Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-12375

Malware in sbrugna...

6.1CVSS6.7AI score0.01EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 12:2 p.m.7 views

CVE-2025-21489

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite component: Region Mapping. Supported versions that are affected are 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Advance...

6.1CVSS6.3AI score0.00195EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 2:48 a.m.77 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation iFixes for September and October 2024.

Summary Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 21.0.3-IF037 and 24.0.0-IF003. Vulnerability Details CVEID:CVE-2024-39249 DESCRIPTION: Async is vulnerable to a denial of service, caused by the ReDoS Regular Expression Denial of Service while...

8.5CVSS9.9AI score0.91969EPSS
Exploits1Affected Software2
NVD
NVD
added 2025/01/21 9:15 p.m.7 views

CVE-2025-21489

Vulnerability in the Oracle Advanced Outbound Telephony product of Oracle E-Business Suite component: Region Mapping. Supported versions that are affected are 12.2.3-12.2.10. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Advance...

6.1CVSS0.00195EPSS
Exploits0References1
NVD
NVD
added 2024/04/16 10:15 p.m.21 views

CVE-2024-21039

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite component: LOV. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS6AI score0.00328EPSS
Exploits0References1
CVE
CVE
added 2024/04/16 9:26 p.m.60 views

CVE-2024-21017

CVE-2024-21017 affects Oracle E-Business Suite, specifically the LOV component within Oracle Complex Maintenance, Repair, and Overhaul. Publicly confirmed versions affected are 12.2.3–12.2.13. The vulnerability allows an unauthenticated attacker with network access over HTTP to compromise the pro...

6.1CVSS6.7AI score0.00382EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/04 11:54 a.m.32 views

Security Bulletin: IBM Cinder plug-in is affected by a vulnerability in the Python requests-2.28.2-py3-none-any.whl [CVE-2023-32681]

Summary The Python requests package, which allows user to send HTTP requests using Python, is used by IBM Cinder plug-in. requests package is impacted by vulnerability CVE-2023-32681. Vulnerability Details CVEID:CVE-2023-32681 DESCRIPTION: python-requests could allow a remote attacker to obtain...

6.1CVSS6.4AI score0.02782EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/09 10:33 a.m.29 views

Security Bulletin: Vulnerability in python-requests affects IBM Process Mining . CVE-2023-32681

Summary There is a vulnerability in python-requests that could allow a remote attacker to obtain sensitive information. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details CVEID:CVE-2023-32681 DESCRIPTION...

6.1CVSS6.5AI score0.02782EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/05/30 1:29 p.m.136 views

Security Bulletin: Apache HTTP Server as used by IBM QRadar SIEM is vulnerable to HTTP request splitting attacks (CVE-2023-25690)

Summary Apache HTTP Server as used by IBM QRadar SIEM is vulnerable to HTTP request splitting attacks. IBM has addressed the relevant vulnerability Vulnerability Details CVEID:CVE-2023-25690 DESCRIPTION: Apache HTTP Server is vulnerable to HTTP request splitting attacks, caused by an error when...

9.8CVSS9.3AI score0.8377EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/24 3:3 p.m.36 views

Security Bulletin: IBM Engineering Workflow Management (EWM) vulnerabilities CVE-2020-28500, CVE-2021-23337, CVE-2020-8203

Summary There are vulnerabilities CVE-2020-28500, CVE-2021-23337, CVE-2020-8203 which affects IBM Engineering Workflow Management EWM. Vulnerability Details CVEID:CVE-2015-9251 DESCRIPTION: jQuery is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remot...

7.4CVSS6.9AI score0.99019EPSS
Exploits19Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/20 8:41 p.m.30 views

Security Bulletin: IBM Security Guardium is affected by a mongodb-driver-legacy-4.1.1.jar vulnerability (CVE-2021-20328)

Summary IBM Security Guardium has fixed this vulnerability Vulnerability Details CVEID: CVE-2021-20328 DESCRIPTION: MongoDB Java driver is vulnerable to a man-in-the-middle attack, caused by improper host name verification on the KMS server's certificate. An attacker could exploit this...

6.8CVSS1.3AI score0.00432EPSS
Exploits0Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/04/19 9:15 p.m.7 views

CVE-2022-21470

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Process Scheduler. Supported versions that are affected are 8.58 and 8.59. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterpri...

6.1CVSS6.9AI score0.00803EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2021/04/22 9:54 p.m.29 views

CVE-2021-2307

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Packaging. Supported versions that are affected are 5.7.33 and prior and 8.0.23 and prior. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where MySQL Server executes to...

6.1CVSS6.8AI score0.01013EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/08/11 7:21 p.m.16 views

Security Bulletin: Multiple Vulnerabilities in jQuery affect IBM WIoTP MessageGateway

Summary There are multiple vulnerabilities in jQuery that affect IBM WIoTP MessageGateway. Vulnerability Details Third Party Entry: 180875 DESCRIPTION: jQuery cross-site scripting CVSS Base score: 6.1 CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/180875 for the...

0.5AI score
Exploits0Affected Software1
Cvelist
Cvelist
added 2020/07/15 5:34 p.m.19 views

CVE-2020-14601

Vulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications component: Infrastructure. Supported versions that are affected are 8.0.6-8.1.0. Easily exploitable vulnerability allows unauthenticated attacker with network...

6.1CVSS6AI score0.00962EPSS
Exploits0References1
Prion
Prion
added 2020/04/15 2:15 p.m.14 views

Design/Logic Flaw

Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain component: Security. Supported versions that are affected are 9.3.3, 9.3.5 and 9.3.6. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Agile PLM. Successful attac...

5.8CVSS5.7AI score0.01134EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2020/01/15 4:34 p.m.14 views

CVE-2020-2603

Vulnerability in the Oracle Field Service product of Oracle E-Business Suite component: Wireless. Supported versions that are affected are 12.1.1-12.1.3 and 12.2.3-12.2.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Field...

6.1CVSS6.2AI score0.00942EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/01/15 4:33 p.m.25 views

CVE-2020-2530

Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS5.6AI score0.0109EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/20 8:47 a.m.48 views

Security Bulletin: IBM Tivoli Netcool Impact is affected by a jQuery vulnerability (CVE-2019-11358)

Summary IBM Tivoli Netcool Impact has addressed the following jQuery vulnerability. Vulnerability Details CVEID: CVE-2019-11358 DESCRIPTION: jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extendtrue, , ... because of Object.prototype pollution. If an...

6.1CVSS0.9AI score0.87218EPSS
Exploits4Affected Software1
Intel
Intel
added 2019/06/11 12:0 a.m.24 views

Intel® Accelerated Storage Manager in Intel® Rapid Storage Technology Enterprise Advisory

Summary: Potential security vulnerabilities in Intel® Accelerated Storage Manager in Intel® Rapid Storage Technology Enterprise RSTe may allow escalation of privilege or denial of service. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEI...

7.4CVSS7.9AI score0.01855EPSS
Exploits0
Rows per page
Query Builder