Lucene search
K

17 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/09/26 3:37 a.m.31 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (CVE-2015-0226)

Abstract IBM WebSphere Application Server v7.0 is shipped as a component of IBM Integrated Information Core. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Content Please consult the security bulletin Security...

7.5CVSS6.5AI score0.05501EPSS
Exploits0Affected Software1
vulnersOsv
vulnersOsv
added 2022/05/14 12:55 a.m.5 views

net.gplatform:sudoor-server-lib (>=1.0.4 <=1.0.8), no.difi.sdp:sikker-digital-post-java-klient (>=1.0 <=1.2.0.RC1) +60 more potentially affected by CVE-2015-0226 via org.apache.wss4j:wss4j-ws-security-dom (>=2.0.0 <=2.0.10)

org.apache.wss4j:wss4j-ws-security-dom MAVEN version =2.0.0, =1.0.4, =1.0, =0.9, =0.9, =1.1.9 - org.apache.camel:camel-example-reportincident-wssecurity =2.14.0 - org.apache.cxf.fediz.examples.wsclientWebapp.webservice:fedizservice =1.2.4 - org.apache.cxf.fediz.examples.wsclientWebapp:webapp =1.2...

7.5CVSS7.1AI score0.05501EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/09/04 12:0 a.m.52 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 6.4.0 update (Important) (RHSA-2015:0848)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0848 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was found that a...

7.5CVSS6.5AI score0.07543EPSS
Exploits0References62
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 1:5 p.m.30 views

Security Bulletin: Vulnerabilities in WSS4J affects IBM Cúram (CVE-2015-0226 & CVE-2015-0227 )

Summary IBM Cúram is shipped with a third party library called WSS4J, which is vulnerable to an attack on XML Encryption. WSS4J also fails to properly enforce the requireSignedEncryptedDataElements property which leaves it vulnerable to XML Signature wrapping attacks . Vulnerability Details CVEID...

7.5CVSS0.3AI score0.07543EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:3 a.m.29 views

Security Bulletin: Multiple Security Vulnerabilities fixed in IBM WebSphere Application Server 8.5.5.6

Summary Cross reference list for security vulnerabilites fixed in IBM WebSphere Application Server 8.5.5.6, IBM WebSphere Application Server Hypervisor 8.5.5.6 and IBM WebSphere Application Server Liberty Profile 8.5.5.6. Vulnerability Details CVEID: CVE-2015-0226 DESCRIPTION: Apache WSS4J could...

9.3CVSS0.6AI score0.16564EPSS
Exploits1Affected Software3
UbuntuCve
UbuntuCve
added 2017/10/30 2:29 p.m.28 views

CVE-2015-0226

Apache WSS4J before 1.6.17 and 2.0.x before 2.0.2 improperly leaks information about decryption failures when decrypting an encrypted key or message data, which makes it easier for remote attackers to recover the plaintext form of a symmetric key via a series of crafted messages. NOTE: this...

7.5CVSS7.2AI score0.05501EPSS
Exploits0References1
OSV
OSV
added 2017/10/30 2:29 p.m.8 views

CVE-2015-0226

Apache WSS4J before 1.6.17 and 2.0.x before 2.0.2 improperly leaks information about decryption failures when decrypting an encrypted key or message data, which makes it easier for remote attackers to recover the plaintext form of a symmetric key via a series of crafted messages. NOTE: this...

7.5CVSS5.8AI score0.05501EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2017/10/30 2:0 p.m.34 views

CVE-2015-0226

Apache WSS4J before 1.6.17 and 2.0.x before 2.0.2 improperly leaks information about decryption failures when decrypting an encrypted key or message data, which makes it easier for remote attackers to recover the plaintext form of a symmetric key via a series of crafted messages. NOTE: this...

7.5CVSS5.9AI score0.05501EPSS
Exploits0
CVE
CVE
added 2017/10/30 2:0 p.m.135 views

CVE-2015-0226

CVE-2015-0226 affects Apache WSS4J: versions pre-1.6.17 and pre-2.0.x before 2.0.2 leak information about decryption failures when decrypting an encrypted key or message data, enabling an attacker to recover plaintext for a symmetric key via crafted messages. Root cause traces to an incomplete fi...

7.5CVSS5.7AI score0.05501EPSS
Exploits0References11Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/10/26 12:0 a.m.41 views

IBM WebSphere Application Server 7.0 < 7.0.0.39 Multiple Vulnerabilities (FREAK)

Binary data 9700.prm...

10CVSS7.7AI score0.74006EPSS
Exploits1References15
RedHat Linux
RedHat Linux
added 2015/06/23 4:52 p.m.51 views

Important: Red Hat Security Advisory: Red Hat JBoss A-MQ 6.2.0 update

Red Hat JBoss A-MQ 6.2.0, which fixes multiple security issues, several bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...

7.5CVSS6.7AI score0.09149EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.38 views

RHEL 6 : Red Hat JBoss Enterprise Application Platform 6.4.0 update (Important) (RHSA-2015:0847)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0847 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was found that a...

7.5CVSS6.5AI score0.07543EPSS
Exploits0References62
Tenable Nessus
Tenable Nessus
added 2015/04/20 12:0 a.m.55 views

RHEL 5 : Red Hat JBoss Enterprise Application Platform 6.4.0 update (Important) (RHSA-2015:0846)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2015:0846 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. It was found that a...

7.5CVSS6.5AI score0.07543EPSS
Exploits0References62
RedHat Linux
RedHat Linux
added 2015/04/16 4:26 p.m.72 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.0 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.0, and fix multiple security issues, several bugs, and add various enhancements, are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact...

7.5CVSS6.6AI score0.07543EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added 2015/04/16 4:17 p.m.47 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.0 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.0, and fix multiple security issues, several bugs, and add various enhancements, are now available for Red Hat Enterprise Linux 5. Red Hat Product Security has rated this update as having Important security impact...

7.5CVSS6.6AI score0.07543EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added 2015/04/16 4:13 p.m.57 views

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.0 update

Updated packages that provide Red Hat JBoss Enterprise Application Platform 6.4.0, and fix multiple security issues, several bugs, and add various enhancements, are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact...

7.5CVSS6.6AI score0.07543EPSS
Exploits0References54
RedHat Linux
RedHat Linux
added 2015/04/01 2:48 p.m.68 views

Important: Red Hat Security Advisory: Red Hat JBoss Data Grid 6.4.1 update

Red Hat JBoss Data Grid 6.4.1, which fixes several security issues, multiple bugs, and adds various enhancements, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base...

7.5CVSS6.7AI score0.24738EPSS
Exploits0References8
Rows per page
Query Builder