56 matches found
EUVD-2009-2733
Malware in sbrugna...
EUVD-2006-2437
Malware in sbrugna...
EUVD-2021-26745
Malware in sbrugna...
EUVD-2011-4966
Malware in sbrugna...
EUVD-2006-4213
Malware in sbrugna...
Security Bulletin: IBM Integrated Management Module II (IMM2) is affected by First Failure Data Capture (FFDC) information disclosure (CVE-2018-9068)
Summary IBM Integrated Management Module II IMM2 has addressed the following First Failure Data Capture FFDC information disclosure vulnerability. Vulnerability Details CVEID: CVE-2018-9068 DESCRIPTION: Lenovo Integrated Management Module 2 IMM2 contains hard-coded credentials to access the SFTP...
MAL-2022-3019 Malicious code in ffdc-api-security (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0ae2f65c912b2a778ebfc3529511c45cd101efb4fe7d57112acd1ecb2804b78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3020 Malicious code in ffdc-corporate-banking-sample (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 08472bfd3240403d8d2393bd762ea64b2fadc1969b830b814cd09783957c3481 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in ffdc-api-security (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f0ae2f65c912b2a778ebfc3529511c45cd101efb4fe7d57112acd1ecb2804b78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-31070
NestJS Proxy is a NestJS module to decorate and proxy calls. Prior to version 0.7.0, the nestjs-proxy library did not have a way to block sensitive cookies e.g. session cookies from being forwarded to backend services configured by the application developer. This could have led to sensitive cooki...
CVE-2021-3473
An internal product security audit of Lenovo XClarity Controller XCC discovered that the XCC configuration backup/restore password may be written to an internal XCC log buffer if Lenovo XClarity Administrator LXCA is used to perform the backup/restore. The backup/restore password typically exists...
Default credentials
An internal product security audit of Lenovo XClarity Controller XCC discovered that the XCC configuration backup/restore password may be written to an internal XCC log buffer if Lenovo XClarity Administrator LXCA is used to perform the backup/restore. The backup/restore password typically exists...
CVE-2021-3473
An internal product security audit of Lenovo XClarity Controller XCC discovered that the XCC configuration backup/restore password may be written to an internal XCC log buffer if Lenovo XClarity Administrator LXCA is used to perform the backup/restore. The backup/restore password typically exists...
Lenovo XClarity Controller (XCC) Information Disclosure Vulnerability - Lenovo Support US
No description provided...
Lenovo XClarity Controller 安全漏洞
Lenovo XClarity Controller XCC is a server-embedded management engine from Lenovo China that is used to standardize and automate basic server management tasks. A security vulnerability exists in Lenovo XClarity Controller that stems from. An internal product security audit of Lenovo XCC Lenovo...
CVE-2020-8356
An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional passwords, if specified, for the Syslog and SMTP forwarders are written to an internal LXCO log file in clear text. Affected logs are captured in the First Failure Data Capture FFDC service log. The FFDC...
CVE-2020-8356
An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional passwords, if specified, for the Syslog and SMTP forwarders are written to an internal LXCO log file in clear text. Affected logs are captured in the First Failure Data Capture FFDC service log. The FFDC...
CVE-2021-3417
An internal product security audit of LXCO, prior to version 1.2.2, discovered that credentials for Lenovo XClarity Administrator LXCA, if added as a Resource Manager, are encoded then written to an internal LXCO log file each time a session is established with LXCA. Affected logs are captured in...
Design/Logic Flaw
An internal product security audit of LXCO, prior to version 1.2.2, discovered that optional passwords, if specified, for the Syslog and SMTP forwarders are written to an internal LXCO log file in clear text. Affected logs are captured in the First Failure Data Capture FFDC service log. The FFDC...
Design/Logic Flaw
An internal product security audit of LXCO, prior to version 1.2.2, discovered that credentials for Lenovo XClarity Administrator LXCA, if added as a Resource Manager, are encoded then written to an internal LXCO log file each time a session is established with LXCA. Affected logs are captured in...