66 matches found
CVE-2021-40684
CVE-2021-40684 affects Talend ESB Runtime across versions 5.1–7.3.1-R2021-09, 7.2.1-R2021-09, and 7.1.1-R2021-09, due to an unauthenticated Jolokia HTTP endpoint that exposes the container’s JMX. This endpoint enables remote read/write access to the runtime/container and could allow an attacker t...
Talend ESB 授权问题漏洞
Talend ESB is a reliable and scalable Enterprise Service Bus ESB from Talend, Inc. that enables development teams to manage integration projects in a holistic manner, combining application and data management integration in complex heterogeneous computing environments. A security vulnerability...
Security Bulletin: IBM Flex System FC5022 16Gb SAN Scalable Switch, FC5022 24-port 16Gb ESB SAN Scalable Switch, FC5022 24-port 16Gb SAN Scalable Switch (and Two 16Gb FC SFPs) Firmware is affected by the following OpenSSL vulnerabilities
Summary Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project Vulnerability Details Abstract Security vulnerabilities have been discovered in OpenSSL that were reported on June 5, 2014 by the OpenSSL Project Content Vulnerability Detail...
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with WebSphere Enterprise Service Bus Registry Edition (CVE-2015-1885)
Summary WebSphere Application Server is shipped as a component of WebSphere Enterprise Service Bus Registry Edition. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security...
Security Bulletin: Security vulnerabilities have been identified in IBM DB2 shipped with WebSphere Enterprise Service Bus Registry Edition (CVE-2013-6747, CVE-2014-0963)
Summary IBM DB2 is shipped as a component of WebSphere Enterprise Service Bus Registry Edition. Information about security vulnerabilities that affect IBM DB2 have been published in a security bulletin Vulnerability Details Consult the security bulletin IBM DB2 is impacted by multiple TLS/SSL...
Wordpress esb-csv-import-export plugin cross-site scripting vulnerability
WordPress is the WordPress Software Foundation of a set of blogging platform developed using the PHP language , the platform supports PHP and MySQL servers to set up a personal blog site . esb-csv-import-export plugin is used in one of the plug-ins for importing and exporting CSV files . A...
CVE-2017-17753
Multiple cross-site scripting XSS vulnerabilities in the esb-csv-import-export plugin through 1.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 cietype, 2 cieimport, 3 cieupdate, or 4 cieignore parameter to includes/admin/views/esb-cie-import-export-page.ph...
CVE-2017-17753
The CVE-2017-17753 entry concerns the WordPress plugin esb-csv-import-export (versions up to 1.1). The vulnerability is an XSS in includes/admin/views/esb-cie-import-export-page.php where the GET parameters cie_type, cie_import, cie_update, and cie_ignore are echoed back to the user without prope...
Important: Red Hat Security Advisory: Red Hat JBoss Fuse Service Works 6.0.0 security update
Red Hat JBoss Fuse Service Works 6.0.0 roll up patch 5, which fixes two security issues and various bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...
Important: Red Hat Security Advisory: Red Hat JBoss Fuse Service Works 6.0.0 security update
Red Hat JBoss Fuse Service Works 6.0.0 roll up patch 4, which fixes multiple security issues and various bugs, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base score...
Important: Red Hat Security Advisory: Fuse ESB Enterprise/Fuse MQ Enterprise 7.1.0 security update
Fuse ESB Enterprise/MQ Enterprise 7.1.0 R1 P8 Patch 8 on Rollup Patch 1, which fixes two security issues, is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...
Mulesoft ESB Runtime 3.5.1 - Privilege Escalation Vulnerability
No description provided by source. Mulesoft ESB Runtime 3.5.1 Authenticated Privilege Escalation → Remote Code Execution Mulesoft ESB Runtime 3.5.1 allows any arbitrary authenticated user to create an administrator user due to a lack of permissions check in the handler/securityService.rpc endpoin...
Mulesoft ESB Runtime 3.5.1 - Privilege Escalation Vulnerability
Exploit for jsp platform in category web applications Mulesoft ESB Runtime 3.5.1 Authenticated Privilege Escalation → Remote Code Execution Mulesoft ESB Runtime 3.5.1 allows any arbitrary authenticated user to create an administrator user due to a lack of permissions check in the...
Mulesoft ESB Runtime 3.5.1 - Privilege Escalation
Mulesoft ESB Runtime 3.5.1 - Privilege Escalation...
Mulesoft ESB Runtime 3.5.1 - Privilege Escalation
Mulesoft ESB Runtime 3.5.1 Authenticated Privilege Escalation → Remote Code Execution Mulesoft ESB Runtime 3.5.1 allows any arbitrary authenticated user to create an administrator user due to a lack of permissions check in the handler/securityService.rpc endpoint. The following HTTP request can b...
Mulesoft ESB Runtime 3.5.1 Privilege Escalation / Code Execution Vulnerabilities
Mulesoft ESB Runtime version 3.5.1 suffers from an authenticated privilege escalation vulnerability that can lead to remote code execution. Mulesoft ESB Runtime 3.5.1 Authenticated Privilege Escalation → Remote Code Execution Mulesoft ESB Runtime 3.5.1 allows any arbitrary authenticated user to...
Mulesoft ESB Runtime 3.5.1 Privilege Escalation / Code Execution
Mulesoft ESB Runtime 3.5.1 Authenticated Privilege Escalation → Remote Code Execution Mulesoft ESB Runtime 3.5.1 allows any arbitrary authenticated user to create an administrator user due to a lack of permissions check in the handler/securityService.rpc endpoint. The following HTTP request can b...
Important: Red Hat Security Advisory: Fuse ESB Enterprise/Fuse MQ Enterprise 7.1.0 update
This advisory contains instructions on how to resolve one security issue in the Elasticsearch component in Fuse ESB Enterprise and Fuse MQ Enterprise 7.1.0. Red Hat Product Security has rated this security issue as having Important security impact. A Common Vulnerability Scoring System CVSS base...
Important: Red Hat Security Advisory: Fuse ESB Enterprise 7.1.0 security update
Fuse ESB Enterprise 7.1.0 R1 P4 Patch 4 on Rollup Patch 1, a security update that addresses one security issue, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System CV...
CVE-2011-1483
wsf/common/DOMUtils.java in JBossWS Native in Red Hat JBoss Enterprise Application Platform 4.2.0.CP09, 4.3, and 5.1.1; JBoss Enterprise Portal Platform 4.3.CP06 and 5.1.1; JBoss Enterprise SOA Platform 4.2.CP05, 4.3.CP05, and 5.1.0; JBoss Communications Platform 1.2.11 and 5.1.1; JBoss Enterpris...