13 matches found
EUVD-2021-0489
Malware in sbrugna...
EUVD-2022-3406
Malicious code in bioql PyPI...
EUVD-2022-5754
Malicious code in bioql PyPI...
Security Bulletin: Vulnerabilities in Apache affects IBM watsonx Orchestrate with watsonx Assistant Cartridge
Summary Potential vulnerability in Apache has been identified that affects IBM watsonx Orchestrate with watsonx Assistant Cartridge - UAB Component. The vulnerability has been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2025-31672 DESCRIPTION: Improper...
Security Bulletin: IBM Maximo Asset Management is vulnerable to Apache poi-ooxml-3.9-20121203 in BIRT (CVE-2016-5000, CVE-2017-12626, CVE-2017-5644, CVE-2019-12415, CVE-2022-26336)
Summary IBM Maximo Asset Management is vulnerable to Apache poi-ooxml-3.9-20121203 in BIRT Vulnerability Details CVEID:CVE-2016-5000 DESCRIPTION: The XLSX2CSV example in Apache POI before 3.14 allows remote attackers to read arbitrary files via a crafted OpenXML document containing an external...
PT-2025-15634 · Apache +1 · Apache Poi +1
Name of the Vulnerable Software and Affected Versions: Apache POI affected versions not specified Description: The issue concerns the parsing of OOXML based files, such as xlsx and docx, by the poi-ooxml component. It can read unexpected data if the underlying zip file has duplicate zip entry...
be.thematchbox:AbstractRiver (>=1.0.1 <=1.1.0), br.com.starcode.trex:t-rex (=0.7.1) +408 more potentially affected by CVE-2014-9527 via org.apache.poi:poi (>=3.0-FINAL <=3.10.1)
org.apache.poi:poi MAVEN version =3.0-FINAL, =1.0.1, =0.1, =0.1, =1.0.4, =5.0.1.1, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.6.4 and more Source cves: CVE-2014-9527 Source advisory: OSV:GHSA-X9MM-6GPF-F749...
be.thematchbox:AbstractRiver (>=1.0.1 <=1.1.0), br.com.starcode.trex:t-rex (=0.7.1) +319 more potentially affected by CVE-2014-3529 via org.apache.poi:poi (>=3.0-FINAL <=3.10-beta2)
org.apache.poi:poi MAVEN version =3.0-FINAL, =1.0.1, =1.0.4, =5.0.1.1, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.6.4 and more Source cves: CVE-2014-3529 Source advisory: OSV:GHSA-Q56H-JJJ6-52MF...
be.thematchbox:AbstractRiver (>=1.0.1 <=1.1.0), br.com.starcode.trex:t-rex (=0.7.1) +319 more potentially affected by CVE-2014-3574 via org.apache.poi:poi (>=3.0-FINAL <=3.10-beta2)
org.apache.poi:poi MAVEN version =3.0-FINAL, =1.0.1, =1.0.4, =5.0.1.1, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.6.4 and more Source cves: CVE-2014-3574 Source advisory: OSV:GHSA-5WFP-8643-C58X...
br.com.starcode.trex:t-rex (=0.7.1), com.base4j:base4j-util (>=1.0.4 <=1.1.6) +268 more potentially affected by CVE-2012-0213 via org.apache.poi:poi (>=3.0-FINAL <=3.10-FINAL)
org.apache.poi:poi MAVEN version =3.0-FINAL, =1.0.4, =5.0.1.1, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.0.2, =5.6.4 and more Source cves: CVE-2012-0213 Source advisory: OSV:GHSA-JQX5-H2HW-5Q4F...
Security Bulletin: IBM DataQuant is affected by an Open Source Apache Poi vulnerability.
Summary IBM DataQuant has addressed the following vulnerability. Vulnerability Details Relevant CVE Information: CVEID: CVE-2017-5644 DESCRIPTION: Apache POI is vulnerable to a denial of service, cause by an XML External Entity Injection XXE error when processing XML data. By using a...
Security Bulletin: IBM Tivoli Netcool Service Quality Manager is affected by an Open Source Apache POI vulnerability (CVE-2017-12626)
Summary IBM Tivoli Netcool Service Quality Manager TNSQM is affected by an Open Source Apache POI vulnerability. Vulnerability Details CVEID: CVE-2017-12626 DESCRIPTION: Apache POI is vulnerable to a denial of service, caused by an error while parsing malicious WMF, EMF, MSG and macros and...
Security Bulletin: IBM Tivoli Netcool Impact is affected by an Open Source Apache Poi vulnerability (CVE-2017-5644)
Summary IBM Tivoli Netcool Impact has addressed the following vulnerability Open Source Apache Poi vulnerability CVE-2017-5644. Vulnerability Details CVEID: CVE-2017-5644 DESCRIPTION: Apache POI is vulnerable to a denial of service, cause by an XML External Entity Injection XXE error when...