Lucene search
K

4 matches found

EUVD
EUVD
added yesterday4 views

EUVD-2025-210374

IBM DevOps Automation 1.0.1 and IBM DevOps Loop 1.0.2 does not invalidate session IDs after expiration which could allow an authenticated user to impersonate another user on the system...

8.1CVSS5.8AI score
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/03/19 8:37 p.m.3 views

CVE-2026-30836

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Versions 0.30.0-rc6 and below do not safeguard against unauthenticated certificate issuance through the SCEP UpdateReq. This issue has been fixed in version 0.30.0...

10CVSS5.7AI score0.00296EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/08/14 2:5 p.m.7 views

Security Bulletin: Multiple vulnerabilities in python and babel runtime affect IBM DevOps Automation Code

Summary Python version 3.9.15, vulnerable to CVE-2023-27043, CVE-2024-3220 and babel version 7.27.7 vulnerable to CVE-2025-27789 are used inside DevOps Automation Code 1.0.1 containers. Vulnerability Details CVEID:CVE-2024-3220 DESCRIPTION: There is a defect in the CPython standard library module...

6.2CVSS6.8AI score0.02507EPSS
Exploits1Affected Software1
Qualys Blog
Qualys Blog
added 2018/03/29 4:0 p.m.47 views

Securing your Cloud and Container DevOps Pipeline

Organizations are aggressively moving workloads to public cloud platforms, such as Amazon’s AWS, Google Cloud, and Microsoft’s Azure, upping the ante for InfoSec teams, which must protect these new environments. Driving this growth in cloud computing adoption is its essential role in digital...

7.2AI score
Exploits0
Rows per page
Query Builder