Lucene search
K

27 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/03 7:43 p.m.1 views

CVE-2025-36364

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system...

6.2CVSS5.9AI score0.00108EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2026/03/03 7:43 p.m.13 views

CVE-2025-36364

Summary: CVE-2025-36364 affects IBM DevOps Plan REST APIs (versions 3.0.0–3.0.5). Affected component: web page cache can be stored locally and read by another user on the same system, exposing sensitive data. Root cause/impact: Local cache exposure potentially leaks sensitive information; CVSS ba...

6.2CVSS5.9AI score0.00108EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.6 views

IBM DevOps Plan 安全漏洞

IBM DevOps Plan is a change management collaboration platform provided by the American multinational company International Business Machines IBM. Versions of IBM DevOps Plan 3.0.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the ability for web cache data to ...

6.2CVSS5.8AI score0.00108EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.7 views

PT-2026-22798

Name of the Vulnerable Software and Affected Versions IBM DevOps Plan versions 3.0.0 through 3.0.5 Description The software uses an inadequate account lockout setting, which could allow a remote attacker to brute force account credentials. Recommendations Update to a version beyond 3.0.5...

5.9CVSS6AI score0.00252EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-22799

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system...

6.2CVSS5.9AI score0.00108EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.6 views

IBM DevOps Plan 安全漏洞

IBM DevOps Plan is a change management collaboration platform provided by the American multinational company International Business Machines IBM. Versions of IBM DevOps Plan 3.0.0 and earlier contained security vulnerabilities. These vulnerabilities were due to improper account locking settings,...

7.5CVSS5.9AI score0.00252EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/26 12:22 p.m.8 views

Security Bulletin: IBM DevOps Plan REST APIs are vulnerable to exposure of sensitive data through request query parameters. (CVE-2025-36364)

Summary A vulnerability has been identified in IBM DevOps Plan REST APIs where sensitive data is transmitted via request query parameters. Vulnerability Details CVEID:CVE-2025-36364 DESCRIPTION: IBM DevOps Plan allows web page cache to be stored locally which can be read by another user on the...

6.2CVSS5.3AI score0.00108EPSS
Exploits0Affected Software1
Rows per page
Query Builder