Lucene search
+L

5 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/05/05 4:1 p.m.47 views

Security Bulletin: IBM Cognos Analytics has addressed multiple vulnerabilities

Summary Security vulnerabilities have been addressed in IBM Cognos Analytics 11.1.7 Fix Pack 7. These vulnerabilities have also been previously addressed in IBM Cognos Analytics 11.2.4 and 11.2.4 FP1. IBM WebSphere Liberty used in IBM Cognos Analytics is vulnerable to an HTTP Header Injection...

9.8CVSS9.9AI score0.81464EPSS
Exploits16Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2023/03/31 10:55 a.m.45 views

Security Bulletin: Vulnerability from Apache Calcite affect IBM Operations Analytics - Log Analysis (CVE-2022-39135)

Summary In Apache Calcite, the SQL operators do not restrict XML External Entity references in their configuration. This makes them vulnerable to a potential XML External Entity XXE attack. Vulnerability Details CVEID:CVE-2022-39135 DESCRIPTION: Apache Calcite is vulnerable to an XML external...

9.8CVSS9.5AI score0.01931EPSS
Exploits0Affected Software1
Chainguard
Chainguard
added 2022/09/11 12:15 p.m.21 views

CVE-2022-39135 vulnerabilities

Vulnerabilities for packages: trino...

9.8CVSS6.9AI score0.01931EPSS
Exploits0
Wolfi
Wolfi
added 2022/09/11 12:15 p.m.29 views

CVE-2022-39135 vulnerabilities

Vulnerabilities for packages: trino...

9.8CVSS7.1AI score0.01931EPSS
Exploits0
Cvelist
Cvelist
added 2022/09/11 12:0 a.m.35 views

CVE-2022-39135 Apache Calcite: potential XEE attacks

Apache Calcite 1.22.0 introduced the SQL operators EXISTSNODE, EXTRACTXML, XMLTRANSFORM and EXTRACTVALUE do not restrict XML External Entity references in their configuration, making them vulnerable to a potential XML External Entity XXE attack. Therefore any client exposing these operators,...

9.6AI score0.01931EPSS
Exploits0References2
Rows per page
Query Builder