Lucene search
+L

13 matches found

ibm
ibm
added 2022/08/30 4:50 p.m.40 views

Security Bulletin:IBM TRIRIGA Application Platform discloses CVE-2020-1954

Summary IBM TRIRIGA Application Platform discloses CVE-2020-1954 Vulnerability Details CVEID:CVE-2020-1954 DESCRIPTION: Apache CXF is vulnerable to a man-in-the-middle attack, caused by a flaw in JMX Integration. An attacker could exploit this vulnerability to launch a man-in-the-middle attack an...

5.3CVSS5.8AI score0.06147EPSS
Exploits0Affected Software1
vulnersosv
vulnersosv
added 2022/02/10 10:38 p.m.7 views

com.savoirtech.aetos:aetos (>=4.2.0.1 <=4.2.2), de.mhus.app.vault:vault-playground-assembly (>=7.2.0 <=7.3.0) +82 more potentially affected by CVE-2020-1954 via org.apache.cxf:cxf-rt-management (>=3.3.0 <=3.3.5)

org.apache.cxf:cxf-rt-management MAVEN version =3.3.0, =4.2.0.1, =7.2.0, =6.3.0, =1.2.0, =1.2.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.7, =1.0.7, =4.2.11.hyte-42116, =4.2.11.hyte-42116, =4.2.11.hyte-42116, =4.2.11.hyte-42119 and more Source cves: CVE-2020-1954 Source advisory:...

5.3CVSS6.7AI score0.06147EPSS
Exploits0
redhat
redhat
added 2020/11/04 7:24 p.m.82 views

Moderate: Red Hat Security Advisory: Red Hat Single Sign-On 7.4.3 security update

A security update is now available for Red Hat Single Sign-On 7.4 from the Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.1CVSS6.5AI score0.06147EPSS
Exploits0References9
ibm
ibm
added 2020/10/22 12:36 p.m.32 views

Security Bulletin: Apache CXF vulnerability identified in IBM Tivoli Application Dependency Discovery Manager (CVE-2020-1954)

Summary This security bulletin addresses the vulnerability in Open Source Apache CXF that affect IBM Tivoli Application Dependency Discovery Manager. Vulnerability Details CVEID: CVE-2020-1954 DESCRIPTION: Apache CXF is vulnerable to a man-in-the-middle attack, caused by a flaw in JMX Integration...

5.3CVSS1AI score0.06147EPSS
Exploits0Affected Software1
nessus
nessus
added 2020/10/14 12:0 a.m.60 views

RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.3.3 security update on RHEL 6 (Moderate) (RHSA-2020:4244)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4244 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

6.5CVSS6.8AI score0.06147EPSS
Exploits0References46
nessus
nessus
added 2020/10/14 12:0 a.m.57 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.3.3 security update on RHEL 8 (Moderate) (RHSA-2020:4245)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4245 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

6.5CVSS6.8AI score0.06147EPSS
Exploits0References46
redhat
redhat
added 2020/10/13 5:1 p.m.99 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.3 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.06147EPSS
Exploits0References40
redhat
redhat
added 2020/10/13 4:50 p.m.106 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.3 security update on RHEL 7

An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.06147EPSS
Exploits0References41
redhat
redhat
added 2020/10/13 4:50 p.m.106 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.3 security update on RHEL 8

An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.06147EPSS
Exploits0References40
redhat
redhat
added 2020/10/13 4:49 p.m.59 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.3 security update on RHEL 6

An update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.5CVSS6.6AI score0.06147EPSS
Exploits0References40
redhat
redhat
added 2020/08/31 3:40 p.m.112 views

Important: Red Hat Security Advisory: EAP Continuous Delivery Technical Preview Release 20 security update

This is a security update for JBoss EAP Continuous Delivery 20. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.2AI score0.17044EPSS
Exploits0References16
ibm
ibm
added 2020/07/30 9:47 a.m.36 views

Security Bulletin: A security vulnerability has been identified in Apache CXF, which is shipped with IBM Tivoli Network Manager (CVE-2020-1954).

Summary Apache CXF is shipped with IBM Tivoli Network Manager version 4.2; Information about a security vulnerability affecting IBM WebSphere Application Server is published in this bulletin. Vulnerability Details CVEID: CVE-2020-1954 DESCRIPTION: Apache CXF is vulnerable to a man-in-the-middle...

5.3CVSS0.8AI score0.06147EPSS
Exploits0Affected Software1
cve
cve
added 2020/04/01 8:7 p.m.156 views

CVE-2020-1954

CVE-2020-1954 affects Apache CXF JMX integration; a MITM is possible if the createMBServerConnectorFactory setting on the InstrumentationManagerImpl is not disabled, allowing an on-host attacker to rebind the JMX registry and proxy traffic to access exchanged data. The issue is documented across ...

5.3CVSS5.3AI score0.06147EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder