Lucene search
K

12 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Jetty9

In Eclipse Jetty versions 9.4.0 through 9.4.46, and 10.0.0 through 10.0.9, as well as 11.0.0 through 11.0.9, the parsing of the authority segment of an http scheme URI causes the Jetty HttpURI class to incorrectly detect an invalid input as a hostname. This can lead to failures in a Proxy scenari...

4CVSS6.7AI score0.01173EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/03 8:42 p.m.18 views

CVE-2025-14456 IBM MQ Appliance uses weaker than expected cryptographic algorithms

IBM MQ Appliance 9.4 CD through 9.4.4.0 to 9.4.4.1...

0.0017EPSS
Exploits0References1
OSV
OSV
added 2025/10/16 5:15 p.m.2 views

CVE-2025-36128

IBM MQ 9.1, 9.2, 9.3, 9.4 LTS and 9.3, 9.4 CD is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting slowloris-type attacks, a remote attacker could exploit this vulnerability to cause a denial of service...

7.5CVSS5.8AI score0.00495EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/11 12:0 a.m.6 views

IBM MQ 资源管理错误漏洞

IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and validated messaging backbone for Service Oriented Architecture SOA. A resource management error vulnerability exists in IBM MQ versions 9.3 and 9.4, which stems from ...

7.5CVSS6.3AI score0.00309EPSS
Exploits0References4
OSV
OSV
added 2025/02/28 3:15 a.m.8 views

CVE-2024-54173

IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD reveals potentially sensitive information in trace files that could be read by a local user when webconsole trace is enabled...

4.7CVSS5.7AI score0.00119EPSS
Exploits0References1
OSV
OSV
added 2024/09/07 3:15 p.m.5 views

CVE-2024-40681

IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user in a specifically defined role, to bypass security restrictions and execute actions against the queue manager...

8.8CVSS5.8AI score
Exploits0References1
Patchstack
Patchstack
added 2024/04/05 10:54 a.m.3 views

WordPress Easy Social Share Buttons plugin <= 9.4 - Multiple Broken Access Control vulnerability

Multiple Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Easy Social Share Buttons versions = 9.4...

6.3CVSS7AI score0.00284EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2023/04/26 12:0 a.m.6 views

HCL Technologies Workload Automation 代码问题漏洞

HCL Technologies Workload Automation is a workload automation software from HCL Technologies India. It refers to the use of software to schedule, manage and execute various business tasks and processes with minimal human intervention. A security vulnerability exists in HCL Technologies Workload...

8.1CVSS7.7AI score0.00821EPSS
Exploits0References2
OSV
OSV
added 2022/12/09 2:15 p.m.2 views

CVE-2022-2752

A vulnerability in the web server of Secomea GateManager allows a local user to impersonate as the previous user under some failed login conditions. This issue affects: Secomea GateManager versions from 9.4 through 9.7...

7.8CVSS5.8AI score0.00178EPSS
Exploits0References1
OSV
OSV
added 2022/08/10 5:15 p.m.2 views

CVE-2022-22369

IBM Workload Scheduler 9.4 and 9.5 could allow a local user to overwrite key system files which would cause the system to crash. IBM X-Force ID: 221187...

7.1CVSS5.8AI score0.00185EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/09/29 12:0 a.m.3 views

Ibm Sterling Order Management 跨站脚本漏洞

IBM Sterling Order Management is an order management system that allows companies to seamlessly synchronize and manage the entire lifecycle of orders.A cross-site scripting vulnerability exists in IBM Sterling Order Management versions 9.4, 9.5, and 10.0. An attacker could exploit the vulnerabili...

6.1CVSS6.2AI score0.00632EPSS
Exploits0References4
OSV
OSV
added 2019/07/19 9:15 p.m.7 views

CVE-2019-7590

ExacqVision Server’s services 'exacqVisionServer', 'dvrdhcpserver' and 'mdnsresponder' have an unquoted service path. If an authenticated user is able to insert code in their system root path it potentially can be executed during the application startup. This could allow the authenticated user to...

7.8CVSS5.8AI score0.00825EPSS
Exploits2References6
Rows per page
Query Builder