Lucene search
K

92 matches found

NVD
NVD
added 2020/04/24 4:15 p.m.16 views

CVE-2019-4750

IBM Cloud App Management 2019.3.0 and 2019.4.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 173310...

8.8CVSS5.7AI score0.00518EPSS
Exploits0References2
NVD
NVD
added 2020/04/24 4:15 p.m.20 views

CVE-2019-4751

IBM Cloud App Management 2019.3.0 and 2019.4.0 reveals a stack trace on certain API requests which can allow an attacker further information about the implementation of the offering. IBM X-Force ID: 173311...

5.3CVSS5AI score0.01269EPSS
Exploits0References2
OSV
OSV
added 2020/04/24 4:15 p.m.3 views

CVE-2019-4750

IBM Cloud App Management 2019.3.0 and 2019.4.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 173310...

8.8CVSS6AI score0.00518EPSS
Exploits0References2
Prion
Prion
added 2020/04/24 4:15 p.m.16 views

Information disclosure

IBM Cloud App Management 2019.3.0 and 2019.4.0 reveals a stack trace on certain API requests which can allow an attacker further information about the implementation of the offering. IBM X-Force ID: 173311...

5CVSS5AI score0.01269EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/04/24 3:50 p.m.14 views

CVE-2019-4750

IBM Cloud App Management 2019.3.0 and 2019.4.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 173310...

4.3CVSS8.4AI score0.00518EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/23 1:50 p.m.53 views

Security Bulletin: A vulnerability in IBM Java SDK affects IBM Cloud App Management (CVE-2020-2593)

Summary An unspecified vulnerability in Java SE related to the Java SE Networking component could allow an unauthenticated attacker to cause low confidentiality impact, low integrity impact, and no availability impact. This vulnerability has been addressed by IBM Cloud App Management in a later...

5.8CVSS2.2AI score0.02984EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/23 1:48 p.m.42 views

Security Bulletin: Multiple vulnerabilities in Mozilla Firefox affect IBM Cloud App Management

Summary There are multiple vulnerabilities in Mozilla Firefox used by IBM® Cloud App Management. IBM Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2020-6796 DESCRIPTION: Mozilla Firefox could allow a remote attacker to execute arbitrar...

8.8CVSS2.2AI score0.02274EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/23 1:39 p.m.27 views

Security Bulletin: Multiple vulnerabilities in IBMJava SDK affect IBM Cloud App Management

Summary There are vulnerabilities in IBM Java SDK used by IBM® Cloud App Management. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2019-2989 DESCRIPTION: An unspecified vulnerability in Java SE could allow an unauthenticated...

6.8CVSS2AI score0.03533EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/23 1:35 p.m.11 views

Security Bulletin: IBM Cloud App Management is vulnerable to cross-site request forgery (CVE-2019-4750)

Summary IBM Cloud App Management is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. This vulnerability has been addressed by IBM Cloud App Management in a later version...

8.8CVSS1.2AI score0.00518EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/04/16 1:21 p.m.17 views

Security Bulletin: A vulnerability in IBM WebSphere Application Server and Liberty affects IBM Cloud App Management (CVE-2019-4441)

Summary IBM WebSphere Application Server 7.0, 8.0, 8.5, 9.0, and Liberty could allow a remote attacker to obtain sensitive information when a stack trace is returned in the browser. This vulnerability has been addressed by IBM Cloud App Management in a later version. Vulnerability Details CVEID:...

5.3CVSS1.5AI score0.01596EPSS
Exploits0Affected Software1
Trend Micro Simply Security
Trend Micro Simply Security
added 2020/03/10 5:27 p.m.36 views

Trend Micro Cloud App Security Blocked 12.7 Million High-Risk Email Threats in 2019 – in addition to those detected by cloud email services’ built-in security

On March 3, 2020, the cyber division of Federal Bureau of Investigation FBI issued a private industry notification calling out Business Email Compromise BEC scams through exploitation of cloud-based email services. Microsoft Office 365 and Google G Suite, the two largest cloud-based email service...

7.1AI score
Exploits0
CNVD
CNVD
added 2020/03/04 12:0 a.m.1 views

DuoDuo cloud mobile app obs credentials have information leakage vulnerability

DuoDuo Cloud Mobile is a support cloud cell phone multi-opening APP developed by Fujian DuoDuo Cloud Technology Co. DuoDuoCloud Mobile APP obs credentials have information leakage vulnerability, attackers can use the vulnerability to cause system information leakage...

6.7AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2020/02/20 5:0 p.m.31 views

New Microsoft Security innovations and partnerships

Today on the Official Microsoft Blog, Ann Johnson, Corporate Vice President of the Cybersecurity Solutions Group, shared how Microsoft is helping turn the tide in cybersecurity by putting artificial intelligence AI in the hands of defenders. She announced the general availability of Microsoft...

0.1AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/11/04 5:0 p.m.44 views

Further enhancing security from Microsoft, not just for Microsoft

Legacy infrastructure. Bolted-on security solutions. Application sprawl. Multi-cloud environments. Company data stored across devices and apps. IT and security resource constraints. Uncertainty of where and when the next attack or leak will come, including from the inside. These are just a few of...

0.1AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/24 11:45 a.m.48 views

Security Bulletin: Multiple vulnerabilities in Node.js affect IBM Cloud App Management

Summary There are vulnerabilities in Node.js used by IBM® Cloud App Management. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2019-9517 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by an Internal Dat...

7.8CVSS0.9AI score0.87806EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/24 11:44 a.m.43 views

Security Bulletin: Multiple vulnerabilities in Node.js affect IBM Cloud App Management

Summary There are vulnerabilities in Node.js used by IBM® Cloud App Management. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2019-9513 DESCRIPTION: Multiple vendors are vulnerable to a denial of service, caused by a Resource Loop...

7.8CVSS0.9AI score0.87806EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/10/23 4:5 p.m.32 views

Security Bulletin: Multiple vulnerabilities in MongoDB server affect IBM Cloud App Management

Summary There are vulnerabilities in MongoDB used by IBM® Cloud App Management. IBM® Cloud App Management has addressed the applicable CVEs in a later version. Vulnerability Details CVEID: CVE-2019-2389 DESCRIPTION: MongoDB Server is vulnerable to a denial of service, caused by a flaw in the SysV...

8.2CVSS1.1AI score0.01011EPSS
Exploits0Affected Software1
Microsoft Secure
Microsoft Secure
added 2019/09/25 4:0 p.m.86 views

Top 5 use cases to help you make the most of your Cloud Access Security Broker

The number of apps and the flexibility for users to access them from anywhere continues to increase. This presents a challenge for IT departments in ensuring secure access and protecting the flow of critical data with a consistent set of controls. Cloud Access Security Brokers CASBs are a new...

6.4AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/09/23 4:0 p.m.50 views

Microsoft is awarded Zscaler’s Technology Partner of the Year for 2019

Last week at Zscaler’s user conference, Zenith Live, Microsoft received Zscaler’s Technology Partner of the Year Award in the Impact category. The award was given to Microsoft for the depth and breadth of integrations we’ve collaborated with Zscaler on and the positive feedback received from...

0.5AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/09/06 12:28 p.m.42 views

Security Bulletin: A vulnerability in Node.js affects IBM Cloud App Management V2018

Summary There is a vulnerability in Node.js used by IBM® Cloud App Management V2018. Node.js is vulnerable to a denial of service. By establishing an HTTP or HTTPS connection in keep-alive mode and sending headers very slowly to force the connection and associated resources to stay alive for a lo...

7.5CVSS1.2AI score0.16184EPSS
Exploits0Affected Software1
Rows per page
Query Builder