Lucene search
K

2324 matches found

OSV
OSV
added 2025/03/24 5:15 p.m.4 views

CVE-2025-0255

HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements...

7.2CVSS6.1AI score0.00624EPSS
Exploits0References1
NVD
NVD
added 2025/03/24 5:15 p.m.28 views

CVE-2025-0255

HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements...

7.2CVSS0.00624EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/24 4:32 p.m.10 views

CVE-2025-0255 HCL DevOps Deploy / HCL Launch is susceptible to command injection vulnerability

HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements...

7.2CVSS7.8AI score0.00624EPSS
Exploits0References1
CVE
CVE
added 2025/03/24 4:32 p.m.62 views

CVE-2025-0255

CVE-2025-0255 affects HCL DevOps Deploy / HCL Launch. The vulnerability is a command-injection flaw where a remote, authenticated attacker could execute arbitrary commands by sending specially crafted input containing special elements. Evidence from multiple sources confirms the core vulnerabilit...

7.2CVSS7.8AI score0.00624EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2025/03/24 4:32 p.m.21 views

CVE-2025-0255 HCL DevOps Deploy / HCL Launch is susceptible to command injection vulnerability

HCL DevOps Deploy / HCL Launch could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially crafted input containing special elements...

7.2CVSS0.00624EPSS
Exploits0References1
OSV
OSV
added 2025/03/24 4:15 p.m.2 views

CVE-2025-0256

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References1
NVD
NVD
added 2025/03/24 4:15 p.m.14 views

CVE-2025-0256

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

6.5CVSS0.00256EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/24 3:35 p.m.12 views

CVE-2025-0256 HCL DevOps Deploy / HCL Launch is susceptible to a sensitive information disclosure

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

4.3CVSS0.00256EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/24 3:35 p.m.6 views

CVE-2025-0256 HCL DevOps Deploy / HCL Launch is susceptible to a sensitive information disclosure

HCL DevOps Deploy / HCL Launch could allow an authenticated user to obtain sensitive information about other users on the system due to missing authorization for a function...

4.3CVSS4.4AI score0.00256EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.2 views

HCL Launch和HCL DevOps Deploy 安全漏洞

HCL Launch and HCL DevOps Deploy are both products of HCL India.HCL Launch is a multi-functional, enterprise-grade continuous delivery automation software. Used to handle the most complex deployment processes in DevOps.HCL DevOps Deploy is an application. Can be mapped to your organizational...

6.5CVSS6.3AI score0.00256EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/24 12:0 a.m.2 views

HCL Launch和HCL DevOps Deploy 安全漏洞

HCL Launch and HCL DevOps Deploy are both products of HCL India.HCL Launch is a multi-functional, enterprise-grade continuous delivery automation software. Used to handle the most complex deployment processes in DevOps.HCL DevOps Deploy is an application. Can be mapped to your organizational...

7.2CVSS7.3AI score0.00624EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2025/03/20 12:32 p.m.4 views

eisen (=0.1.9), eisen-deploy (>=0.0.1 <=0.0.2) potentially affected by CVE-2024-6577 via torchserve (=0.0.1b20200409)

torchserve PYPI version =0.0.1b20200409 is affected by a known vulnerability. The following packages have a transitive dependency on torchserve and may be impacted: - eisen =0.1.9 - eisen-deploy =0.0.1, =0.0.2 Source cves: CVE-2024-6577 Source advisory: OSV:GHSA-XX7C-J7H3-VJCQ...

6.3CVSS6.5AI score0.00362EPSS
Exploits0
OSV
OSV
added 2025/03/17 2:46 p.m.11 views

GHSA-W6FV-6GCC-X825 Zincati allows unprivileged access to rpm-ostree D-Bus `Deploy()` and `FinalizeDeployment()` methods

Impact Zincati ships a polkit rule which allows the zincati system user to use the following actions: - org.projectatomic.rpmostree1.deploy: used to deploy updates to the system - org.projectatomic.rpmostree1.finalize-deployment: used to reboot the system into the deployed update Since Zincati...

5.9CVSS6.1AI score0.00175EPSS
Exploits0References7
OSV
OSV
added 2025/03/14 5:22 p.m.2 views

MAL-2025-2348 Malicious code in k8s-deploy-action (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 84c86c15f129692c3b73b16951c9f12754789e3a5ea36e3e5d517e05c7e0231b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/03/12 12:38 p.m.4 views

Security Bulletin: IBM App Connect Enterprise Certified Container is vulnerable to an attacker with deploy privilege [CVE-2025-0799]

Summary IBM App Connect Enterprise Certified Container is vulnerable to an attacker with deploy privilege. Malicious bar files could allow an attacker with deploy privilege to write arbitrary files in the container for a running IBM App Connect Enterprise Certified Container IntegrationRuntime or...

6.5CVSS6.7AI score0.00459EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/03/06 8:15 p.m.4 views

CVE-2025-2040

A vulnerability classified as critical was found in zhijiantianya ruoyi-vue-pro 2.4.1. Affected by this vulnerability is an unknown functionality of the file /admin-api/bpm/model/deploy. The manipulation leads to improper neutralization of special elements used in a template engine. The attack ca...

5.3CVSS5.4AI score0.0043EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/02/16 4:20 a.m.10 views

CVE-2024-55904

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially craft...

7.2CVSS7.4AI score0.00624EPSS
Exploits0References1
OSV
OSV
added 2025/02/14 4:15 a.m.5 views

CVE-2024-55904

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially craft...

7.2CVSS6.1AI score0.00624EPSS
Exploits0References1
NVD
NVD
added 2025/02/14 4:15 a.m.13 views

CVE-2024-55904

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially craft...

7.2CVSS0.00624EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/14 3:23 a.m.11 views

CVE-2024-55904 IBM DevOps Deploy / IBM UrbanCode Deploy command injection

IBM DevOps Deploy 8.0 through 8.0.1.4, 8.1 through 8.1.0.0 / IBM UrbanCode Deploy 7.0 through 7.0.5.25, 7.1 through 7.1.2.21, 7.2 through 7.2.3.14, and 7.3 through 7.3.2.9 could allow a remote privileged authenticated attacker to execute arbitrary commands on the system by sending specially craft...

7.2CVSS7.5AI score0.00624EPSS
Exploits0References1
Rows per page
Query Builder