13 matches found
EUVD-2026-30746
Mattermost Plugins versions =11.5 11.1.5 10.13.11 11.3.4.0 fail to have API-level checks on which groups the user can create issues or attach comments to which allows a user that is member of multiple groups to create issues to a locked group via direct API requests. Mattermost Advisory ID:...
CVE-2024-35152
IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation. IBM X-Force ID: 292639...
CVE-2021-32828
The Nuxeo Platform is an open source content management platform for building business applications. In version 11.5.109, the oauth2 REST API is vulnerable to Reflected Cross-Site Scripting XSS. This XSS can be escalated to Remote Code Execution RCE by levering the automation API...
CVE-2021-46330
Moddable SDK v11.5.0 was discovered to contain a SEGV vulnerability via xs/sources/xsDataView.c in fxArrayBufferprototypeconcat...
CVE-2021-40678
In Piwigo 11.5.0, there exists a persistent cross-site scripting in the single mode function through /admin.php?page=batchmanager=unit...
gcc security update
11.5.0-5.0.1 - Merge Oracle patches to 11.5.0-5. Oracle history:...
IBM Db2 日志信息泄露漏洞
IBM Db2 is a relational database management system from International Business Machines IBM. The system is executed on UNIX, Linux, IBMi, z/OS, and Windows server versions. A log information disclosure vulnerability exists in IBM Db2 version 11.5, which stems from the fact that under certain...
PT-2023-8437 · Ibm · Ibm Db2
Name of the Vulnerable Software and Affected Versions: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server version 11.5 Description: The issue is related to insufficient input validation in the database management system, which can be exploited by a remote attacker to cause a denial o...
CVE-2021-46328
Moddable SDK v11.5.0 was discovered to contain a heap-buffer-overflow via the component libcstartmain...
CVE-2021-46333
Moddable SDK v11.5.0 was discovered to contain an invalid memory access vulnerability via the component asanmemmove...
CVE-2018-19642
Denial of service issue in Micro Focus Solutions Business Manager SBM formerly Serena Business Manager SBM versions prior to 11.5...
CVE-2018-19645
An Authentication Bypass issue exists in Solutions Business Manager SBM formerly Serena Business Manager SBM versions prior to 11.5...
CVE-2017-6758
A vulnerability in the web framework of Cisco Unified Communications Manager 11.51.10000.6 could allow an authenticated, remote attacker to access arbitrary files in the context of the web root directory structure on an affected device. The vulnerability is due to insufficient input validation by...