86 matches found
EUVD-2019-13740
Malware in sbrugna...
EUVD-2019-14224
Malware in sbrugna...
Security Bulletin: A security vulnerability in Node.js Lodash module affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js Lodash module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-28500 DESCRIPTION: Node.js lodash module is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS in the toNumber, trim and...
Security Bulletin: A security vulnerability in Node.js pug/pug-code-gen module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js pug/pug-code-gen module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-21353 DESCRIPTION: Node.js pug and pug-code-gen could allow a remote attacker to execute arbitrary code on the system, caused by improper input validation...
Security Bulletin: A security vulnerability in Node.js acorn affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js acorn affects IBM Cloud Automation Manager. Vulnerability Details Third Party Entry: 177309 DESCRIPTION: Node.js acorn module denial of service CVSS Base score: 5.3 CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/177309 fo...
Security Bulletin: A security vulnerability in Node.js codemirror module affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js codemirror module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-7760 DESCRIPTION: Node.js codemirror module is vulnerable to a denial of service, caused by a regular expression denial of service ReDoS flaw. By using...
Security Bulletin: A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-15168 DESCRIPTION: Node.js node-fetch module is vulnerable to a denial of service, caused by the failure to honor the size option after following a redirect. By...
Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Automation Manager.
Summary A security vulnerability in Node.js affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-8277 DESCRIPTION: Node.js is vulnerable to a denial of service. By getting the application to resolve a DNS record with a larger number of responses, an attacker could exploit th...
Security Bulletin: A Security Vulnerability affects IBM Cloud Automation Manager - Node.js (CVE-2019-10747)
Summary A Security Vulnerability affects IBM Cloud Automation Manager - Node.js Vulnerability Details CVEID:CVE-2019-10747 DESCRIPTION: Node.js set-value module is vulnerable to a denial of service, caused by a prototype pollution flaw. By sending a specially-crafted request using a constructor...
Security Bulletin: IBM Cloud Automation Manager is affected by an issue with Docker before 19.03.11.
Summary IBM Cloud Automation Manager Advanced Content Runtime is affected by an issue in docker engine before 19.03.11 as described in CVE-2020-13401. If you have IBM Cloud Automation Manager Advanced Content Runtime with docker engine 19.03.10 or lower installed, then upgrade it to 19.03.11 or...
Security Bulletin: A security vulnerability in Node.js xmldom and msgpack5 module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js xmldom and msgpack5 module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-21366 DESCRIPTION: Node.js xmldom module could allow a remote attacker to bypass security restrictions, caused by improper preserve of system...
Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager.
Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2020-16845 DESCRIPTION: Go Language is vulnerable to a denial of service, caused by an infinite read loop in ReadUvarint and ReadVarint in encoding/binary. By sending a specially-crafted...
Security Bulletin: A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js node-fetch module affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2022-0235 DESCRIPTION: Node.js node-fetch could allow a remote authenticated attacker to obtain sensitive information, caused by a flaw when fetching a remote url wi...
Security Bulletin: A security vulnerability in Node.js affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-23840 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by an integer overflow in CipherUpdate. By sending an overly long argument, an attacker could exploit this...
Security Bulletin: A security vulnerability in Node.js nconf affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js nconf affects IBM Cloud Automation Manager Vulnerability Details CVEID:CVE-2022-21803 DESCRIPTION: Node.js nconf module could allow a remote attacker to execute arbitrary code on the system, caused by a prototype pollution flaw when using the memory...
Security Bulletin: A security vulnerability in Node.js node-forge affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js node-forge affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2022-24771 DESCRIPTION: Node.js node-forge module could allow a remote attacker to bypass security restrictions, caused by improper signature verification when checking the...
Security Bulletin: A security vulnerability in Node.js node-forge affects IBM Cloud Automation Manager
Summary A security vulnerability in Node.js node-forge affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2022-24772 DESCRIPTION: Node.js node-forge module could allow a remote attacker to bypass security restrictions, caused by improper signature verification when checking for...
Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager
Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2022-28327 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by improper input validaiton by the generic P-256 feature in crypto/elliptic. By sending a specially-crafted...
Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager
Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2022-24921 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by improper input validation. By using a specially-crafted deeply nested expression, a remote attacker could...
Security Bulletin: A security vulnerability in GO affects IBM Cloud Automation Manager
Summary A security vulnerability in GO affects IBM Cloud Automation Manager. Vulnerability Details CVEID:CVE-2021-43565 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by an input validation flaw in golang.org/x/crypto's readCipherPacket function. By sending an empty plaintext...