Lucene search
K

64 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/10 5:12 a.m.8 views

Security Bulletin: Multiple vulnerabilities in logback-core-1.3.14.jar affects IBM DevOps Code ClearCase [CVE-2024-12798, CVE-2024-12801, CVE-2025-11226,CVE-2026-1225]

Summary Multiple vulnerabilities in logback-core-1.3.14.jar affects IBM DevOps Code ClearCase CVE-2024-12798, CVE-2024-12801, CVE-2025-11226,CVE-2026-1225 Vulnerability Details CVEID:CVE-2026-1225 DESCRIPTION: ACE vulnerability in configuration file processing by QOS.CH logback-core up to and...

7CVSS6.1AI score0.00404EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:10 a.m.6 views

CVE-2019-11215

In Combodo iTop 2.2.0 through 2.6.0, if the configuration file is writable, then execution of arbitrary code can be accomplished by calling ajax.dataloader with a maliciously crafted payload. Many conditions can place the configuration file into a writable state: during installation; during...

8.1CVSS7.4AI score0.01167EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-18437

Malware in sbrugna...

5.5CVSS5.5AI score0.00299EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-0699

Malware in sbrugna...

4.6CVSS6.4AI score0.00326EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-5288

Malware in sbrugna...

2.1CVSS6.4AI score0.00195EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-0369

Malware in sbrugna...

4.6CVSS6.4AI score0.00376EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-17224

Malware in sbrugna...

9.8CVSS9.5AI score0.02236EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-1201

Malware in sbrugna...

7.5CVSS6.4AI score0.02052EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-12633

Malware in sbrugna...

3.6CVSS4.8AI score0.00223EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-33101

Malicious code in bioql PyPI...

5.3CVSS5.6AI score0.01504EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-51855

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00577EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-30684

Malicious code in bioql PyPI...

8.8CVSS8.7AI score0.00876EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-19392

Malicious code in bioql PyPI...

7.2CVSS6.5AI score0.00943EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.17 views

EUVD-2022-6417

Malicious code in bioql PyPI...

4.3CVSS4.8AI score0.00557EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/07/31 2:53 p.m.2 views

CVE-2013-10036 Beetel Connection Manager NetConfig.ini Stack-Based Buffer Overflow

A stack-based buffer overflow vulnerability exists in Beetel Connection Manager version PCWBTLINDV1.0.0B04 when parsing the UserName parameter in the NetConfig.ini configuration file. A crafted .ini file containing an overly long UserName value can overwrite the Structured Exception Handler SEH,...

8.4CVSS7.6AI score0.00433EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/07/11 3:42 p.m.9 views

CVE-2025-53675

Jenkins Warrior Framework Plugin 1.2 and earlier stores passwords unencrypted in job config.xml files on the Jenkins controller, where they can be viewed by users with Item/Extended Read permission or access to the Jenkins controller file system...

6.5CVSS7AI score0.00291EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/09 12:0 a.m.4 views

PT-2025-28924 · Jenkins · Jenkins Kryptowire Plugin

Name of the Vulnerable Software and Affected Versions: Jenkins Kryptowire Plugin versions 0.2 and earlier Description: The Jenkins Kryptowire Plugin stores the Kryptowire API key unencrypted in its global configuration file org.aerogear.kryptowire.GlobalConfigurationImpl.xml on the Jenkins...

6.8CVSS5.8AI score0.00259EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.6 views

PT-2025-28483 · Ivanti · Ivanti Connect Secure +1

Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions prior to 22.7R2.8 Ivanti Policy Secure versions prior to 22.7R1.5 Description: The issue allows a remote authenticated attacker with admin rights to write to a protected configuration file on disk through CLRF...

6.6CVSS6.5AI score0.00398EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/06/03 4:42 p.m.10 views

CVE-2025-30167

Jupyter Core is a package for the core common functionality of Jupyter projects. When using Jupyter Core prior to version 5.8.0 on Windows, the shared %PROGRAMDATA% directory is searched for configuration files SYSTEMCONFIGPATH and SYSTEMJUPYTERPATH, which may allow users to create configuration...

7.3CVSS7.3AI score0.00154EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:35 a.m.6 views

CVE-2023-41057

hyper-bump-it is a command line tool for updating the version in project files.hyper-bump-it reads a file glob pattern from the configuration file. That is combined with the project root directory to construct a full glob pattern that is used to find files that should be edited. These matched fil...

5.5CVSS6.8AI score0.00336EPSS
Exploits1
Rows per page
Query Builder