Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1320 matches found

OSV
OSVadded 2024/02/03 6:15 a.m.0 views

CVE-2024-23550

HCL DevOps Deploy / HCL Launch UCD could disclose sensitive user information when installing the Windows agent...

5.5CVSS5.7AI score0.00056EPSS
Exploits0References1
NVD
NVDadded 2024/02/03 6:15 a.m.10 views

CVE-2024-23550

HCL DevOps Deploy / HCL Launch UCD could disclose sensitive user information when installing the Windows agent...

6.2CVSS6.2AI score0.00056EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/02/03 5:32 a.m.7 views

CVE-2024-23550 HCL DevOps Deploy / HCL Launch (UCD) may be vulnerable to sensitive information disclosure

HCL DevOps Deploy / HCL Launch UCD could disclose sensitive user information when installing the Windows agent...

6.2CVSS6.5AI score0.00056EPSS
Exploits0References1
CVE
CVEadded 2024/02/03 5:32 a.m.45 views

CVE-2024-23550

CVE-2024-23550 affects HCL DevOps Deploy / HCL Launch (UCD). The Windows agent installer could disclose sensitive user information, with confidentiality impact described as High in the CVSS data. The provided documents do not specify the underlying root cause details or a fixed version. Public so...

6.2CVSS5.3AI score0.00056EPSS
Exploits0References1Affected Software2
Cvelist
Cvelistadded 2024/02/03 5:32 a.m.14 views

CVE-2024-23550 HCL DevOps Deploy / HCL Launch (UCD) may be vulnerable to sensitive information disclosure

HCL DevOps Deploy / HCL Launch UCD could disclose sensitive user information when installing the Windows agent...

6.2CVSS6.4AI score0.00056EPSS
Exploits0References1
CNNVD
CNNVDadded 2024/02/03 12:0 a.m.1 views

HCL Technologies HCL Launch Security Breach

HCL Technologies HCL Launch is a versatile, enterprise-grade continuous delivery automation software from HCL Technologies, Inc. for handling the most complex deployment processes in DevOps. A security vulnerability exists in HCL DevOps Deploy and HCL Launch UCD that stems from the ability to...

6.2CVSS6.5AI score0.00056EPSS
Exploits0References2
Qualys Blog
Qualys Blogadded 2024/01/24 4:25 p.m.18 views

Upgrade to New UI of Qualys Web Application Scanning (WAS): Bringing You Enhanced Web Application Security

In the dynamic world of cybersecurity, staying ahead means constantly evolving. At Qualys, we understand that the bedrock of outstanding security is continuous improvement and innovation. Thats why were thrilled to announce the latest launch of the new User Interface UI for Qualys Web Application...

7.2AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2024/01/09 12:0 a.m.2 views

PT-2024-10239 · Ibm · Ibm Devops Velocity +1

Name of the Vulnerable Software and Affected Versions: IBM DevOps Velocity version 5.0.0 IBM UrbanCode Velocity versions 4.0.0 through 4.0.25 Description: The issue is related to the use of an untrusted cross-domain policy file, which could allow a remote attacker to gain unauthorized access to...

7.5CVSS7AI score0.00043EPSS
Exploits0References10
Positive Technologies
Positive Technologiesadded 2024/01/09 12:0 a.m.1 views

PT-2024-10238 · Ibm · Ibm Devops Velocity +1

Name of the Vulnerable Software and Affected Versions: IBM DevOps Velocity version 5.0.0 IBM UrbanCode Velocity versions 4.0.0 through 4.0.25 Description: The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive...

7.5CVSS7AI score0.00024EPSS
Exploits0References11
Positive Technologies
Positive Technologiesadded 2024/01/09 12:0 a.m.2 views

PT-2024-10237 · Ibm · Ibm Devops Velocity +1

The affected software is IBM DevOps Velocity and IBM UrbanCode Velocity. The versions of IBM DevOps Velocity that are affected are 5.0.0, and the versions of IBM UrbanCode Velocity that are affected are 4.0.0 through 4.0.25. These versions allow web pages to be stored locally, which can then be...

4CVSS6.2AI score0.00017EPSS
Exploits0References11
IBM Security Bulletins
IBM Security Bulletinsadded 2024/01/04 7:16 a.m.36 views

Security Bulletin: IBM DevOps Release 7.0.0 addresses multiple vulnerabilities.

Summary IBM DevOps Release 7.0.0 addresses multiple vulnerabilities. Vulnerability Details CVEID:CVE-2023-42794 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by accumulation of temporary files on Windows when a web application opened a stream for an uploaded file but...

5.9CVSS7.3AI score0.62079EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2024/01/04 7:11 a.m.40 views

Security Bulletin: IBM DevOps Build 7.0.0 addresses multiple vulnerabilities.

Summary IBM DevOps Build 7.0.0 addresses multiple vulnerabilities. Vulnerability Details CVEID:CVE-2023-45648 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling, caused by improper parsing of HTTP trailer headers. By sending a specially crafted invalid trailer header, an attacker...

5.9CVSS7.3AI score0.62079EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2023/12/21 5:17 p.m.62 views

Security Bulletin: An Eclipse Jetty vulnerability affects IBM Rational Functional Tester

Summary There are multiple vulnerabilities in Eclipse Jetty used by Rational Functional Tester. Rational Functional Tester has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-36478 DESCRIPTION: Eclipse Jetty is vulnerable to a denial of service, caused by an integer overflow a...

7.5CVSS8.2AI score0.944EPSS
Exploits20Affected Software1
IBM Security Bulletins
IBM Security Bulletinsadded 2023/12/18 12:4 p.m.60 views

Security Bulletin: An Eclipse Jetty vulnerability affects IBM Rational Functional Tester

Summary There are multiple vulnerabilities in Eclipse Jetty used by Rational Functional Tester. Rational Functional Tester has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-41900 DESCRIPTION: Eclipse Jetty could allow a remote authenticated attacker to bypass security...

5.3CVSS6.1AI score0.04575EPSS
Exploits2Affected Software1
ATTACKERKB
ATTACKERKBadded 2023/12/14 12:15 a.m.2 views

CVE-2023-21751

Azure DevOps Server Spoofing Vulnerability...

6.5CVSS5.8AI score0.00248EPSS
Exploits0References2Affected Software2
NVD
NVDadded 2023/12/14 12:15 a.m.20 views

CVE-2023-21751

Azure DevOps Server Spoofing Vulnerability...

6.5CVSS0.00248EPSS
Exploits0References1
OSV
OSVadded 2023/12/14 12:15 a.m.2 views

CVE-2023-21751

Azure DevOps Server Spoofing Vulnerability...

6.5CVSS5.8AI score0.00248EPSS
Exploits0References1
Prion
Prionadded 2023/12/14 12:15 a.m.25 views

Spoofing

Azure DevOps Server Spoofing Vulnerability...

4CVSS7.2AI score0.00248EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/12/13 11:14 p.m.22 views

CVE-2023-21751 Azure DevOps Server Spoofing Vulnerability

...

6.5CVSS6.7AI score0.00248EPSS
Exploits0References1
CVE
CVEadded 2023/12/13 11:14 p.m.63 views

CVE-2023-21751

CVE-2023-21751 is a spoofing vulnerability in Azure DevOps Server with documented UI spoofing issues. Public details in connected documents indicate exploitation via manipulation of the user interface, potentially bypassing security restrictions and, in one source, enabling cross-site scripting. ...

6.5CVSS6.7AI score0.00248EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder