Lucene search
K

414 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-20684

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00221EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-12124

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00534EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-31080

Malicious code in bioql PyPI...

8.8CVSS9.3AI score0.00802EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-42246

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00588EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/10 7:20 p.m.6 views

CVE-2025-27367

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved withou...

6.5CVSS6.8AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2025/07/08 7:15 p.m.7 views

CVE-2025-27367

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved withou...

6.5CVSS5.8AI score0.00221EPSS
Exploits0References1
NVD
NVD
added 2025/07/08 7:15 p.m.7 views

CVE-2025-27367

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved withou...

6.5CVSS0.00221EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/08 6:42 p.m.6 views

CVE-2025-27367 IBM OpenPages with Watson improper input validation

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved withou...

5.3CVSS6.2AI score0.00221EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/08 6:42 p.m.9 views

CVE-2025-27367 IBM OpenPages with Watson improper input validation

IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to improper input validation due to bypassing of client-side validation for the data types and requiredness of fields for GRC Objects when an authenticated user sends a specially crafted payload to the server allowing for data to be saved withou...

5.3CVSS0.00221EPSS
Exploits0References1
CVE
CVE
added 2025/07/08 6:42 p.m.24 views

CVE-2025-27367

CVE-2025-27367 affects IBM OpenPages with Watson versions 8.3 through 9.0. The issue is described as improper input validation where an authenticated user can bypass client-side validation for GRC Object fields and craft a payload that allows data to be saved without required fields being stored....

6.5CVSS6.2AI score0.00221EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.5 views

PT-2025-28656 · Ibm · Ibm Openpages With Watson

Name of the Vulnerable Software and Affected Versions: IBM OpenPages with Watson versions 8.3 through 9.0 Description: The issue is related to improper input validation. This occurs due to the bypassing of client-side validation for data types and the requiredness of fields for GRC Objects. When ...

6.5CVSS5.6AI score0.00221EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/06/12 12:18 a.m.9 views

CVE-2025-42982

SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...

8.8CVSS8.6AI score0.00344EPSS
Exploits0References1
NVD
NVD
added 2025/06/10 1:15 a.m.16 views

CVE-2025-42982

SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...

8.8CVSS0.00344EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/10 12:10 a.m.3 views

CVE-2025-42982 Information Disclosure in SAP GRC (AC Plugin)

SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...

8.8CVSS8.7AI score0.00344EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/10 12:10 a.m.28 views

CVE-2025-42982 Information Disclosure in SAP GRC (AC Plugin)

SAP GRC allows a non-administrative user to access and initiate transaction which could allow them to modify or control the transmitted system credentials. This causes high impact on confidentiality, integrity and availability of the application...

8.8CVSS0.00344EPSS
Exploits0References2
CVE
CVE
added 2025/06/10 12:10 a.m.70 views

CVE-2025-42982

CVE-2025-42982 affects SAP GRC. The vulnerability allows a non-administrative user to access and initiate a transaction that could modify or control transmitted system credentials, with high impact to confidentiality, integrity, and availability. Root cause is insufficient authorization controls ...

8.8CVSS8.7AI score0.00344EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.15 views

SAP GRC 安全漏洞

SAP GRC is a suite of solutions and products from SAP, Germany. can help you manage enterprise resources in a way that minimizes risk, builds trust, and reduces compliance costs. A security vulnerability exists in SAP GRC that stems from improper authorization and could result in modification or...

8.8CVSS6.6AI score0.00344EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.15 views

PT-2025-24586 · Sap · Sap Grc

Name of the Vulnerable Software and Affected Versions: SAP GRC affected versions not specified Description: The issue allows a non-administrative user to access and initiate transactions, potentially enabling them to modify or control transmitted system credentials. This poses a high impact on th...

9CVSS6.1AI score0.00344EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/23 4:40 a.m.11 views

CVE-2023-0019

In SAP GRC Process Control - versions GRCFNDA V1200, GRCFNDA V8100, GRCPINW V1100700, GRCPINW V1100731, GRCPINW V1200750, remote-enabled function module in the proprietary SAP solution enables an authenticated attacker with minimal privileges to access all the confidential data stored in the...

6.5CVSS6.5AI score0.00534EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:4 a.m.7 views

CVE-2022-43342

A stored cross-site scripting XSS vulnerability in the Add function of Eramba GRC Software c2.8.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the KPI Title text field...

5.4CVSS5.6AI score0.00485EPSS
Exploits1References1
Rows per page
Query Builder