Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 5 days ago3 views

Security Bulletin: Multiple vulnerabilities affect Data Virtualization on IBM Software Hub (June 2026 - Part 2 of 2)

Summary Multiple vulnerabilities have been addressed in Data Virtualization on IBM Software Hub. Note that Data Virtualization was named Watson Query on IBM Cloud Pak for Data version 4.8. Vulnerability Details CVEID:CVE-2026-34477 DESCRIPTION: The fix for CVE-2025-68161...

9.6CVSS6.8AI score0.00743EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/09 2:57 p.m.9 views

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in qs-6.14.2.tgz

Summary IBM Watson Discovery Cartridge affected by vulnerability in qs-6.14.2.tgz Vulnerability Details CVEID:CVE-2026-8723 DESCRIPTION: Summary qs.stringify throws TypeError when called with arrayFormat: 'comma' and encodeValuesOnly: true on an array containing null or undefined. The throw is...

6.3CVSS5.5AI score0.00351EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:24 p.m.11 views

CVE-2026-8723

Summary qs.stringify throws TypeError when called with arrayFormat: 'comma' and encodeValuesOnly: true on an array containing null or undefined. The throw is synchronous and not handled by any of qs's null-related options skipNulls, strictNullHandling. Details In the comma + encodeValuesOnly...

6.3CVSS5.5AI score0.00351EPSS
Exploits0References1
Chainguard
Chainguard
added 2026/05/26 7:39 p.m.15 views

CVE-2026-8723 vulnerabilities

Vulnerabilities for packages: py3-jupyterlab, gitlab-rails-ce-fips, thingsboard-fips, tileserver-gl-fips, kubescape-grype-offline-db, wazuh-dashboard-fips, json-server, py3-captum, thingsboard, sqlpad, kubeflow-pipelines, renovate, pelias-api, langfuse-fips, arangodb, code-server, tileserver-gl,...

6.3CVSS7AI score0.00351EPSS
Exploits0
CVE
CVE
added 2026/05/16 11:21 p.m.35 views

CVE-2026-8723

The CVE describes a bug in the qs library where tstringifying an object with arrayFormat: 'comma' and encodeValuesOnly: true fails if an array contains null or undefined. The failure is a synchronous TypeError caused by missing null guard in the encoding path: the code maps values with the encode...

6.3CVSS5.9AI score0.00351EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/16 11:21 p.m.23 views

CVE-2026-8723 qs.stringify crashes on null/undefined entries in comma-format arrays under encodeValuesOnly

Summary qs.stringify throws TypeError when called with arrayFormat: 'comma' and encodeValuesOnly: true on an array containing null or undefined. The throw is synchronous and not handled by any of qs's null-related options skipNulls, strictNullHandling. Details In the comma + encodeValuesOnly...

6.3CVSS5.9AI score0.00351EPSS
Exploits0References2
Rows per page
Query Builder