Lucene search
K

10 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2021/04/28 6:35 p.m.35 views

Security Bulletin: Information disclosure vulnerability in WebSphere Application Server Liberty affects multiple IBM Rational products based on IBM Jazz technology

Summary There is an information disclosure due to an XML external entity XXE vulnerability in WebSphere Application Server Liberty bundled with IBM Jazz Team Server based Applications affects multiple products: Collaborative Lifecycle Management CLM, Rational DOORS Next Generation RDNG, Rational...

5CVSS0.8AI score0.02752EPSS
Exploits0Affected Software7
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 4:51 a.m.30 views

Security Bulletin: Rational Performance Tester Open Source OpenSAML XML Information Disclosure (CVE-2013-6440)

Summary A potential security vulnerability exists in IBM Rational Performance Tester related to OpenSAML. OpenSAML could allow a remote authenticated attacker to obtain sensitive information, caused by an error when parsing XML entities. By persuading a victim to open a specially-crafted XML...

5CVSS0.2AI score0.02752EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.26 views

Security Bulletin: Information disclosure in Liberty for Java for IBM Cloud (CVE-2017-1681, CVE-2013-6440)

Summary There is a potential information disclosure vulnerability in WebSphere Application Server. There is an information disclosure due to an XML external entity XXE vulnerability when using the OpenSAML features in WebSphere Application Server Liberty. Vulnerability Details CVEID: CVE-2017-168...

5CVSS0.4AI score0.02752EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:8 a.m.41 views

Security Bulletin: Information disclosure in WebSphere Application Server Liberty (CVE-2013-6440)

Summary There is an information disclosure due to an XML external entity XXE vulnerability when using the OpenSAML features in WebSphere Application Server Liberty. Vulnerability Details CVEID: CVE-2013-6440 DESCRIPTION: OpenSAML could allow a remote authenticated attacker to obtain sensitive...

5CVSS5.9AI score0.02752EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2014/09/23 8:19 p.m.45 views

Important: Red Hat Security Advisory: Red Hat JBoss BPM Suite 6.0.3 update

Red Hat JBoss BPM Suite 6.0.3, which fixes multiple security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...

7.5CVSS7.3AI score0.13809EPSS
Exploits4References9
CVE
CVE
added 2014/02/14 3:0 p.m.108 views

CVE-2013-6440

CVE-2013-6440 affects Shibboleth OpenSAML-Java before 2.6.1 where the expandEntityReferences setting was left true, enabling XML external entity (XXE) attacks via crafted DOCTYPEs. Affected library: OpenSAML-Java in Shibboleth deployments. Impact per sources is exposure of sensitive information t...

5CVSS5.4AI score0.02752EPSS
Exploits0References8Affected Software2
Debian CVE
Debian CVE
added 2014/02/14 3:0 p.m.21 views

CVE-2013-6440

Removed by vendor...

5CVSS5.2AI score0.02752EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/02/14 12:0 a.m.28 views

RHEL 6 : JBoss EAP (RHSA-2014:0171)

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.2.1 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact...

5CVSS6.6AI score0.08863EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2014/02/14 12:0 a.m.35 views

RHEL 5 : JBoss EAP (RHSA-2014:0170)

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.2.1 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Moderate security impact...

5CVSS6.6AI score0.08863EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2014/02/13 6:33 p.m.54 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.2.1 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.2.1 and fix three security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Moderate security impact...

5CVSS6.8AI score0.08863EPSS
Exploits0References14
Rows per page
Query Builder