Lucene search
K

51 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-5258

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In affected versions of dojo NPM package, the deepCopy method is vulnerable to Prototype Pollution. Prototype Pollution refers to the ability to inject properti...

7.7CVSS6.7AI score0.0399EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/01/19 12:0 a.m.31 views

Oracle Enterprise Manager Ops Center UI and Other Patches (July 2021 CPU)

The 12.4.0.0 versions of Enterprise Manager Ops Center installed on the remote host are affected by a vulnerability as referenced in the July 2021 CPU advisory. - Vulnerability in the Enterprise Manager Ops Center product of Oracle Enterprise Manager Ops Center component: Signaling dojo. The...

7.7CVSS6.9AI score0.0399EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/27 10:23 a.m.28 views

Security Bulletin: Security vulnerabilities have been identified in IBM WebSphere Application Server used by IBM InfoSphere Master Data Management

Summary There is a vulnerability in the Dojo library used by WebSphere Application Server. This has been addressed. Vulnerability Details CVEID:CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to inject arbitrary code on the system, caused by a prototype pollution flaw. By...

7.7CVSS6.9AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/04/20 5:4 p.m.68 views

Security Bulletin: Vulnerabilities in WebSphere Liberty Profile affect IBM InfoSphere Global Name Management (CVE-2020-5258, CVE-2020-4590, CVE-2020-4421)

Summary There are multiple vulnerabilities in the WebSphere Liberty Profile used in IBM InfoSphere Global Name Management GNM. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM...

7.7CVSS1.9AI score0.0399EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/10/26 12:0 a.m.47 views

Oracle WebCenter Sites Multiple Vulnerabilities (Oct 2021 CPU)

Oracle WebCenter Sites component of Oracle Fusion Middleware is affected by multiple vulnerabilities. - Component: WebCenter Sites Terracotta Quartz Scheduler. The supported versions that are affected are 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker...

9.8CVSS6.9AI score0.77735EPSS
Exploits2References8
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/29 12:31 p.m.25 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server used by IBM Rational ClearQuest (CVE-2020-5258)

Summary IBM WebSphere Application Server WAS is used by the IBM Rational ClearQuest server and web components. Information about security vulnerability affecting WAS has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes...

7.7CVSS1.6AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/23 2:40 p.m.37 views

Security Bulletin: Vulnerabilities in WebSphere Liberty Profile affect IBM InfoSphere Identity Insight (CVE-2020-4421, CVE-2020-4590, CVE-2020-5258, CVE-2021-26296)

Summary There are multiple vulnerabilities in the WebSphere Liberty Profile used in IBM InfoSphere Identity Insight. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- IBM InfoSphere...

7.7CVSS1AI score0.0399EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/09/03 1:53 p.m.13 views

Security Bulletin: IBM Cloud Private is vulnerable to Dojo vulnerabilities (CVE-2020-5258)

Summary IBM Cloud Private is vulnerable to Dojo vulnerabilities Vulnerability Details CVEID: CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to inject arbitrary code on the system, caused by a prototype pollution flaw. By injecting other values, an attacker could exploit this...

7.7CVSS0.9AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/30 5:6 a.m.26 views

Security Bulletin: Multiple Vulnerabilities in IBM® WebSphere Application Server Liberty affect IBM LKS Administration and Reporting Tool and its Agent

Summary There are multiple vulnerabilities in the IBM® WebSphere Application Server Liberty used by IBM LKS Administration and Reporting Tool and its Agent. A fix has been identified and is being published here. Vulnerability Details CVEID: CVE-2021-26296 DESCRIPTION: Apache MyFaces is vulnerable...

7.7CVSS0.6AI score0.0399EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/30 5:6 a.m.34 views

Security Bulletin: A security vulnerability ( CVE-2020-5258 ) has been identified in IBM WebSphere Application Server shipped with IBM Operations Analytics Predictive Insights

Summary Websphere Application Server WAS is shipped as a component of IBM Operations Analytics Predictive Insights. Information about WebSphere Application Server vulnerability CVE-2020-5258 related to the used Dojo library has been published in a security bulletin. Vulnerability Details Refer to...

7.7CVSS1.5AI score0.0399EPSS
Exploits1Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/30 5:0 a.m.66 views

Security Bulletin: Multiple Security vulnerabilities have been fixed in the IBM Security Verify Access Docker container

Summary Multiple vulnerabilities have been fixed in the IBM Security Verify Access Docker container. Vulnerability Details CVEID: CVE-2021-20523 DESCRIPTION: IBM Security Access Manager Docker could allow a remote attacker to obtain sensitive information when a detailed technical error message is...

9.8CVSS0.7AI score0.0399EPSS
Exploits3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/28 12:36 p.m.13 views

Security Bulletin: A vulnerability in IBM WebSphere Application Server Liberty affects IBM Elastic Storage System (CVE-2020-5258)

Summary There is a vulnerability in IBM WebSphere Application Server Liberty, used by IBM Elastic Storage System 3000, which could allow a remote attacker to inject arbitrary code in the system. Vulnerability Details CVEID: CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to...

7.7CVSS2AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/21 6:54 p.m.21 views

Security Bulletin: Security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Directory Server (CVE-2020-5258)

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Directory Server ISDS. Information about security vulnerability affecting IBM WebSphere Application Server has been published in security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

7.7CVSS2.7AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/07/15 3:30 a.m.26 views

Security Bulletin: Dojo vulnerability in WebSphere Liberty affects Collaboration and Deployment Services (CVE-2020-5258)

Summary There is a Dojo vulnerability in WebSphere Liberty used by Collaboration and Deployment Services. This issue has been addressed. Vulnerability Details CVEID: CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to inject arbitrary code on the system, caused by a prototype...

7.7CVSS1AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/25 8:10 p.m.22 views

Security Bulletin: Rational Asset Analyzer is affected by a vulnerability in WebSphere Application Server Liberty (CVE-2020-5258)

Summary Rational Asset Analyzer team has addressed the following vulnerability: CVE-2020-5258. Vulnerability Details CVEID: CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to inject arbitrary code on the system, caused by a prototype pollution flaw. By injecting other values, a...

7.7CVSS2.1AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/23 1:9 p.m.28 views

Security Bulletin: IBM Cloud Transformation Advisor is affected by a vulnerability in WebSphere Application Server Liberty (CVE-2020-5258)

Summary IBM Cloud Transformation Advisor has addressed the following vulnerability: CVE-2020-5258 Vulnerability Details CVEID: CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to inject arbitrary code on the system, caused by a prototype pollution flaw. By injecting other values...

7.7CVSS1.1AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/16 5:43 a.m.13 views

Security Bulletin: Security vulnerabilities are identified in WebSphere Application Server where Rational Asset Manager is deployed (CVE-2021-20454 and CVE-2020-5258)

Summary In the WebSphere Application Server WAS admin console where the Rational Asset Manager RAM is deployed, the XML External Entity XXE injection and Dojo affects vulnerabilities are observed. Information about these security vulnerabilities affecting WebSphere Application Server are publishe...

8.2CVSS2.3AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/15 4:4 p.m.16 views

Security Bulletin: A security vulnerability has been identified in IBM WebSphere Application Server shipped with Tivoli Business Service Manager (CVE-2020-5258)

Summary IBM WebSphere Application Server is shipped with IBM Tivoli Business Service Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

2.4AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/31 4:32 a.m.42 views

Security Bulletin: Vulnerability in Dojo affects WebSphere Application Server shipped with IBM Security Access Manager for Enterprise Single Sign-On (CVE-2020-5258)

Summary IBM WebSphere Application Server is shipped with IBM Security Access Manager for Enterprise Single Sign-On. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletin...

7.7CVSS1.8AI score0.0399EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/25 12:40 p.m.42 views

Security Bulletin: Information disclosure vulnerability in WebSphere Application Server Liberty

Summary This security bulletin addresses the Information Disclosure vulnerability that has been found to impact Websphere Liberty in IBM Tivoli Application Dependency Discovery Manager. Vulnerability Details CVEID: CVE-2020-5258 DESCRIPTION: Dojo dojo could allow a remote attacker to inject...

7.7CVSS1AI score0.0399EPSS
Exploits1Affected Software1
Rows per page
Query Builder