EUVD-2013-0510

Malware in sbrugna...

Security Bulletin: IBM MQ Appliance is affected by a denial of service vulnerability (CVE-2018-1652)

Summary IBM MQ Appliance has addressed a denial of service vulnerability. Vulnerability Details CVEID: CVE-2018-1652 DESCRIPTION: IBM WebSphere DataPower Appliances and IBM MQ Appliance could allow a local user to cause a denial of service through unknown vectors. CVSS Base Score: 6.2 CVSS Tempor...

Security Bulletin: WebSphere DataPower Appliances is affected by multiple issues

Summary WebSphere DataPower Appliances has addressed the following vulnerabilities: CVE-2018-1447 CVE-2018-1388 CVE-2016-0702 CVE-2016-0705 CVE-2017-3732 CVE-2017-3736 CVE-2018-1428 Vulnerability Details CVEID: CVE-2018-1447 DESCRIPTION: The GSKit CMS KDB logic fails to salt the hash function...

Security Bulletin: Vulnerability in Diffie-Hellman ciphers affects IBM Datapower Gateways (CVE-2015-4000)

Summary The Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol affects IBM Datapower Gateways. Vulnerability Details CVEID: CVE-2015-4000 DESCRIPTION: The TLS protocol could allow a remote attacker to obtain sensitive information, caused by the failure to properly...

CVE-2017-1591

IBM WebSphere DataPower Appliances 7.0.0 through 7.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force...

IBM WebSphere DataPower Appliances Cross-Site Scripting Vulnerability

IBM WebSphere DataPower Appliances is a set of networking appliances from IBM in the United States. The appliances are primarily used to simplify, protect and accelerate XML and Web services deployments in SOA. A cross-site scripting vulnerability exists in IBM WebSphere DataPower Appliances...