Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/01/07 12:30 p.m.12 views

Security Bulletin: Multiple security vulnerabilities are addressed with Cloud Pak foundational services 4.15.0 shipped with IBM Cloud Pak for Business Automation iFixes for December 2025.

Summary IBM Cloud Pak for Business Automation includes IBM Cloud Pak foundational services. IBM Cloud Pak for Business Automation December 2025 security fixes update this dependency beyond 4.15.0 to address security vulnerabilities. Vulnerability Details CVEID:CVE-2016-10540 DESCRIPTION: Minimatc...

9.1CVSS9.1AI score0.2241EPSS
Exploits12Affected Software2
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.35 views

Ubuntu 16.04 ESM : minimatch vulnerability (USN-4783-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by a vulnerability as referenced in the USN-4783-1 advisory. It was discovered that minimatch did not perform necessary bounds checking on regular expressions. An attacker could use this vulnerability to cause a denial of...

7.5CVSS7.5AI score0.01743EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/17 3:44 p.m.100 views

Security Bulletin: Multiple vulnerabilities found with third-party libraries used by IBM® MobileFirst Platform

Summary There are multiple vulnerabilities in open source libraries used by IBM MobileFirst Platform Foundation. They are addressed in this update. Vulnerability Details CVEID:CVE-2022-3517 DESCRIPTION: minimatch is vulnerable to a denial of service, caused by a regular expression denial of servi...

9.8CVSS9.6AI score0.19312EPSS
Exploits39Affected Software1
Prion
Prion
added 2018/06/17 8:29 p.m.21 views

Design/Logic Flaw

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-10540. Reason: This candidate is a reservation duplicate of CVE-2016-10540. Notes: All CVE users should reference CVE-2016-10540 instead of this candidate. All references and descriptions in this candidate have been removed t...

7.5AI score0.01743EPSS
Exploits1
OSV
OSV
added 2018/05/31 8:29 p.m.20 views

CVE-2016-10540

Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. The primary function, minimatchpath, pattern in Minimatch 3.0.1 and earlier is vulnerable to ReDoS in the pattern parameter...

7.5CVSS7.7AI score
Exploits0References1
CVE
CVE
added 2018/05/31 8:0 p.m.95 views

CVE-2016-10540

CVE-2016-10540 refers to Minimatch (node) where the function minimatch(path, pattern) in Minimatch 3.0.1 and earlier is vulnerable to ReDoS through the pattern parameter. The connected IBM security bulletin reiterates the same description and CVSS base score of 7.5, noting multiple related CVEs b...

7.5CVSS7.3AI score0.01743EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder