Lucene search
K

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 1:54 a.m.72 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics

Summary IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin. Vulnerability Details CVEID:CVE-2017-12973 DESCRIPTION: Connect2id Nimbus JOSE+JWT could provide...

9.3CVSS10AI score0.87806EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.24 views

Mageia: Security Advisory (MGASA-2019-0001)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.05253EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/07 4:58 p.m.44 views

Security Bulletin: Multiple vulnerabilities in Open Source used in IBM Cloud Pak System

Summary Multiple vulnerabilities identified in Open Source used in IBM Cloud Pak System. IBM Cloud Pak System addressed vulnerabilities. Vulnerability Details CVEID: CVE-2018-11771 DESCRIPTION: Apache Commons Compress is vulnerable to a denial of service, caused by the failure to return the corre...

9.8CVSS1.4AI score0.96121EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/05/03 3:45 p.m.25 views

Security Bulletin: A vulnerability in Apache Commons Compress may affect IBM Cloud App Management V2018

Summary There is a vulnerability in Apache Commons Compress used by IBM® Cloud App Management V2018. IBM® Cloud App Management has addressed the applicable CVE in a later version. Vulnerability Details CVEID: CVE-2018-11771 DESCRIPTION: Apache Commons Compress is vulnerable to a denial of service...

5.5CVSS0.7AI score0.05253EPSS
Exploits0Affected Software1
Mageia
Mageia
added 2019/01/05 6:30 p.m.38 views

Updated pache-commons-compress packages fix security vulnerabilities

A flaw was found in Apache Commons Compress versions 1.11 to 1.15. A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount ...

5.5CVSS4.6AI score0.05253EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2018/10/21 12:0 a.m.26 views

Fedora Update for apache-commons-compress FEDORA-2018-d29be920dc

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.05253EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/08/16 3:29 p.m.29 views

CVE-2018-11771

When reading a specially crafted ZIP archive, the read method of Apache Commons Compress 1.7 to 1.17's ZipArchiveInputStream can fail to return the correct EOF indication after the end of the stream has been reached. When combined with a java.io.InputStreamReader this can lead to an infinite...

5.5CVSS6.6AI score0.05253EPSS
Exploits0References4
CVE
CVE
added 2018/08/16 3:0 p.m.149 views

CVE-2018-11771

CVE-2018-11771 affects the Apache Commons Compress ZipArchiveInputStream (versions 1.7 through 1.17). The issue is that reading a specially crafted ZIP archive may fail to return a correct EOF indication after the stream ends, which when combined with a java.io.InputStreamReader can lead to an in...

5.5CVSS5.3AI score0.05253EPSS
Exploits0References17Affected Software1
Rows per page
Query Builder