Lucene search
K

108 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/30 9:16 a.m.5 views

Security Bulletin: Oracle Outside In Technology (OIT) v8.5.7 BP8, v8.5.8 BP1 vulnerabilities CVE-2023-45853 (vulnerable), CVE-2025-53816 (vulnerable) in FileNet Content Manager (FNCM) Content Based Retrieval (CBR) content indexing

Summary Oracle Outside In Technology OIT v8.5.7 BP8, v8.5.8 BP1 October, 2025 CVE-2023-45853 vulnerable, CVE-2025-53816 vulnerable security vulnerabilities in FileNet Content Manager FNCM Content Based Retrieval CBR content indexing. Vulnerability Details CVEID:CVE-2023-45853 DESCRIPTION: MiniZip...

9.8CVSS7AI score0.02918EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/02 2:35 p.m.6 views

Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to buffer overflow due to the zlib package (CVE-2023-45853)

Summary Zlib is used by DataStage on Cloud Pak for Data as part of buffer compression functionality. Vulnerability Details CVEID:CVE-2023-45853 DESCRIPTION: MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename,...

9.8CVSS8.2AI score0.02918EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.5 views

NewStart CGSL MAIN 7.02 : zlib Vulnerability (NS-SA-2025-0200)

The remote NewStart CGSL host, running version MAIN 7.02, has zlib packages installed that are affected by a vulnerability: - MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE:...

9.8CVSS7.7AI score0.02918EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.4 views

TencentOS Server 4: zlib (TSSA-2024:0805)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0805 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

9.8CVSS7.6AI score0.02918EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/05/05 9:13 p.m.8 views

CVE-2023-45853 affecting package rust for versions less than 1.85.0-1

CVE-2023-45853 affecting package rust for versions less than 1.85.0-1. A patched version of the package is available...

9.8CVSS7.2AI score0.02918EPSS
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2025/03/07 12:0 a.m.7 views

grype-0.88.0-1.1 on GA media (moderate)

grype-0.88.0-1.1 on GA media Announcement ID: openSUSE-SU-2025:14857-1 Rating: moderate Cross-References: CVE-2023-45853 CVSS scores: CVE-2023-45853 SUSE : 5.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be...

5.3CVSS7.8AI score0.02918EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/05 5:20 p.m.10 views

Security Bulletin: Oracle Outside In Technology (OIT) Security Vulnerabilities - July 2024

Summary Oracle Outside In Technology OIT Security Vulnerabilities CVE-2023-45853 and CVE-2023-52425 - Resolved in July 2024 Oracle OIT v8.5.7 BP3 p36705510 Vulnerability Details CVEID:CVE-2023-45853 DESCRIPTION: MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer...

9.8CVSS7.5AI score0.02918EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2023-45853

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra...

9.8CVSS7.4AI score0.02918EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/24 12:0 a.m.5 views

Siemens SCALANCE W700 Integer Overflow or Wraparound (CVE-2023-45853)

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. This plugin only works with Tenable.ot. Please visit...

9.8CVSS7.4AI score0.02918EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.7 views

F5 Networks BIG-IP : MiniZip vulnerability (K000149884)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000149884 advisory. MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464...

9.8CVSS7.9AI score0.02918EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/02/11 4:7 p.m.9 views

CVE-2023-45853 affecting package blosc for versions less than 1.21.6-1

CVE-2023-45853 affecting package blosc for versions less than 1.21.6-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS9.8AI score0.02918EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.11 views

Azure Linux 3.0 Security Update: blosc / boost / cloud-hypervisor / cloud-hypervisor-cvm / keras / nmap / rust (CVE-2023-45853)

The version of blosc / boost / cloud-hypervisor / cloud-hypervisor-cvm / keras / nmap / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45853 advisory. - MiniZip in zlib through 1.3 has an...

9.8CVSS7.5AI score0.02918EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/01/31 4:7 p.m.18 views

CVE-2023-45853 affecting package rust for versions less than 1.72.0-5

CVE-2023-45853 affecting package rust for versions less than 1.72.0-5. A patched version of the package is available...

9.8CVSS9.8AI score0.02918EPSS
Exploits0
Rosalinux
Rosalinux
added 2024/08/06 9:33 a.m.46 views

Advisory ROSA-SA-2024-2463

software: zlib 1.2.11 OS: ROSA-CHROME packageevrstring: zlib-1.2.11-5 CVE-ID: CVE-2023-45853 BDU-ID: 2023-07116 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the zipOpenNewFileInZip464 function of the MiniZip package of the zlib library relates to an integer overflow when processing file name...

9.8CVSS8.2AI score0.51733EPSS
Exploits2
CBLMariner
CBLMariner
added 2024/07/22 3:37 p.m.17 views

CVE-2023-45853 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

CVE-2023-45853 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS9.8AI score0.02918EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/19 12:0 a.m.106 views

Oracle HTTP Server (July 2024 CPU)

The versions of HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2024 CPU advisory: - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: SSL Module zlib. The supported version that is affected is...

9.8CVSS6.5AI score0.02918EPSS
Exploits5References7
OSV
OSV
added 2024/07/16 7:32 p.m.70 views

GHSA-Q5FM-55C2-V6J9 Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib

Summary Vulnerability scan of fiona shows CVE-2023-45853. The vulnerability is in GDAL, a dependency of fiona. Details Fiona depends on GDAL and GDAL has a port of minizip. MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a...

9.8CVSS7.7AI score0.02918EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2024/07/16 7:32 p.m.81 views

Fiona affected by CVE-2023-45853 related to MiniZip madler-zlib

Summary Vulnerability scan of fiona shows CVE-2023-45853. The vulnerability is in GDAL, a dependency of fiona. Details Fiona depends on GDAL and GDAL has a port of minizip. MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a...

9.8CVSS9.5AI score0.02918EPSS
Exploits0References5Affected Software1
CBLMariner
CBLMariner
added 2024/07/12 11:39 p.m.11 views

CVE-2023-45853 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1

CVE-2023-45853 affecting package cloud-hypervisor-cvm for versions less than 38.0.72.2-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS9.8AI score0.02918EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/10 7:5 a.m.32 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM Db2 shipped with IBM Security Guardium Key Lifecycle Manager

Summary IBM Db2 is shipped as a component of IBM Security Key Lifecycle Manager SKLM/GKLM. Information about multiple security vulnerabilities affecting IBM Db2 has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

9.8CVSS7.3AI score0.02918EPSS
Exploits2Affected Software1
Rows per page
Query Builder