Lucene search
K

11 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2024/11/27 5:0 p.m.43 views

Security Bulletin: Financial Transaction Manager v4 is impacted by multiple vulnerabilities in IBM Java SE

Summary Multiple vulnerabilities were addressed in Financial Transaction Manager v4.0.6.0 iFix4 Vulnerability Details CVEID:CVE-2024-21147 DESCRIPTION: An unspecified vulnerability in Java SE related to the VM component could allow a remote attacker to cause high confidentiality, high integrity...

7.5CVSS6.3AI score0.01361EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/30 1:29 p.m.25 views

Security Bulletin: Multiple vulnerabilities in Java affect IBM Business Automation Workflow - July 2024 CPU

Summary IBM Business Automation Workflow containers package IBM® Java SDK 8 V21.0.3 or IBM® Semeru Runtime 17 V24.0.0. Information about security vulnerabilities in these Java runtumes have been published. IBM Business Automation Workflow includes IBM Java 8. Vulnerability Details...

7.4CVSS7.1AI score0.01257EPSS
Exploits0Affected Software2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/07/03 12:0 a.m.68 views

JVN#64316789: Multiple vulnerabilities in SoftEther VPN and PacketiX VPN

SoftEther VPN provided by University of Tsukuba SoftEther VPN Project and PacketiX VPN provided by SoftEther Corporation contain multiple vulnerabilities listed below in VPN Client function, and Dynamic DNS Client function included in the VPN server. Heap-based buffer overflow CWE-122 -...

9CVSS7.5AI score0.01543EPSS
Exploits6
Prion
Prion
added 2023/05/10 8:15 p.m.19 views

Design/Logic Flaw

A Channel Accessible by Non-Endpoint vulnerability in the Schweitzer Engineering Laboratories SEL Real-Time Automation Controller RTAC could allow a remote attacker to perform a man-in-the-middle MiTM that could result in denial of service. See the ACSELERATOR RTAC SEL-5033 Software instruction...

2.6CVSS5.4AI score0.005EPSS
Exploits0References1Affected Software10
Cvelist
Cvelist
added 2023/05/10 7:18 p.m.21 views

CVE-2023-2310 Channel Accessible by Non-Endpoint

A Channel Accessible by Non-Endpoint vulnerability in the Schweitzer Engineering Laboratories SEL Real-Time Automation Controller RTAC could allow a remote attacker to perform a man-in-the-middle MiTM that could result in denial of service. See the ACSELERATOR RTAC SEL-5033 Software instruction...

6.8CVSS6AI score0.005EPSS
Exploits0References1
CVE
CVE
added 2023/05/10 7:18 p.m.68 views

CVE-2023-2310

CVE-2023-2310 affects Schweitzer Engineering Laboratories SEL Real-Time Automation Controller (RTAC). Connected docs describe a Channel Accessible by Non-Endpoint vulnerability that could allow a remote attacker to perform a man-in-the-middle (MiTM) attack, potentially causing denial of service. ...

6.8CVSS5.5AI score0.005EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2022/04/12 12:0 a.m.48 views

Aethon TUG Home Base Server

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Aethon owned by ST Engineering Equipment: TUG Home Base Server Vulnerabilities: Missing Authorization, Channel Accessible by Non-endpoint, Cross-site Scripting 2. RISK EVALUATION Successful exploitation...

8.2CVSS8.3AI score0.0069EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.19 views

Rockwellautomation Micrologix Channel Accessible by Non-Endpoint

When an authenticated password change request takes place, this vulnerability could allow the attacker to intercept the message that includes the legitimate, new password hash and replace it with an illegitimate hash. The user would no longer be able to authenticate to the controller Micro800: Al...

5CVSS3AI score0.02188EPSS
Exploits0References2
ICS
ICS
added 2021/05/25 12:0 a.m.52 views

Rockwell Automation Micro800 and MicroLogix 1400

1. EXECUTIVE SUMMARY CVSS v3 6.1 ATTENTION: Exploitable remotely Vendor: Rockwell Automation Equipment: Micro800, MicroLogix 1400 Vulnerability: Channel Accessible by Non-endpoint 2. RISK EVALUATION Successful exploitation of this vulnerability may result in denial-of-service conditions, which...

7.5CVSS7.6AI score0.02188EPSS
Exploits0References5
NVD
NVD
added 2019/04/01 3:29 p.m.25 views

CVE-2018-13298

Channel accessible by non-endpoint vulnerability in privacy page in Synology Android Moments before 1.2.3-199 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors...

8.1CVSS6.2AI score0.00936EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/04/01 2:30 p.m.22 views

CVE-2018-13298

Channel accessible by non-endpoint vulnerability in privacy page in Synology Android Moments before 1.2.3-199 allows man-in-the-middle attackers to execute arbitrary code via unspecified vectors...

4.2CVSS8.1AI score0.00936EPSS
Exploits0References1
Rows per page
Query Builder