101 matches found
MachSol MachPanel 安全漏洞
MachSol MachPanel is a cloud automation control panel and billing platform from US-based MachSol. A security vulnerability exists in MachSol MachPanel version 8.0.32, which stems from a flaw in the file upload functionality that could lead to the acquisition of a webshell...
EUVD-2019-14224
Malware in sbrugna...
EUVD-2019-13739
Malware in sbrugna...
EUVD-2019-13740
Malware in sbrugna...
The vulnerability in the web interface for managing analytics and automation of cloud network data centers of Cisco Nexus Dashboard allows a attacker to perform a CSRF attack.
The vulnerability in the web interface for managing analytics and automation of cloud network data centers of Cisco Nexus Dashboard is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to execute a CSRF attack remotely...
Security Bulletin: A security vulnerability in Node.js acorn affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js acorn affects IBM Cloud Automation Manager. Vulnerability Details Third Party Entry: 177309 DESCRIPTION: Node.js acorn module denial of service CVSS Base score: 5.3 CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/177309 fo...
Security Bulletin: IBM Cloud Automation Manager is affected by an issue with Docker before 19.03.11.
Summary IBM Cloud Automation Manager Advanced Content Runtime is affected by an issue in docker engine before 19.03.11 as described in CVE-2020-13401. If you have IBM Cloud Automation Manager Advanced Content Runtime with docker engine 19.03.10 or lower installed, then upgrade it to 19.03.11 or...
Security Bulletin: A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2022-0235 DESCRIPTION: Node.js node-fetch could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when fetching a remote url wi...
Security Bulletin: A security vulnerability in Node.js xmldom and msgpack5 module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js xmldom and msgpack5 module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-21366 DESCRIPTION: Node.js xmldom module could allow a remote attacker to bypass security restrictions, caused by improper preserve of system...
Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-23840 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by an integer overflow in CipherUpdate. By sending an overly long argument, an attacker could exploit this...
Security Bulletin: A security vulnerability in Node.js Lodash module affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js Lodash module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-28500 DESCRIPTION: Node.js lodash module is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS in the toNumber, trim and...
Security Bulletin: A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-15168 DESCRIPTION: Node.js node-fetch module is vulnerable to a denial of service, caused by the failure to honor the size option after following a redirect. By...
Security Bulletin: A security vulnerability in Node.js codemirror module affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js codemirror module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-7760 DESCRIPTION: Node.js codemirror module is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw. By using...
Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-8277 DESCRIPTION: Node.js is vulnerable to a denial of service. By getting the application to resolve a DNS record with a larger number of responses, an attacker could exploit th...
Security Bulletin: A security vulnerability in Node.js pug/pug-code-gen module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js pug/pug-code-gen module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-21353 DESCRIPTION: Node.js pug and pug-code-gen could allow a remote attacker to execute arbitrary code on the system, caused by improper input validation...
Security Bulletin: A Security Vulnerability affects IBM Cloud Automation Manager - Node.js (CVE-2019-10747)
Summary A Security Vulnerability affects IBM Cloud Automation Manager - Node.js Vulnerability Details CVEID:CVE-2019-10747 DESCRIPTION: Node.js set-value module is vulnerable to a denial of service, caused by a prototype pollution flaw. By sending a specially-crafted request using a constructor...
Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager.
Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-16845 DESCRIPTION: Go Language is vulnerable to a denial of service, caused by an infinite read loop in ReadUvarint and ReadVarint in encoding/binary. By sending a specially-crafted...
Security Benefits of Cloud Automation
Learn more about how cloud automation can simplify security controls, policies, and scans...
Security Benefits of Cloud Automation
Learn more about how cloud automation can simplify security controls, policies, and scans...
Security Bulletin: A security vulnerability in Node.js nconf affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js nconf affects IBM Cloud Automation Manager Vulnerability Details CVEID:CVE-2022-21803 DESCRIPTION: Node.js nconf module could allow a remote attacker to execute arbitrary code on the system, caused by a prototype pollution flaw when using the memory...