Lucene search
+L

12 matches found

ibm
ibm
added 2025/06/17 8:17 a.m.21 views

Security Bulletin: IBM Cloud Pak for Data is vulnerable to Prototype Pollution due to ejs package ( CVE-2024-33883)

Summary Potential vulnerabilities in ejs package has been identified that may affect IBM Cloud Pak for Data. Vulnerability Details CVEID:CVE-2024-33883 DESCRIPTION: The ejs aka Embedded JavaScript templates package before 3.1.10 for Node.js lacks certain pollution protection. CWE:CWE-693:...

4CVSS4.5AI score0.00619EPSS
Exploits1Affected Software1
redhatcve
redhatcve
added 2025/05/23 10:21 a.m.9 views

CVE-2024-33883

The ejs aka Embedded JavaScript templates package before 3.1.10 for Node.js lacks certain pollution protection...

4CVSS4.2AI score0.00619EPSS
Exploits1References1
nessus
nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-33883

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ejs aka Embedded JavaScript templates package before 3.1.10 for Node.js lacks certain pollution protection. CVE-2024-33883 Note that Nessus relies on the...

4CVSS5.3AI score0.00619EPSS
Exploits1References3
ibm
ibm
added 2024/08/05 9:41 p.m.24 views

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to ejs lack of pollution protection vulnerability [ CVE-2024-33883]

Summary Potential ejs aka Embedded JavaScript templates package lack of pollution protection vulnerability CVE-2024-33883 have been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. The vulnerability have been addressed. Refer to details for additional information...

4CVSS4.2AI score0.00619EPSS
Exploits1Affected Software1
githubexploit
githubexploit
added 2024/06/25 6:40 p.m.1196 views

Exploit for CVE-2024-33883

CVE-2024-33883 [email protected], Insufficient Prototype Pollutio...

4CVSS6.7AI score0.00619EPSS
Exploits1
ibm
ibm
added 2024/06/03 3:26 p.m.28 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to denial of service due to [CVE-2024-33883]

Summary Node.js module ejs is used by IBM App Connect Enterprise Certified Container for generating user interfaces in the DesignerAuthoring operand. IBM App Connect Enterprise Certified Container DesignerAuthoring operands are vulnerable to denial of service. This bulletin provides patch...

4CVSS4.4AI score0.00619EPSS
Exploits1Affected Software1
cgr
cgr
added 2024/04/28 4:15 p.m.32 views

CVE-2024-33883 vulnerabilities

Vulnerabilities for packages: lerna...

4CVSS7.3AI score0.00619EPSS
Exploits1
wolfi
wolfi
added 2024/04/28 4:15 p.m.57 views

CVE-2024-33883 vulnerabilities

Vulnerabilities for packages: lerna...

4CVSS7.5AI score0.00619EPSS
Exploits1
cvelist
cvelist
added 2024/04/28 12:0 a.m.43 views

CVE-2024-33883

The ejs aka Embedded JavaScript templates package before 3.1.10 for Node.js lacks certain pollution protection...

6.7AI score0.00619EPSS
Exploits1References3
vulnrichment
vulnrichment
added 2024/04/28 12:0 a.m.29 views

CVE-2024-33883

The ejs aka Embedded JavaScript templates package before 3.1.10 for Node.js lacks certain pollution protection...

6.8AI score0.00619EPSS
Exploits1References3
debiancve
debiancve
added 2024/04/28 12:0 a.m.57 views

CVE-2024-33883

The ejs aka Embedded JavaScript templates package before 3.1.10 for Node.js lacks certain pollution protection...

4CVSS6.4AI score0.00619EPSS
Exploits1
cve
cve
added 2024/04/28 12:0 a.m.359 views

CVE-2024-33883

CVE-2024-33883 : The Node.js module ejs (Embedded JavaScript templates) , up to version before 3.1.10, lacks certain pollution protection, enabling local attackers to potentially cause a denial of service. The connected IBM/Astra Linux references confirm the same description. Reported impact: den...

4CVSS6.5AI score0.00619EPSS
Exploits1References3
Rows per page
Query Builder