Lucene search
K

2321 matches found

Vulnrichment
Vulnrichment
added 2024/04/17 7:32 p.m.15 views

CVE-2024-21989 Privilege Escalation Vulnerability in ONTAP Select Deploy administration utility

ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x are susceptible to a vulnerability which when successfully exploited could allow a read-only user to escalate their privileges...

8.1CVSS7.3AI score0.00431EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.5 views

PT-2024-19141 · Netapp · Ontap Select Deploy Administration Utility

Name of the Vulnerable Software and Affected Versions: ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x Description: The issue allows a read-only user to escalate their privileges when successfully exploited. Recommendations: For versions 9.12.1.x, consider...

8.8CVSS7.4AI score0.00431EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/04/17 12:0 a.m.3 views

NetApp ONTAP Select Deploy administration utility 信任管理问题漏洞

NetApp ONTAP Select Deploy administration utility is an administration utility for deploying and managing ONTAP Select clusters from Network Appliance NetApp, Inc. A security vulnerability exists in NetApp ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x , 9.14.1.x, which...

9.8CVSS6.6AI score0.00317EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/04/17 12:0 a.m.5 views

PT-2024-19143 · Netapp · Ontap Select Deploy Administration Utility

Name of the Vulnerable Software and Affected Versions: ONTAP Select Deploy administration utility versions 9.12.1.x, 9.13.1.x and 9.14.1.x Description: The issue is related to hard-coded credentials in the affected software, which could allow an attacker to view configuration information and modi...

9.8CVSS6.9AI score0.00317EPSS
Exploits0References5
CNVD
CNVD
added 2024/04/16 12:0 a.m.6 views

IBM UrbanCode Deploy Cross-Site Scripting Vulnerability (CNVD-2024-20489)

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the complex application in different...

6.1CVSS5.8AI score0.0037EPSS
Exploits0References1
CNVD
CNVD
added 2024/04/16 12:0 a.m.13 views

IBM DevOps Deploy and IBM UrbanCode Deploy Access Control Error Vulnerability

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the complex application in different...

4.4CVSS6.6AI score0.00436EPSS
Exploits0References1
CNVD
CNVD
added 2024/04/16 12:0 a.m.10 views

IBM UrbanCode Deploy Code Issue Vulnerability (CNVD-2024-20490)

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the complex application in different...

8.8CVSS6.4AI score0.00411EPSS
Exploits0References1
CNVD
CNVD
added 2024/04/16 12:0 a.m.5 views

IBM UrbanCode Deploy Log Information Disclosure Vulnerability

IBM UrbanCode Deploy UCD is a set of application automation deployment tools from International Business Machines IBM. The tool is based on an application deployment automation management information model, and through remote agent technology, to realize the complex application in different...

4.3CVSS6.2AI score0.00443EPSS
Exploits0References1
NVD
NVD
added 2024/04/15 9:15 p.m.18 views

CVE-2024-23558

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.3CVSS6.2AI score0.00308EPSS
Exploits0References1
OSV
OSV
added 2024/04/15 9:15 p.m.4 views

CVE-2024-23558

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.3CVSS5.8AI score0.00308EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/15 9:0 p.m.10 views

CVE-2024-23558 HCL DevOps Deploy / HCL Launch does not invalidate all session authentication cookies after logout

HCL DevOps Deploy / HCL Launch does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system...

6.3CVSS6.7AI score0.00308EPSS
Exploits0References1
CVE
CVE
added 2024/04/15 9:0 p.m.62 views

CVE-2024-23558

The CVE-2024-23558 entry concerns HCL DevOps Deploy / HCL Launch where logout does not invalidate the user session, enabling an authenticated user to impersonate another user on the system. Connected documents confirm the issue origin as a session invalidation failure after logout, with CVSS deta...

6.3CVSS6.6AI score0.00308EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2024/04/15 8:20 p.m.9 views

CVE-2024-23561 HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values...

4.3CVSS6.4AI score0.0036EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/15 8:20 p.m.14 views

CVE-2024-23561 HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability

HCL DevOps Deploy / HCL Launch is vulnerable to sensitive information disclosure vulnerability due to insufficient obfuscation of sensitive values...

4.3CVSS4.7AI score0.0036EPSS
Exploits0References1
NVD
NVD
added 2024/04/15 8:15 p.m.12 views

CVE-2024-23560

HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type...

4.9CVSS4.8AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2024/04/15 8:15 p.m.2 views

CVE-2024-23560

HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type...

4.9CVSS5.8AI score0.00324EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/15 7:22 p.m.14 views

CVE-2024-23560 HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom type

HCL DevOps Deploy / HCL Launch could be vulnerable to incomplete revocation of permissions when deleting a custom security resource type...

4.4CVSS5.1AI score0.00324EPSS
Exploits0References1
OSV
OSV
added 2024/04/15 6:15 p.m.2 views

CVE-2024-23559

HCL DevOps Deploy / Launch is generating an obsolete HTTP header...

6.1CVSS5.8AI score0.00308EPSS
Exploits0References1
NVD
NVD
added 2024/04/15 6:15 p.m.15 views

CVE-2024-23559

HCL DevOps Deploy / Launch is generating an obsolete HTTP header...

6.1CVSS6.3AI score0.00308EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/15 5:31 p.m.26 views

CVE-2024-23559 HCL DevOps Deploy / Launch is generating an obsolete HTTP header

HCL DevOps Deploy / Launch is generating an obsolete HTTP header...

6.1CVSS7AI score0.00308EPSS
Exploits0References1
Rows per page
Query Builder