Lucene search
K

110 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/03/10 8:35 p.m.82 views

Security Bulletin: There is a vulnerability in Apache Commons BCEL used by IBM Maximo Manage application in IBM Maximo Application Suite (CVE-2022-42920)

Summary There is a vulnerability in Apache Commons BCEL used by IBM Maximo Manage application in IBM Maximo Application Suite. Vulnerability Details CVEID:CVE-2022-42920 DESCRIPTION: Apache Commons BCEL could allow a remote attacker to bypass security restrictions, caused by an out-of-bounds writ...

9.8CVSS9.7AI score0.02836EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/02/28 12:50 a.m.46 views

Important: Red Hat Security Advisory: Migration Toolkit for Applications security and bug fix update

Migration Toolkit for Applications 6.0.1 release Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

9.8CVSS6.8AI score0.14663EPSS
Exploits7References31
OpenVAS
OpenVAS
added 2023/02/09 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for bcel (EulerOS-SA-2023-1307)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.6AI score0.02836EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.25 views

EulerOS 2.0 SP8 : bcel (EulerOS-SA-2023-1307)

According to the versions of the bcel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds...

9.8CVSS7.5AI score0.02836EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/01/26 12:19 p.m.56 views

Important: Red Hat Security Advisory: Migration Toolkit for Runtimes security update

An update is now available for Migration Toolkit for Runtimes v1.0.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.02836EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/01/26 12:14 p.m.62 views

Important: Red Hat Security Advisory: Migration Toolkit for Runtimes security update

An update is now available for Migration Toolkit for Runtimes v1.0.1. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

9.8CVSS6.8AI score0.02836EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2023/01/25 12:0 a.m.28 views

Amazon Linux 2022 : bcel, bcel-javadoc (ALAS2022-2023-275)

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2023-275 advisory. Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitra...

9.8CVSS7.4AI score0.02836EPSS
Exploits0References3
Amazon
Amazon
added 2023/01/24 12:0 a.m.38 views

Important: bcel

Issue Overview: Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllab...

9.8CVSS8AI score0.02836EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/24 12:0 a.m.29 views

Amazon Linux AMI : bcel (ALAS-2023-1668)

The version of bcel installed on the remote host is prior to 5.2-7.2.10. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1668 advisory. Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an...

9.8CVSS7.5AI score0.02836EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/01/24 12:0 a.m.37 views

Amazon Linux 2 : bcel (ALAS-2023-1916)

The version of bcel installed on the remote host is prior to 5.2-18. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1916 advisory. Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an...

9.8CVSS7.5AI score0.02836EPSS
Exploits0References3
Amazon
Amazon
added 2023/01/20 12:0 a.m.56 views

Important: bcel

Issue Overview: Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue, these APIs can be used to produce arbitrary bytecode. This could be abused in applications that pass attacker-controllab...

9.8CVSS8AI score0.02836EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/09 4:57 p.m.112 views

Security Bulletin: Code injection vulnerability affect IBM Business Automation Workflow (CVE-2022-42920)

Summary IBM Business Automation Workflow packages Apache Commons BCEL. A code injection vulnerability affecting BCEL was reported. CVE-2022-42920 Vulnerability Details CVEID:CVE-2022-42920 DESCRIPTION: Apache Commons BCEL could allow a remote attacker to bypass security restrictions, caused by an...

9.8CVSS9.8AI score0.02836EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/01/04 12:0 a.m.33 views

AlmaLinux 9 : bcel (ALSA-2023:0005)

The remote AlmaLinux 9 host has a package installed that is affected by a vulnerability as referenced in the ALSA-2023:0005 advisory. - Apache Commons BCEL has a number of APIs that would normally only allow changing specific class characteristics. However, due to an out-of-bounds writing issue,...

9.8CVSS7.5AI score0.02836EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2023/01/03 12:0 a.m.27 views

bcel security update

6.4.1-9 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...

9.8CVSS3.3AI score0.02836EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/01/03 12:0 a.m.39 views

Oracle Linux 9 : bcel (ELSA-2023-0005)

The remote Oracle Linux 9 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2023-0005 advisory. 6.4.1-9 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920 Tenable has extracted the preceding description block directly fr...

9.8CVSS7.4AI score0.02836EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/01/02 7:3 a.m.34 views

Important: Red Hat Security Advisory: bcel security update

An update for bcel is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

9.8CVSS6.8AI score0.02836EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/01/02 6:53 a.m.5 views

Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing

An out-of-bounds OOB write flaw was found in Apache Commons BCEL API. This flaw can be used to produce arbitrary bytecode and may abuse applications that pass attacker-controlled data to those APIs, giving the attacker more control over the resulting bytecode than otherwise expected...

9.8CVSS7.2AI score0.02836EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/01/02 6:53 a.m.49 views

Important: Red Hat Security Advisory: bcel security update

An update for bcel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

9.8CVSS6.8AI score0.02836EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2023/01/02 6:7 a.m.32 views

bcel security update

An update is available for bcel. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Byte Code Engineering Library Apache Commons BCEL is intended to give users ...

9.8CVSS9.3AI score0.02836EPSS
Exploits0
OSV
OSV
added 2023/01/02 6:7 a.m.42 views

RLSA-2023:0005 Important: bcel security update

The Byte Code Engineering Library Apache Commons BCEL is intended to give users a convenient way to analyze, create, and manipulate binary Java class files those ending with .class. Security Fixes: Apache-Commons-BCEL: arbitrary bytecode produced via out-of-bounds writing CVE-2022-42920 For more...

8.1CVSS9.7AI score0.02836EPSS
Exploits0References2
Rows per page
Query Builder