CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-31299

Malicious code in bioql PyPI...

5.5CVSS4.8AI score0.00035EPSS

Exploits0References2

IBM Security Bulletins•added 2025/08/26 5:1 p.m.•10 views

Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to CVE-2025-24358

Summary github.com/gorilla/csrf-v1.7.1 is used by the Scheduling Service. Vulnerability Details CVEID:CVE-2025-24358 DESCRIPTION: gorilla/csrf provides Cross Site Request Forgery CSRF prevention middleware for Go web applications & services. Prior to 1.7.2, gorilla/csrf does not validate the Orig...

6CVSS3.8AI score0.00063EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/06/03 1:56 p.m.•20 views

Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to the Sweet32 attack.

Summary The 3DES cipher was available in some TLS cipher suites. Vulnerability Details CVEID:CVE-2016-2183 DESCRIPTION: The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products, have a birthday bound of approximately four billion blocks, which...

7.5CVSS7.3AI score0.40993EPSS

Exploits7Affected Software1

IBM Security Bulletins•added 2025/06/03 1:54 p.m.•9 views

Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to CVE-2024-45338.

Summary golang.org/x/net-v0.24.0 is used by the CP4D Scheduling Service. CVE-2024-45338. Vulnerability Details CVEID:CVE-2024-45338 DESCRIPTION: An attacker can craft an input to the Parse functions that would be processed non-linearly with respect to its length, resulting in extremely slow...

5.3CVSS6.4AI score0.00041EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/04/02 3:26 p.m.•4 views

Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to CVE-2024-36129.

Summary OpenTelemetry Collector is used by the CP4D Scheduling Service for telemetry collection. CVE-2024-36129. Vulnerability Details CVEID:CVE-2024-36129 DESCRIPTION: OpenTelemetry OpenTelemetry Collector is vulnerable to a denial of service, caused by an unsafe decompression vulnerability. By...

8.2CVSS7AI score0.02397EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2025/04/02 3:17 p.m.•7 views

Security Bulletin: IBM CloudPak for Data Scheduling Service is vulernable to IBM X-Force ID: 350626.

Summary GRPC-Go is used by the CP4D Scheduling Service for inter-process communication. IBM X-Force ID: 350626. Vulnerability Details IBM X-Force ID: 350626 DESCRIPTION: gRPC-Go is vulnerable to a denial of service, caused by a flaw in handling multiplexed streams in the HTTP/2 protocol. By sendi...

6.8AI score

Exploits0Affected Software1

CNNVD•added 2024/02/29 12:0 a.m.•1 views

IBM Watson CloudPak for Data Data Stores 安全漏洞

IBM Watson CloudPak for Data Data Stores is a data and artificial intelligence platform from International Business Machines IBM. An information disclosure vulnerability exists in IBM Watson CloudPak for Data Data Stores version 4.6.0, which stems from allowing web pages to be stored locally and ...

5.5CVSS5.8AI score0.00035EPSS

Exploits0References3

IBM Security Bulletins•added 2023/03/22 10:42 p.m.•18 views

Security Bulletin: IBM Watson CloudPak for Data Data Stores is vulnerable to an attacker with specific knowledge about the system to manipulate data due to improper input validation(CVE-2023-28512)

Summary IBM Watson CloudPak for Data Data Stores could allow an attacker with specific knowledge about the system to manipulate data due to improper input validation. Vulnerability Details CVEID:CVE-2023-28512 DESCRIPTION: IBM Watson CP4D Data Stores could allow an attacker with specific knowledg...

5.9CVSS5.6AI score0.0007EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by