Lucene search
K

37 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/01/13 12:56 p.m.10 views

Security Bulletin: IBM B2B Advanced Communications is affected by multiple vulnerabilities in log4j

Summary IBM B2B Advanced Communications has addressed vulnerabilities in log4j shipped with productCVE-2022-0084 CVE-2020-36518 CVE-2021-37136 CVE-2022-23913 CVE-2022-24785 Vulnerability Details CVEID:CVE-2022-0084 DESCRIPTION: A flaw was found in XNIO, specifically in the notifyReadClosed method...

7.5CVSS7.3AI score0.05664EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/25 12:0 a.m.6 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.1.11 on RHEL 7 (RHSA-2025:9582)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:9582 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

7.8CVSS7.2AI score0.06779EPSS
Exploits2References34
Chainguard
Chainguard
added 2025/03/24 10:12 p.m.20 views

CVE-2021-37136 vulnerabilities

Vulnerabilities for packages: druid...

7.5CVSS6.7AI score0.05651EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/02/06 10:19 a.m.18 views

Security Bulletin: IBM Security QRadar EDR Software contains multiple vulnerabilities

Summary IBM Security QRadar EDR Software includes vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. These have been addressed in the update. Vulnerability Details CVEID:CVE-2021-37137 DESCRIPTION: Netty netty-codec is vulnerable to a deni...

9.1CVSS8.7AI score0.18891EPSS
Exploits6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/03 9:6 p.m.26 views

Security Bulletin: Vunerablities in Netty affect watsonx.data

Summary Netty is vulnerable to denial of service attacks. For CVE-2021-37136, the Netty Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data which affects the allocation size used during decompression. A malicious input can trigger an Out Of...

7.5CVSS8.2AI score0.0628EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2023/09/14 9:51 a.m.37 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.5.0 release and security update

Red Hat AMQ Streams 2.5.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS7.3AI score0.99615EPSS
Exploits13References19
RedHat Linux
RedHat Linux
added 2023/05/18 9:54 a.m.86 views

Important: Red Hat Security Advisory: Red Hat AMQ Streams 2.4.0 release and security update

Red Hat AMQ Streams 2.4.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

9.8CVSS6.8AI score0.95302EPSS
Exploits17References17
OpenVAS
OpenVAS
added 2023/05/01 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-6049-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.3AI score0.18891EPSS
Exploits3References2
Ubuntu
Ubuntu
added 2023/04/28 4:2 p.m.72 views

USN-6049-1: Netty vulnerabilities

It was discovered that Netty's Zlib decoders did not limit memory allocations. A remote attacker could possibly use this issue to cause Netty to exhaust memory via malicious input, leading to a denial of service. This issue only affected Ubuntu 16.04 ESM and Ubuntu 20.04 ESM. CVE-2020-11612 It wa...

7.5CVSS6.5AI score0.18891EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletins
added 2023/04/03 5:3 p.m.63 views

Security Bulletin: Netty Vulnerabilites 4.0.37

Summary Netty could provide various potential exploitable entry points including weaker than expected security, netty-codec is vulnerable to a denial of service, and HTTP request smuggling Vulnerability Details CVEID:CVE-2019-16869 DESCRIPTION: Netty is vulnerable to HTTP request smuggling, cause...

9.1CVSS8.2AI score0.18891EPSS
Exploits5Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 3:39 a.m.4 views

SUSE CVE-2021-37136

The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data which affects the allocation size used during decompression. All users of Bzip2Decoder are affected. The malicious input can trigger an OOME and so a DoS attack...

7.5CVSS7.8AI score0.05651EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/01/16 12:0 a.m.43 views

Debian dla-3268 : libnetty-java - security update

The remote Debian 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-3268 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3268-1 [email protected]...

7.5CVSS6.8AI score0.0628EPSS
Exploits2References12
RedHat Linux
RedHat Linux
added 2022/11/16 3:9 p.m.424 views

Important: Red Hat Security Advisory: Satellite 6.12 Release

An update is now available for Red Hat Satellite 6.12. The release contains a new version of Satellite and important security fixes for various components. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring ...

9.8CVSS7AI score0.73274EPSS
Exploits7References279
OSV
OSV
added 2022/11/16 1:21 p.m.36 views

RLSA-2022:8506 Important: Satellite 6.12 Release

Rocky Enterprise Software Foundation Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: netty-codec: Bzip2Decoder doesn't allow setting...

9.8CVSS8.7AI score0.73274EPSS
Exploits6References279
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/28 7:55 a.m.35 views

Security Bulletin: Enterprise Content Management System Monitor is affected by a vulnerability CVE-2021-37136 in Netty netty-codec

Summary Vulnerability found in Netty netty-codec component used by Enterprise Content Management System Monitor. Enterprise Content Management System Monitor has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2021-37136 DESCRIPTION: Netty netty-codec is vulnerable to a denial of...

7.5CVSS8AI score0.05651EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2022/08/04 4:46 a.m.128 views

Moderate: Red Hat Security Advisory: Red Hat Process Automation Manager 7.13.0 security update

An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE lin...

7.9CVSS7.1AI score0.35834EPSS
Exploits2References13
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/29 2:9 p.m.57 views

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring is vulnerable to several attack vectors due to its use of Apache Netty (CVE-2021-37136, CVE-2021-37137, CVE-2021-43797)

Summary Several security vulnerablities were found in the Apache Netty library used by several components in IBM Cloud Pak for Multicloud Management Monitoring. Vulnerability Details CVEID: CVE-2021-37136 DESCRIPTION: Netty netty-codec is vulnerable to a denial of service, caused by not allow siz...

7.5CVSS1AI score0.0628EPSS
Exploits0Affected Software1
RedHat Linux
RedHat Linux
added 2022/06/06 3:54 p.m.140 views

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.5 security update on RHEL 7

A security update is now available for Red Hat JBoss Enterprise Application Platform 7.4 for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

10CVSS7.2AI score0.64766EPSS
Exploits9References36
Tenable Nessus
Tenable Nessus
added 2022/06/06 12:0 a.m.106 views

RHEL 8 : Red Hat JBoss Enterprise Application Platform 7.4.5 security update on RHEL 8 (Moderate) (RHSA-2022:4919)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4919 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

10CVSS7.6AI score0.64766EPSS
Exploits9References53
Tenable Nessus
Tenable Nessus
added 2022/06/06 12:0 a.m.126 views

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.4.5 security update on RHEL 7 (Moderate) (RHSA-2022:4918)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:4918 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

10CVSS7.6AI score0.64766EPSS
Exploits9References53
Rows per page
Query Builder