Lucene search
+L

7 matches found

ibm
ibm
added 2020/07/07 4:58 p.m.44 views

Security Bulletin: Multiple vulnerabilities in Open Source used in IBM Cloud Pak System

Summary Multiple vulnerabilities identified in Open Source used in IBM Cloud Pak System. IBM Cloud Pak System addressed vulnerabilities. Vulnerability Details CVEID: CVE-2018-11771 DESCRIPTION: Apache Commons Compress is vulnerable to a denial of service, caused by the failure to return the corre...

9.8CVSS1.4AI score0.96121EPSS
Exploits9Affected Software1
openvas
openvas
added 2019/07/14 12:0 a.m.35 views

Debian: Security Advisory (DLA-1853-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.6CVSS7.3AI score0.1005EPSS
Exploits6References3
debian
debian
added 2019/07/13 9:20 p.m.247 views

[SECURITY] [DLA 1853-1] libspring-java security update

Package : libspring-java Version : 3.0.6.RELEASE-17+deb8u1 CVE ID : CVE-2014-3578 CVE-2014-3625 CVE-2015-3192 CVE-2015-5211 CVE-2016-9878 Debian Bug : 760733 769698 796137 849167 Vulnerabilities have been identified in libspring-java, a modular Java/J2EE application framework. CVE-2014-3578 A...

9.6CVSS7AI score0.1005EPSS
Exploits6
ibm
ibm
added 2018/06/17 3:35 p.m.41 views

Security Bulletin: Pivotal Spring Framework vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM)

Summary Multiple vulnerabilities have been identified in the OpenSource/Pivotal Spring Framework version that is embeddded in IBM Tivoli Application Dependency Discovery Manager TADDM thus requiring an upgrade to Spring Framework version 3.2.13. Vulnerability Details CVEID: CVE-2014-3578...

6.8CVSS0.7AI score0.91354EPSS
Exploits7Affected Software1
ibm
ibm
added 2018/06/16 9:50 p.m.49 views

Security Bulletin: Pivotal Spring Framework as used in IBM QRadar SIEM is vulnerable to various CVE's

Summary OpenSource Pivotal Spring Framework as used in IBM QRadar is susceptible to several vulnerabilities. Vulnerability Details CVEID: CVE-2013-7315 DESCRIPTION: Pivotal Spring Framework could allow a remote attacker to obtain sensitive information, caused by an XML External Entity Injection X...

6.8CVSS1.1AI score0.91354EPSS
Exploits7Affected Software1
osv
osv
added 2015/02/19 8:59 p.m.7 views

CVE-2014-3578

Directory traversal vulnerability in Pivotal Spring Framework 3.x before 3.2.9 and 4.0 before 4.0.5 allows remote attackers to read arbitrary files via a crafted URL...

5CVSS8.9AI score0.06215EPSS
Exploits0References10
cve
cve
added 2015/02/19 8:0 p.m.105 views

CVE-2014-3578

CVE-2014-3578 affects Pivotal Spring Framework 3.x up to 3.2.8 and 4.0 up to 4.0.4. The flaw is a directory traversal vulnerability allowing remote attackers to read arbitrary files via a crafted URL, caused by improper handling of resource access. Exploitation could enable reading sensitive serv...

5CVSS8.8AI score0.06215EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder