Lucene search
K

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/07/20 3:58 p.m.114 views

Security Bulletin: IBM Tivoli Network Manager is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2019-1757)

Summary Apache log4j V1 is used by IBM Tivoli Network Manager as part of its logging infrastructure. This fix removed Apache log4j V1CVE-2019-1757 Vulnerability Details CVEID:CVE-2019-17571 DESCRIPTION: Apache Log4j could allow a remote attacker to execute arbitrary code on the system, caused by...

9.8CVSS8.2AI score0.6906EPSS
Exploits3Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/04/05 12:0 a.m.38 views

Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability

According to its self-reported version, Cisco IOS XE Software is affected by following vulnerability - A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an...

5.9CVSS6.1AI score0.01054EPSS
Exploits0References3
OSV
OSV
added 2019/03/28 1:29 a.m.3 views

CVE-2019-1757

A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected...

5.9CVSS6.3AI score0.01054EPSS
Exploits0References2
CVE
CVE
added 2019/03/28 12:20 a.m.90 views

CVE-2019-1757

CVE-2019-1757 concerns Cisco IOS/IOS XE Smart Call Home certificate validation. The issue arises from insufficient certificate validation, enabling an unauthenticated, remote attacker to read sensitive data via a crafted certificate and potentially perform MITM to decrypt user connections. Connec...

5.9CVSS5.9AI score0.01054EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder