Lucene search
K

43 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/17 5:38 p.m.10 views

Security Bulletin: Multiple security vulnerabilities are addressed with Cloud Pak foundational services before 4.6.20 shipped with IBM Cloud Pak for Business Automation iFixes for January 2026.

Summary IBM Cloud Pak for Business Automation includes IBM Cloud Pak foundational services. IBM Cloud Pak for Business Automation January 2026 security fixes update this dependency to 4.6.20 to address security vulnerabilities. Vulnerability Details CVEID:CVE-2022-23990 DESCRIPTION: Expat aka...

9.1CVSS7.1AI score0.03992EPSS
Exploits5Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.5 views

Alibaba Cloud Linux 3 : 0128: go-toolset:an8 (ALINUX3-SA-2025:0128)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0128 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-45336: The HTTP client drops...

9.1CVSS6.5AI score0.00778EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/07/30 12:0 a.m.4 views

RockyLinux 8 : go-toolset:rhel8 (RLSA-2025:3772)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:3772 advisory. golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints CVE-2024-45341 golang: net/http: net/http: sensitive headers...

6.1CVSS6.6AI score0.00647EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2025/07/21 12:0 a.m.1 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2025-1821)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS8.1AI score0.00647EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/21 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2025-1820)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS8.1AI score0.00647EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/11 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2025-1775)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.4AI score0.00647EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/07/11 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2025-1798)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.8AI score0.00647EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/06/30 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2025-1687)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.4AI score0.00647EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/06/30 12:0 a.m.4 views

Huawei EulerOS: Security Advisory for golang (EulerOS-SA-2025-1702)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.5AI score0.00647EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/06/20 12:0 a.m.7 views

Ubuntu: Security Advisory (USN-7574-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.1AI score0.00647EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.2 views

TencentOS Server 3: go-toolset:rhel8 (TSSA-2025:0299)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0299 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

6.1CVSS6.5AI score0.00647EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/13 4:15 p.m.5 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to certification errors in golang.org/x/crypto/ssh [CVE-2024-45341]

Summary IBM Watson Speech Services Cartridge is vulnerable to certification errors in golang.org/x/crypto/ssh, because of conditions which incorrectly satisfy a URI name constraint that applies to certificate chains. CVE-2024-45341. Golang.org/x/crypto/ssh is used as part of our speech utilities...

6.1CVSS5.9AI score0.00458EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/05 12:0 a.m.16 views

RHEL 10 : delve and golang (RHSA-2025:7466)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7466 advisory. Delve is a debugger for the Go programming language. The goal of the project is to provide a simple, full featured debugging tool for Go...

6.1CVSS6.8AI score0.00647EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/05/29 12:0 a.m.10 views

SUSE SLES15 Security Update : go1.23-openssl (SUSE-SU-2025:01731-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01731-1 advisory. Update to version 1.23.9 bsc1229122: Security fixes: - CVE-2024-45336: net/http: sensitive headers incorrectly sent after...

9.1CVSS7AI score0.00778EPSS
Exploits2References17
OpenVAS
OpenVAS
added 2025/05/22 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2025:1555-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7.6AI score0.00647EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/04/11 12:0 a.m.17 views

RHEL 8 : go-toolset:rhel8 (RHSA-2025:3772)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:3772 advisory. Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. Security Fixes: golang: crypto/x50...

6.1CVSS6.7AI score0.00647EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.15 views

Oracle Linux 8 : go-toolset:ol8 (ELSA-2025-3772)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-3772 advisory. delve 1.24.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.24.1-1 - Rebase to 1.24.1 - Skip unsupported tests - Resolves:...

6.1CVSS6.6AI score0.00647EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.8 views

AlmaLinux 8 : go-toolset:rhel8 (ALSA-2025:3772)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:3772 advisory. golang: crypto/x509: crypto/x509: usage of IPv6 zone IDs can bypass URI name constraints CVE-2024-45341 golang: net/http: net/http: sensitive headers...

6.1CVSS6.6AI score0.00647EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/02 5:23 p.m.9 views

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to a security bypass in Golang crypto [CVE-2024-45341]

Summary IBM Watson Speech Services Cartridge is vulnerable to a security bypass in the crypto/x509 package of the Golang standard library, caused by a faulty certificate URI CVE-2024-45341. Golang is used by our Speech utilities. This vulnerabilitiy has been addressed. Please read the details for...

6.1CVSS6.9AI score0.00458EPSS
Exploits0Affected Software1
Amazon
Amazon
added 2025/03/06 12:0 a.m.3 views

Medium: golang

Issue Overview: net/http: sensitive headers incorrectly sent after cross-domain redirect The HTTP client drops sensitive headers after following a cross-domain redirect. For example, a request to a.com/ containing an Authorization header which is redirected to b.com/ will not send that header to...

6.1CVSS7.1AI score0.00647EPSS
Exploits0
Rows per page
Query Builder