3 matches found
CVE-2024-10976
Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change different rows from those intended. CVE-2023-2455 and CVE-2016-2193 fixed most interaction between row security and user ID changes. They missed cases where a subquery, WITH query, security invok...
Security Bulletin:Vulnerability in OpenSSL affects IBM PureApplication System. (CVE-2015-1788)
Summary An OpenSSL denial of service vulnerability disclosed by the OpenSSL Project affects GSKit. IBM PureApplication System uses GSKit in user registry components in the Web application pattern type and GPFS pattern type. IBM PureApplication System addressed the applicable CVE. Vulnerability...
Security Bulletin: TLS padding vulnerability affects IBM PureApplication System (CVE-2014-8730)
Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM PureApplication System. Vulnerability Details CVEID: CVE-2014-8730 DESCRIPTION: IBM PureApplication Server bundles IBM HTTP Server, which could allow a...