CVE-2025-33150 IBM Cognos Analytics Certified Containers information disclosure

IBM Cognos Analytics Certified Containers 12.1.0 could disclose package parameter information due to the presence of hidden pages...

CVE-2025-33150

CVE-2025-33150 affects IBM Cognos Analytics Certified Containers 12.1.0. The issue is information disclosure due to hidden pages that could reveal package parameter information. Public sources confirm the affected product/version and provide a remediation path: upgrade to 12.1.1. No exploit detai...

PT-2025-46187

Name of the Vulnerable Software and Affected Versions IBM Cognos Analytics Certified Containers version 12.1.0 Description IBM Cognos Analytics Certified Containers version 12.1.0 may reveal package parameter information because of hidden pages. Recommendations At the moment, there is no...

IBM Cognos Analytics Certified Containers 安全漏洞

IBM Cognos Analytics Certified Containers is a suite of business intelligence software from International Business Machines IBM. A security vulnerability exists in IBM Cognos Analytics Certified Containers version 12.1.0 that stems from the presence of a hidden page that could lead to the...

EUVD-2021-15221

Malware in sbrugna...

EUVD-2021-15222

Malware in sbrugna...

EUVD-2003-0138

Malware in sbrugna...

EUVD-2022-46886

Malicious code in bioql PyPI...

EUVD-2022-27550

Malicious code in bioql PyPI...

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationRuntime and IntegrationServer operands that use MQ clients are vulnerable to password disclosure [CVE-2025-36100]

Summary The IBM MQ client code is available in the IBM App Connect Enterprise Certified Container image used by an IntegrationServer or IntegrationRuntime component. The client is vulnerable to a password disclosure vulnerability when MQ trace is enabled. This bulletin provides patch information ...

Security Bulletin: IBM App Connect Enterprise Certified Container is vulnerable to incorrect binary execution [CVE-2025-47906]

Summary IBM App Connect Enterprise Certified Container operator and operands contain Golang binaries that are vulnerable to incorrect binary exection. This bulletin provides patch information to address the reported vulnerability in Golang module os/exec. CVE-2025-47906 Vulnerability Details...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from a failure to maintain cache coherency when loading PIL-certified VMs, which could lead to memory corruption...

IBM App Connect Enterprise Certified Container Log Information Disclosure Vulnerability

IBM App Connect Enterprise Certified Container is an image based on the IBM App Connect Enterprise software product from International Business Machines IBM. The package is provided as an executable file that can be deployed and run in a containerized environment. The IBM App Connect Enterprise...

Developer verification: a promised lift for Android security

To reduce the number of harmful apps targeting Android users, Google has announced that certified Android devices will require all apps to be registered by verified developers in order to be installed. But this new measure is not just about malware that's found on the Google Play Store, it’s main...

Google to Verify All Android Developers in 4 Countries to Block Malicious Apps

Google has announced plans to begin verifying the identity of all developers who distribute apps on Android, even for those who distribute their software outside the Play Store. "Android will require all apps to be registered by verified developers in order to be installed by users on certified...

Linux Distros Unpatched Vulnerability : CVE-2017-16672

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Asterisk Open Source 13 before 13.18.1, 14 before 14.7.1, and 15 before 15.1.1 and Certified Asterisk 13.13 before 13.13-cert7. A...

Linux Distros Unpatched Vulnerability : CVE-2019-13161

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Asterisk Open Source through 13.27.0, 14.x and 15.x through 15.7.2, and 16.x through 16.4.0, and Certified Asterisk through...

Linux Distros Unpatched Vulnerability : CVE-2025-47780

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cer...

Linux Distros Unpatched Vulnerability : CVE-2021-46837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - respjsipt38 in Sangoma Asterisk 16.x before 16.16.2, 17.x before 17.9.3, and 18.x before 18.2.2, and Certified Asterisk before 16.8-cert7, allows an attacker to...

Linux Distros Unpatched Vulnerability : CVE-2018-12227

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Asterisk Open Source 13.x before 13.21.1, 14.x before 14.7.7, and 15.x before 15.4.1 and Certified Asterisk 13.18-cert before...