Lucene search
+L

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/09/02 2:7 p.m.9 views

Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates

Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 12.0.15 LTS and 12.15.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported vulnerabilities...

8.8CVSS8.7AI score0.75116EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/28 7:25 a.m.20 views

Security Bulletin: Multiple Vulnerabilities in OpenSSL Affect IBM Sterling Connect:Direct for HP

Summary There are multiple vulnerabilities in the OpenSSL library used by IBM Sterling Connect:Direct for HP NonStop. IBM Sterling Connect:Direct for HP NonStop has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-0466 DESCRIPTION: The function X509VERIFYPARAMadd0policy is...

5.3CVSS6AI score0.01625EPSS
Exploits0Affected Software1
OSV
OSV
added 2024/03/01 11:7 a.m.3 views

OESA-2024-1222 shim security update

Initial UEFI bootloader that handles chaining to a trusted full \ bootloader under secure boot environments. Security Fixes: Applications that use a non-default option when verifying certificates may be vulnerable to an attack from a malicious CA to circumvent certain checks. Invalid certificate...

6.5CVSS8.7AI score0.75116EPSS
Exploits0References4
OSV
OSV
added 2024/02/23 11:6 a.m.11 views

OESA-2024-1168 nodejs security update

Node.js is an open-source, cross-platform, JavaScript runtime environment, it executes JavaScript code outside of a browser. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include polic...

7.5CVSS8.3AI score0.99999EPSS
Exploits20References4
OSV
OSV
added 2024/02/08 11:6 a.m.1 views

OESA-2024-1138 nodejs security update

Node.js is an open-source, cross-platform, JavaScript runtime environment, it executes JavaScript code outside of a browser. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include polic...

7.5CVSS8.9AI score0.03658EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/07/10 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2023-2317)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7.1AI score0.01625EPSS
Exploits0References2
OSV
OSV
added 2023/04/11 11:5 a.m.4 views

OESA-2023-1207 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains...

7.5CVSS8.9AI score0.03658EPSS
Exploits0References4
Rows per page
Query Builder