Lucene search
K

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/22 2:27 p.m.3 views

Security Bulletin: DataStage on Cloud Pak for Data has several vulnerabilities due to open source software

Summary Open source packages are used as part of the overall processing in DataStage on Cloud Pak for Data. Vulnerability Details CVEID:CVE-2025-13465 DESCRIPTION: Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions. An attacker can pass...

9.8CVSS6.8AI score0.01535EPSS
Exploits1Affected Software1
Snyk
Snyk
added 2026/03/26 9:23 p.m.4 views

Incorrect Authorization

Overview @openclaw/mattermost is an OpenClaw Mattermost channel plugin Affected versions of this package are vulnerable to Incorrect Authorization via the callback process. An attacker can execute unauthorized actions by sending specially crafted requests before sender authorization checks are...

9.1CVSS6AI score0.0042EPSS
Exploits0References3
OSV
OSV
added 2026/03/13 8:56 p.m.6 views

GHSA-44VG-5WV2-H2HG SimpleEval: Objects (including modules) can leak dangerous modules through to direct access inside the sandbox

Impact If the objects passed in as names to SimpleEval have modules or other disallowed / dangerous objects available as attrs. Additionally, dangerous functions or modules could be accessed by passing them as callbacks to other safe functions to call. Examples found by @ByamB4: Any module where...

9.8CVSS5.9AI score0.00512EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2010/07/30 12:0 a.m.9 views

MDVA-2010:129 : netcdf

This updates fixes a wrong Obsoletes: tag on netcdf package which would break upgrades to 2010.1. %NASLMINLEVEL 70300 @DEPRECATED@ This script has been deprecated as the associated patch is not currently a security fix. Disabled on 2012/09/06. C Tenable Network Security, Inc. This script was...

6.9AI score
Exploits0References1
Rows per page
Query Builder