CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

IBM Security Bulletins•added 2026/04/27 9:35 a.m.•4 views

Security Bulletin: IBM watsonx.data integration (Data Observability) is vulnerable to node-forge-1.3.1.tgz due to CVE-2025-12816 ( CVE number(s) )

Summary An interpretation-conflict CWE-436 vulnerability in node-forge versions 1.3.1 and earlier enables unauthenticated attackers to craft ASN.1 structures to desynchronize schema validations, yielding a semantic divergence that may bypass downstream cryptographic verifications and security...

8.6CVSS6.5AI score0.00071EPSS

Exploits1Affected Software1

Akamai Blog•added 2025/09/30 4:0 p.m.•2 views

The Power of Data Observability: Your Edge in a Fast-Changing World

...

7AI score

Exploits0

RedhatCVE•added 2025/08/30 6:21 p.m.•2 views

CVE-2025-52218

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to Content Spoofing / Text Injection. Improper sanitization of unspecified parameters allows attackers to inject arbitrary text or limited HTML into the login page...

7.5CVSS7AI score0.00059EPSS

Exploits0References1

RedhatCVE•added 2025/08/30 6:21 p.m.•2 views

CVE-2025-52219

SelectZero SelectZero Data Observability Platform before 2025.5.2 contains an Open Redirect vulnerability. Legacy UI fields can be used to create arbitrary external links via HTML Injection...

6.5CVSS7AI score0.00053EPSS

Exploits0References1

OSV•added 2025/08/26 3:15 p.m.•0 views

CVE-2025-52219

SelectZero SelectZero Data Observability Platform before 2025.5.2 contains an Open Redirect vulnerability. Legacy UI fields can be used to create arbitrary external links via HTML Injection...

6.5CVSS5.9AI score

Exploits0References1

NVD•added 2025/08/26 3:15 p.m.•2 views

CVE-2025-52217

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML...

5.4CVSS0.00043EPSS

Exploits0References1

OSV•added 2025/08/26 3:15 p.m.•0 views

CVE-2025-52217

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML...

5.4CVSS5.9AI score

Exploits0References1

Cvelist•added 2025/08/26 12:0 a.m.•4 views

CVE-2025-52218

0.00059EPSS

Exploits0References1

Cvelist•added 2025/08/26 12:0 a.m.•4 views

CVE-2025-52219

SelectZero SelectZero Data Observability Platform before 2025.5.2 contains an Open Redirect vulnerability. Legacy UI fields can be used to create arbitrary external links via HTML Injection...

0.00053EPSS

Exploits0References1

Cvelist•added 2025/08/26 12:0 a.m.•5 views

CVE-2025-52217

SelectZero Data Observability Platform before 2025.5.2 is vulnerable to HTML Injection. Legacy UI fields improperly handle user-supplied input, allowing injection of arbitrary HTML...

0.00043EPSS

Exploits0References1

CNNVD•added 2025/08/26 12:0 a.m.•1 views

SelectZero Data Observability Platform 安全漏洞

SelectZero Data Observability Platform is a data processing platform from SelectZero Estonia. A security vulnerability exists in SelectZero Data Observability Platform versions prior to 2025.5.2, which stems from an open redirection that exists in an old UI field...

6.5CVSS6.7AI score0.00053EPSS

Exploits0References2

CNNVD•added 2025/08/26 12:0 a.m.•2 views

SelectZero Data Observability Platform 安全漏洞

SelectZero Data Observability Platform is a data processing platform from SelectZero Estonia. A security vulnerability exists in SelectZero Data Observability Platform versions prior to 2025.5.2, which stems from mishandling of UI fields in older versions and could lead to HTML injection...

5.4CVSS6.6AI score0.00043EPSS

Exploits0References2

CNNVD•added 2025/08/26 12:0 a.m.•0 views

SelectZero Data Observability Platform 安全漏洞

SelectZero Data Observability Platform is a data processing platform from SelectZero Estonia. A security vulnerability exists in SelectZero Data Observability Platform versions prior to 2025.5.2, which stems from improper parameter cleanup and could lead to content spoofing or text injection...

7.5CVSS6.7AI score0.00059EPSS

Exploits0References2

CVE•added 2025/08/26 12:0 a.m.•11 views

CVE-2025-52217

The CVE-2025-52217 vulnerability affects SelectZero Data Observability Platform prior to version 2025.5.2. The issue stems from improper handling of user-supplied input in legacy UI fields, enabling HTML injection. Impact is HTML injection via these UI components; attack vector is user interactio...

5.4CVSS6.8AI score0.00043EPSS

Exploits0References1Affected Software1

IBM Security Bulletins•added 2025/07/25 12:51 p.m.•18 views

Security Bulletin: The iconv() function in the GNU C Library affects IBM Data Observability by Databand Self-Hosted (CVE-2024-2961)

Summary The vulnerability regarding iconv function in the GNU C Library versions 2.39 and older was addressed in IBM Data Observability by Databand Self-Hosted. Vulnerability Details CVEID:CVE-2024-2961 DESCRIPTION: The iconv function in the GNU C Library versions 2.39 and older may overflow the...

7.3CVSS6.7AI score0.91924EPSS

Exploits16Affected Software1

IBM Security Bulletins•added 2025/01/28 10:8 p.m.•21 views

Security Bulletin:cryptography-42.0.7-cp39-abi3-manylinux_2_28_x86_64.whl Vulnerability Affects IBM Data Observability by Databand (CVE-2024-6119)

Summary A vulnerability in cryptography-42.0.7-cp39-abi3-manylinux228x8664.whl was addressed in IBM Data Observability by Databand Vulnerability Details CVEID:CVE-2024-6119 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by an error when performing certificate name checks e.g.,...

7.5CVSS6.6AI score0.14584EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/01/28 10:8 p.m.•16 views

Security Bulletin:Psf Requests Vulnerability Affects IBM Data Observability by Databand Self-Hosted (CVE-2024-35195)

Summary A vulnerability in Psf Requests was addressed in IBM Data Observability by Databand Self-Hosted Vulnerability Details CVEID:CVE-2024-35195 DESCRIPTION: Psf Requests could allow a local authenticated attacker to bypass security restrictions, caused by an incorrect control flow implementati...

5.6CVSS6AI score0.00044EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2025/01/28 10:8 p.m.•13 views

Security Bulletin: sqlparse Vulnerability Affects IBM Data Observability by Databand Self-Hosted (CVE-2024-4340)

Summary A vulnerability in sqlparse was addressed in IBM Data Observability by Databand Self-Hosted Vulnerability Details CVEID:CVE-2024-4340 DESCRIPTION: sqlparse is vulnerable to a denial of service, caused by a flaw when passing a heavily nested list to the parse function. By sending a special...

7.5CVSS6.6AI score0.10881EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by