22 matches found
EUVD-2019-14336
Malware in sbrugna...
EUVD-2023-47442
Malicious code in bioql PyPI...
EUVD-2022-46861
Malicious code in bioql PyPI...
EUVD-2024-35215
Malicious code in bioql PyPI...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Error handling has been added for the brcmfusbdlwriteimage function. The brcmfusbdlcmd function calls brcmf80211writeimage, but it does not check its return value. If the brcmfusbdlcmd function fails, the...
CVE-2020-5026
IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.2.0 through 3.2.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM...
CVE-2025-37990
In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Add error handling for brcmfusbdlwriteimage The function brcmfusbdlwriteimage calls the function brcmfusbdlcmd but dose not check its return value. The 'state.state' and the 'state.bytes' are uninitialized ...
CVE-2025-37990
CVE-2025-37990 affects the Linux kernel’s wifi/brcm80211 fmac, where brcmf_usb_dl_writeimage() did not validate the return value of brcmf_usb_dl_cmd(), leaving state.state and state.bytes uninitialized if the call failed. The fix adds error handling to jump to the error path when brcmf_usb_dl_cmd...
CVE-2024-56495
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56496 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-49798 IBM ApplinX Information Disclosure
IBM ApplinX 11.1 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...
IBM Control Center 安全漏洞
IBM Control Center is a centralized monitoring and management system from International Business Machines IBM. A security vulnerability exists in IBM Control Center versions 6.2.1 and 6.3.1. An attacker could exploit the vulnerability to obtain sensitive information when a browser returns a...
CVE-2024-52897
IBM MQ 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD web console could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned...
CVE-2024-51460 IBM InfoSphere Information Server information disclosure
IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information when a detailed technical error message is returned in a stack trace. This information could be used in further attacks against the system...
CVE-2021-39033
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and 6.1.0.0 through 6.1.1.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...
IBM QRadar SIEM 安全漏洞
IBM QRadar SIEM is an IBM USA solution that utilizes security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture, generates detailed reports on data access and user activity, and more. An information...
CVE-2020-4600
IBM Security Guardium Insights 2.0.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 184832...
IBM Jazz Foundation Information Disclosure Vulnerability (CNVD-2021-03006)
IBM Jazz Foundation is a software development collaboration platform for IBM Rational products. An information disclosure vulnerability exists in IBM Jazz Foundation. A remote attacker could exploit this vulnerability to obtain sensitive information from a detailed technical error message returne...
CVE-2020-4761
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 5.2.6.52, 6.0.0.0 through 6.0.3.2, and 6.1.0.0 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against t...
IBM Sterling B2B Integrator 信息泄露漏洞
IBM Sterling B2B Integrator is a transaction engine, a set of components that run the processes you define and manage based on your business needs. An information disclosure vulnerability exists in IBM Sterling B2B Integrator 5.2.0.0 - 5.2.6.52, 6.0.0.0 - 6.0.3.2, 6.1.0.0. A remote attacker could...