Security Bulletin: Vulnerabilities in hoek, Bouncy Castle Inc, Spring Framework, golang, Apache Commons, semver and Google Guava might affect IBM Storage Defender Copy Data Management

Summary IBM Storage Defender Copy Data Management can be affected by vulnerabilities in hoek, Bouncy Castle Inc, Spring Framework, golang, Apache Commons, semver and Google Guava. Vulnerabilities include allowing a malicious user to modify the prototype of "Object" via proto, causing the addition...

EUVD-2022-6771

Malicious code in bioql PyPI...

00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +44483 more potentially affected by CVE-2020-36604 via hoek (>=0.0.21 <=6.1.3)

hoek NPM version =0.0.21, =1.0.1, =1.0.4 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 06-tekbooks =0.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkpu =1.1.0 - 098of6vzvl =1.1.0 and more Source cves: CVE-2020-36604 Source advisory:...

CVE-2020-36604

hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function...

CVE-2020-36604

hoek before 8.5.1 and 9.x before 9.0.3 allows prototype poisoning in the clone function...

00ld8nuivn (=2.1.0), 00rqiw31nd (=2.1.0) +33643 more potentially affected by CVE-2018-3728 via hoek (>=0.0.21 <=4.2.0)

hoek NPM version =0.0.21, =1.0.1, =1.0.4 - 02vx8qsp01 =2.1.0 - 05y6tjgmws =1.1.0 - 06-tekbooks =0.1.0 - 066m7q8o0z =2.1.0 - 06buj9h3su =2.1.0 - 06dre15t8r =2.1.0 - 07fgapmu9l =1.1.0 - 07t2xvu6t4 =2.1.0 - 0850u4lkpu =1.1.0 - 098of6vzvl =1.1.0 and more Source cves: CVE-2018-3728 Source advisory:...

Hoek Denial of Service Vulnerability

Hoek is an implementation of the hapi system. A denial of service vulnerability exists in Hoek versions prior to 5.0.3. A local attacker could exploit this vulnerability to cause a denial of service...