Security Bulletin: A vulnerability exists in the IBM® SDK, Java™ Technology Edition affect IBM Tivoli Network Configuration Manager.

Summary A vulnerability exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Configuration Manager IP Edition v6.4.2rBuffer overflow in GC when using the -Xgc:concurrentScavenge option on IBM Z. Vulnerability Details Refer to the security bulletins listed in...

CVE-2024-30125

HCL BigFix Compliance server can respond with an HTTP status of 500, indicating a server-side error that may cause the server process to die...

CVE-2024-30125

HCL BigFix Compliance server can respond with an HTTP status of 500, indicating a server-side error that may cause the server process to die...

Cross site scripting

Cross-site scripting XSS vulnerability in the console in Symantec SecurityExpressions Audit and Compliance Server 4.1.1, 4.1, and earlier allows remote authenticated users to inject arbitrary web script or HTML via "external client input" that triggers crafted error messages...

CVE-2009-3030

CVE-2009-3030 relates to Symantec SecurityExpressions Audit and Compliance Server (versions 4.1 and 4.1.1 and earlier) and covers multiple XSS/HTML-injection issues. The documented vulnerabilities arise from insufficient input validation and failing to properly encode error messages, allowing rem...

CVE-2009-3029

CVE-2009-3029 (and related CVE-2009-3030) affects Symantec SecurityExpressions Audit and Compliance Server 4.1.1, 4.1, and earlier. The vulnerability is a cross-site scripting issue in the console, where external client input is not properly sanitized and some error messages are not encoded, enab...

Symantec SecurityExpressions Audit and Compliance Server Multiple XSS

Binary data 5206.prm...