EUVD-2025-36791

Malicious code in @apache-felix/felix-antora-ui npm...

MAL-2025-48959 Malicious code in @apache-felix/felix-antora-ui (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b51d8cb92483d748cafc2b53ff5dfcef6b4c8e4dbe7b73c671a3a5cb338a9aaf Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious Package

Overview @apache-netbeans/netbeans-antora-ui is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization an...

Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to uncontrolled recursion due to the Apache Commons Lang package (CVE-2025-48924)

Summary Apache Commons Lang is used by DataStage on Cloud Pak for Data as part of API processing functionality. Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with...

Exploit for Improper Handling of Exceptional Conditions in Apache Struts

Web Vulnerability to POC Generator Web Vulnerability to POC G...

Exploit for CVE-2025-55752

CVE-2025-55752: Apache Tomcat Path Traversal Vulnerability A...

SUSE CVE-2025-61795

Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the garbage collection process to...

PT-2025-44573

CVE-2025-64159 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2025-64159 Published : Oct. 29, 2025, 4:16 a.m. | 2 hours, 33 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

PT-2025-44575

CVE-2025-64161 - Apache HTTP Server Cross-Site Request Forgery CVE ID : CVE-2025-64161 Published : Oct. 29, 2025, 4:16 a.m. | 2 hours, 33 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and...

PT-2025-44576

CVE-2025-64162 - Apache HTTP Server Remote Code Execution CVE ID : CVE-2025-64162 Published : Oct. 29, 2025, 4:16 a.m. | 2 hours, 33 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

PT-2025-44572

CVE-2025-64158 - Apache HTTP Server Unvalidated User Input CVE ID : CVE-2025-64158 Published : Oct. 29, 2025, 4:16 a.m. | 2 hours, 33 minutes ago Description : Rejected reason: Not used Severity: 0.0 | NA Visit the link for more details, such as CVSS details, affected products, timeline, and more...

Exploit for CVE-2025-55752

🚨🚨 CVE-2025-55752 — Apache Tomcat: Directory-protection bypass v...

Exploit for Use of Incorrectly-Resolved Name or Reference in Apache Tomcat

This is a Java class file that appears to be a payload for a malicious attack. The class is named "Foo" and has a single method, "", which is the constructor. The constructor takes no arguments and does not perform any actions. The class also has a "serialVersionUID" field, which is a unique...

Maintenance update for Multi-Linux Manager 5.1.1

Description: This update fixes the following issues: Multi-Linux-Manager-Proxy-SLE-release: Update for the release packages for fixing the EOL Fixed migration issue bsc1243486 proxy-helm was updated fromv version 5.1.7 to 5.1.9: Version 5.1.9 Chart rebuilt to the newest version with updated...

Exploit for Path Traversal in Apache Http_Server

Apache-CVE-2021-42013-RCE-Exploit A powerful an...

Security Bulletin: IBM Maximo Application Suite Predict Component uses Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability.

Summary Security Bulletin: IBM Maximo Application Suite Predict Component uses Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability.This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

Security Bulletin: IBM Maximo Application Suite Predict Component uses Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability.

Summary Security Bulletin: IBM Maximo Application Suite Predict Component uses Allocation of resources for multipart headers with insufficient limits enabled a DoS vulnerability.This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details...

Security Bulletin: IBM Operational Decision Manager for Sept 2025 - Multiple CVEs addressed

Summary IBM Operational Decision Manager is vulnerable to multiple remote code execution and denial of service attacks in third party and open source used in the product for various functions. See full list below. The vulnerabilities have been addressed. Vulnerability Details CVEID:CVE-2025-27818...

PT-2025-44227

🔵 Apache Tomcat, Improper Input Neutralization, CVE-2025-45456 Low https://t.co/K5oE1w7vzB...

Linux Distros Unpatched Vulnerability : CVE-2025-61795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart uploa...