVEID: CVE-2021-3733 DESCRIPTION: Python is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw in the AbstractBasicAuthHandler class in urllib. By persuading a...

7.5CVSS7.2AI score0.11586EPSS
Exploits2Affected Software1
CNVD
CNVD
added 2022/01/28 12:0 a.m.16 views

IBM Security Guardium Insights Information Disclosure Vulnerability (CNVD-2022-08968)

IBM Security Guardium Insights is a data security solution from IBM Corporation. IBM Security Guardium Insights has an information disclosure vulnerability in version 3.0 that stems from a failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to...

5.9CVSS0.4AI score0.01283EPSS
Exploits0References1
NVD
NVD
added 2022/01/26 6:15 p.m.20 views

CVE-2021-29846

IBM Security Guardium Insights 3.0 could allow an authenticated user to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 205256...

4CVSS0.00603EPSS
Exploits0References2
NVD
NVD
added 2022/01/26 6:15 p.m.24 views

CVE-2021-29845

IBM Security Guardium Insights 3.0 could allow an authenticated user to perform unauthorized actions due to improper input validation. IBM X-Force ID: 205255...

8.8CVSS0.00766EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2022/01/26 12:0 a.m.5 views

PT-2022-9940 · Ibm · Ibm Security Guardium Insights

Name of the Vulnerable Software and Affected Versions: IBM Security Guardium Insights version 3.0 Description: The issue allows an authenticated user to obtain sensitive information due to insufficient session expiration. Recommendations: For IBM Security Guardium Insights version 3.0, consider...

4CVSS3.6AI score0.00603EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/25 7:15 p.m.46 views

Security Bulletin: IBM Security Guardium Insights is affected by multiple vulnerabilities

Summary IBM Security Guardium Insights has addressed the following vulnerabilities: Vulnerability Details CVEID: CVE-2021-33198 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by a flaw in the SetString and UnmarshalText methods of math/big.Rat. By sending a specially-crafted...

8.8CVSS8.3AI score0.23132EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/24 7:39 p.m.24 views

Security Bulletin: IBM Security Guardium Insights is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046)

Summary IBM Security Guardium Insights uses Apache Log4j2 in its logging infrastructure. IBM Security Guardium Insights has addressed the vulnerabilities found in CVE-2021-45105 and CVE-2021-45046 by upgrading the Apache Log4j to version 2.17. Vulnerability Details CVEID: CVE-2021-45105...

10CVSS1.5AI score0.99999EPSS
Exploits355Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/20 8:32 p.m.161 views

Security Bulletin: IBM Security Guardium Insights is vulnerable to a remote code execution vulnerability in Apache Log4j 2 component. (CVE-2021-44228)

Summary IBM Security Guardium Insights is vulnerable to a remote code execution vulnerability in Apache Log4j 2 component. IBM Security Guardium Insights has addressed the vulnerability CVE-2021-44228 with an upgrade. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could all...

10CVSS1.9AI score0.99999EPSS
Exploits351Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.16 views

Security Bulletin: IBM Security Guardium Insights is affected by an Open Redirect vulnerabilitiy (CVE-2020-4598)

Summary IBM Security Guardium Insights has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4598 DESCRIPTION: IBM Security Guardium Insights could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a...

6.5CVSS1.7AI score0.00784EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.53 views

Security Bulletin: IBM Security Guardium Insights is affected by components with known vulnerabilities (CVE-2018-10237, CVE-2020-9488)

Summary IBM Security Guardium Insights has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2018-10237 DESCRIPTION: Google Guava is vulnerable to a denial of service, caused by improper eager allocation checks in the AtomicDoubleArray and CompoundOrdering class. By sendin...

5.9CVSS1.1AI score0.08096EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.65 views

Security Bulletin: IBM Security Guardium Insights is affected by multiple vulnerabilities (CVE-2021-3538, CVE-2021-33502, CVE-2021-3450, CVE-2021-3449)

Summary IBM Security Guardium Insights has addressed the following vulnerabilities: Vulnerability Details CVEID: CVE-2021-3538 DESCRIPTION: go.uuid could allow a remote attacker to obtain sensitive information, caused by the use of insecure randomness in the g.rand.Read function. By utilize...

9.8CVSS1AI score0.62906EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.52 views

Security Bulletin: IBM Security Guardium Insights is affected by a Netty vulnerability (CVE-2020-11612)

Summary IBM Security Guardium Insights has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-11612 DESCRIPTION: Netty is vulnerable to a denial of service, caused by unbounded memory allocation while decoding a ZlibEncoded byte stream in the ZlibDecoders. By sending a...

7.5CVSS1.7AI score0.09438EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.65 views

Security Bulletin: IBM Security Guardium Insights is affected by a Components with known vulnerabilities

Summary IBM Security Guardium Insights has addressed the following vulnerabilities. Vulnerability Details CVEID: CVE-2017-7656 DESCRIPTION: Eclipse Jetty is vulnerable to HTTP request smuggling, caused by a flaw in the HTTP/1.x Parser. By sending a specially-crafted request, an attacker could...

9.8CVSS0.3AI score0.20985EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.16 views

Security Bulletin: IBM Security Guardium Insights is affected by a Cross-Site Request Forgery vulnerability (CVE-2020-4170)

Summary IBM Security Guardium Insights has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4170 DESCRIPTION: IBM Guardium Activity Insights is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions...

4.3CVSS1.8AI score0.00403EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/06 12:30 p.m.21 views

Security Bulletin: IBM Security Guardium Insights is affected by a security vulnerabilitiy (CVE-2020-4593)

Summary IBM Security Guardium Insights has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4593 DESCRIPTION: IBM Security Guardium Insights stores user credentials in plain in clear text which can be read by a local user. CVSS Base score: 4.4 CVSS Temporal Score: See:...

4.4CVSS1.2AI score0.00306EPSS
Exploits0Affected Software1
Rows per page
Query Builder