Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/11/21 9:4 a.m.11 views

Security Bulletin: IBM Tivoli Application Dependency Discovery Manager is vulnerable to denial-of-service due to use of Apache Commons File Upload within IBM WebSphere Application Server Liberty

Summary This security bulletin addresses the vulnerabilitiy in IBM Tivoli Application Dependency Discovery Manager due to Apache Commons File Upload used in IBM WebSphere Application Server Liberty that is vulnerable to a denial of service CVE-2025-48976 Vulnerability Details CVEID:CVE-2025-48976...

7.5CVSS6.4AI score0.64718EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.12 views

RHEL 10 : tomcat (RHSA-2025:14179)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14179 advisory. Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat DoS...

7.5CVSS7.7AI score0.64718EPSS
Exploits1References14
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 12:17 p.m.33 views

Security Bulletin: Content Manager Services for Lotus Quickr (CVE-2016-3092)

Summary IBM Lotus Quickr Connectors bundled in IBM Content Navigator's Collaboration Services is affected by an Apache Commons File Upload vulnerability. IBM Lotus Quickr has resolved this vulnerability Vulnerability Details CVEID: CVE-2016-3092 DESCRIPTION:Apache Tomcat is vulnerable to a denial...

7.8CVSS1.4AI score0.35927EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 4:58 a.m.19 views

Security Bulletin: Security vulnerability in Apache Commons File Upload affects IBM Rational Quality Manager (CVE-2014-0050)

Summary IBM Rational Quality Manage ships with the Apache Commons File Upload library which contains a security vulnerability that could potentially be exploited to cause a denial of service attack. Vulnerability Details | Subscribe to My Notifications to be notified of important product support...

7.5CVSS0.3AI score0.83175EPSS
Exploits8Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/11/03 12:0 a.m.967 views

Oracle WebLogic Server Java Object Deserialization RCE (October 2016 CPU)

The remote Oracle WebLogic server is affected by a remote code execution vulnerability in the WLS Security component due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons File Upload library. An unauthenticated, remote attacker can exploit this, via a crafted a...

9.8CVSS8.5AI score0.05076EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2016/01/22 12:0 a.m.25 views

Oracle WebLogic Portal Apache Commons File Upload (January 2016 CPU)

Binary data oracleweblogicportalcpujan2016.nbin...

7.5CVSS7.3AI score0.12768EPSS
Exploits0References2
Apache Tomcat
Apache Tomcat
added 2013/05/09 12:0 a.m.40 views

Fixed in Apache Tomcat 7.0.40

Moderate: Information disclosure CVE-2013-2071 Bug 54178 described a scenario where elements of a previous request may be exposed to a current request. This was very difficult to exploit deliberately but fairly likely to happen unexpectedly if an application used AsyncListeners that threw...

6.8CVSS8.8AI score0.1399EPSS
Exploits2Affected Software1
Rows per page
Query Builder