Security Bulletin: IBM Spectrum Control is vulnerable to weaknesses related to form-data (CVE-2025-7783)

Summary The form-data package is vulnerable to HTTP Parameter Pollution HPP. This vulnerability affects IBM Spectrum Control. Vulnerability Details CVEID:CVE-2025-7783 DESCRIPTION: Use of Insufficiently Random Values vulnerability in form-data allows HTTP Parameter Pollution HPP. This vulnerabili...

The vulnerability of software for remote management and monitoring of the Intel Local Manageability Service arises from insufficient protection of registration data, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the software for remote management and monitoring of the Intel Local Manageability Service is related to insufficient protection of registration data. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Intel Endpoint Management Assistant cloud service lies in the insufficient protection of registration data, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of the Intel Endpoint Management Assistant cloud service is related to insufficient protection for registration data. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

Security Bulletin: Vulnerabilities in GSKit affect IBM WebSphere MQ (CVE-2015-0159, CVE-2015-0138 and CVE-2014-6221)

Summary GSKit is an IBM component that is used by IBM WebSphere MQ. The GSKit that is shipped with IBM WebSphere MQ contains multiple security vulnerabilities including the "FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability. Vulnerability Details CVEID:...

DEBIAN-CVE-2018-1108

kernel drivers before version 4.17-rc1 are vulnerable to a weakness in the Linux kernel's implementation of random seed data. Programs, early in the boot sequence, could use the data allocated for the seed before it was sufficiently generated...

The vulnerability in the Internet Explorer browser allows a perpetrator to bypass the ASLR protection mechanism.

The vulnerability in the JavaScript engines of Internet Explorer lies in the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass the ASLR protection mechanism by using a specially crafted web page...

The vulnerability of the Microsoft .NET Framework software platform, which allows a hacker to bypass the ASLR protection mechanism

The vulnerability of the Microsoft .NET Framework software lies in the lack of protection for service data. Exploiting this vulnerability allows a malicious actor to bypass ASLR protection by using a specially created website...