Lucene search
K

28 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-6147

Malware in sbrugna...

7.5CVSS6.4AI score0.0121EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-10372

Malware in sbrugna...

8.8CVSS8.8AI score0.01436EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/08 8:40 a.m.53 views

Security Bulletin: Atlas eDiscovery Process Management is affected by a vulnerable xstream-1.4.17.jar

Summary Atlas eDiscovery Process Management is affected by a vulnerable xstream-1.4.17.jar. Hence xstream-1.4.17.jar upgraded to xstream-1.4.19.jar to fix vulnerabilities. Vulnerability Details CVEID:CVE-2022-41966 DESCRIPTION: XStream is vulnerable to a denial of service, caused by a stack-based...

8.8CVSS8.6AI score0.98124EPSS
Exploits19Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/08 8:39 a.m.34 views

Security Bulletin: Atlas eDiscovery Process Management is affected by a vulnerable xmlbeans-2.3.0.jar

Summary Atlas eDiscovery Process Management is affected by a vulnerable xmlbeans-2.3.0.jar. Hence xmlbeans-2.3.0.jar upgraded to xmlbeans-3.0.0.jar to fix vulnerabilities. Vulnerability Details CVEID:CVE-2021-23926 DESCRIPTION: Apache XMLBeans is vulnerable to a denial of service, caused by an XM...

9.1CVSS9AI score0.06215EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/08 8:37 a.m.49 views

Security Bulletin: Atlas eDiscovery Process Management is affected by a vulnerable poi-ooxml-3.9.jar

Summary Atlas eDiscovery Process Management is affected by a vulnerable poi-ooxml-3.9.jar. Hence poi-ooxml-3.9.jar upgraded to poi-ooxml-4.0.jar to fix vulnerabilities. Vulnerability Details CVEID:CVE-2017-5644 DESCRIPTION: Apache POI is vulnerable to a denial of service, cause by an XML External...

7.1CVSS7.8AI score0.13258EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/20 6:8 p.m.41 views

Security Bulletin: Log4jShell Vulnerability affects Atlas eDiscovery Process Management IGC Connector ( CVE-2021-44228)

Summary There is a vulnerability in the Apache Log4j open source library used by ATLAS IGC Connector. This vulnerability has been addressed. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused by the...

10CVSS1.3AI score0.99999EPSS
Exploits354Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/03/06 6:28 a.m.22 views

Security Bulletin: Atlas eDiscovery Process Management is affected by a vulnerable to Apache Commons Beanutils in WebSphere Application Server

Summary In Apache Commons Beanutils 1.9.2, a special BeanIntrospector class was added which allows suppressing the ability for an attacker to access the classloader via the class property available on all Java objects. We, however were not using this by default characteristic of the...

7.5CVSS1.5AI score0.28839EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:19 p.m.14 views

Security Bulletin: Atlas eDiscovery Process Management is affected by Apache Open Source Commons FileUpload Vulnerability

Summary Atlas eDiscovery Process Management has addressed Apache Commons FileUpload vulnerability, which could allow a remote attacker to execute arbitrary code on the system, caused by deserialization of untrusted data in DiskFileItem class of the FileUpload library. A remote attacker could...

9.8CVSS1.9AI score0.34731EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:18 p.m.10 views

Security Bulletin: IBM Atlas eDiscovery Process Management vulnerable to cross-site scripting.

Summary Atlas eDiscovery Process Management has addressed cross-site scripting vulnerability, which allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. Due to this...

5.4CVSS0.9AI score0.00514EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:18 p.m.28 views

Security Bulletin: IBM Atlas eDiscovery Process Management affected by vulnerability due to sensitive information stored in URL parameters.

Summary Atlas eDiscovery Process Management has addressed vulnerability due to sensitive information stored in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. Vulnerability Details CVEID:...

4.3CVSS1.5AI score0.01042EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:18 p.m.20 views

Security Bulletin: IBM Atlas eDiscovery Process Management vulnerable to unsafe third-party links.

Summary Atlas eDiscovery Process Management has addressed the following vulnerability: An authenticated attacker could obtain sensitive information when an unsuspecting user clicks on unsafe third-party links. The third-party links with target="blank" attribute and no rel="noopener noreferrer"...

3.5CVSS1.1AI score0.00683EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:18 p.m.19 views

Security Bulletin: IBM Atlas eDiscovery Process Management vulnerable to SQL injection.

Summary Atlas eDiscovery Process Management has addressed vulnerablility due to SQL injection, where a remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. Vulnerability Details CVEID:...

8.8CVSS1.3AI score0.01436EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:17 p.m.20 views

Security Bulletin: OpenSource Apache Taglibs Vulnerability affects Atlas Policy Suite (CVE-2015-0254)

Summary Apache Standard Taglibs could allow a remote attacker to execute arbitrary code on the system, caused by an XML External Entity Injection XXE error when processing XML data. Vulnerability Details CVEID: CVE-2015-0254 DESCRIPTION: Apache Standard Taglibs could allow a remote attacker to...

7.5CVSS1.3AI score0.1326EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2017/12/08 12:0 a.m.7 views

IBM Atlas eDiscovery Process Management Information Disclosure Vulnerability (CNVD-2018-00312)

IBM Atlas eDiscovery Process Management helps attorneys, paralegals, and evidence supervisors rigorously and logically manage legal evidence retention workflows. An information disclosure vulnerability exists in IBM Atlas eDiscovery Process Management 6.0.3. An authenticated attacker could exploi...

3.5CVSS6AI score0.00683EPSS
Exploits0References1
NVD
NVD
added 2017/12/07 3:29 p.m.17 views

CVE-2017-1353

IBM Atlas eDiscovery Process Management 6.0.3 could allow an authenticated attacker to obtain sensitive information when an unsuspecting user clicks on unsafe third-party links. IBM X-Force ID: 126680...

3.5CVSS3.4AI score0.00683EPSS
Exploits0References2
NVD
NVD
added 2017/12/07 3:29 p.m.20 views

CVE-2017-1355

IBM Atlas eDiscovery Process Management 6.0.3 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 126682...

4.3CVSS3.7AI score0.01042EPSS
Exploits0References3
NVD
NVD
added 2017/12/07 3:29 p.m.17 views

CVE-2017-1354

IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...

5.4CVSS5.2AI score0.00514EPSS
Exploits0References2
OSV
OSV
added 2017/12/07 3:29 p.m.5 views

CVE-2017-1354

IBM Atlas eDiscovery Process Management 6.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID:...

5.4CVSS5.4AI score0.00514EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/12/07 3:0 p.m.18 views

CVE-2017-1355

IBM Atlas eDiscovery Process Management 6.0.3 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 126682...

3.7AI score0.01042EPSS
Exploits0References3
CVE
CVE
added 2017/12/07 3:0 p.m.56 views

CVE-2017-1355

IBM Atlas eDiscovery Process Management stores sensitive information in URL parameters, enabling potential information disclosure via server logs, referrers, or browser history. Affected: 6.0.3 through 6.0.3.5. CVSS v3 base 3.7. Remediation: upgrade to 6.0.3 Fix Pack 6 (6.0.3 FP6).

4.3CVSS3.8AI score0.01042EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder