41 matches found
EUVD-2021-16244
Malware in sbrugna...
EUVD-2021-25487
Malware in sbrugna...
EUVD-2021-16243
Malware in sbrugna...
EUVD-2021-16241
Malware in sbrugna...
EUVD-2021-16240
Malware in sbrugna...
EUVD-2021-7848
Malicious code in bioql PyPI...
EUVD-2021-7849
Malicious code in bioql PyPI...
Security Bulletin: i2 Analysts' Notebook memory corruption vulnerability
Summary i2 Analysts' Notebook is potentially vulnerable to a memory corruption vulnerability Vulnerability Details CVEID: CVE-2021-39050 DESCRIPTION: IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local...
Security Bulletin: i2 Analysts' Notebook memory corruption vulnerability
Summary i2 Analysts' Notebook is vulnerable to potential memory corruption vulnerabilities Vulnerability Details CVEID: CVE-2021-39049 DESCRIPTION: IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacke...
CVE-2021-39050
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440...
CVE-2021-39049
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...
Stack overflow
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...
Stack overflow
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214440...
CVE-2021-39050
The CVE-2021-39050 entry affects IBM i2 Analyst’s Notebook versions 9.2.0, 9.2.1, and 9.2.2, describing a stack-based buffer overflow caused by improper bounds checking that could allow a local attacker to escalate privileges. The IBM security bulletin (9.3.1 update) and related IBM X-Force refer...
CVE-2021-39049
CVE-2021-39049 affects IBM i2 Analyst’s Notebook 9.2.0, 9.2.1, and 9.2.2, with a stack-based buffer overflow caused by improper bounds checking. A local attacker could overflow a buffer and gain lower-privilege access. IBM’s security bulletin notes a memory-corruption vulnerability and directs re...
CVE-2021-39049
IBM i2 Analyst's Notebook 9.2.0, 9.2.1, and 9.2.2 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and gain lower level privileges. IBM X-Force ID: 214439...
Security Bulletin: i2 Analyze has an information disclosure vulnerability (CVE-2019-17638)
Summary i2 Analyze uses a version of Jetty wth known vulnerabilities. Vulnerability Details CVEID: CVE-2019-17638 DESCRIPTION: Eclipse Jetty, as bundled in Jenkins, could allow a remote attacker to obtain sensitive information, caused by an issue with corrupt HTTP response buffer being sent to...
IBM i2 Analyst's Notebook Premium Information Disclosure Vulnerability
IBM i2 Analyst's Notebook Premium is an intuitive analysis environment that combines data storage, analysis tools, visualization and dissemination capabilities. i2 Analyst's Notebook Premium contains a security vulnerability that could be exploited by remote attackers to obtain sensitive...
IBM i2 Analyst's Notebook Premium Information Disclosure Vulnerability (CNVD-2021-55189)
IBM i2 Analyst's Notebook Premium is a premium version of IBM i2 Analyst's Notebook from IBM USA. IBM i2 Analyst's Notebook Premium has an information disclosure vulnerability that could be exploited by an attacker to obtain sensitive information...
CVE-2021-29769
IBM i2 Analyst's Notebook Premium IBM i2 Analyze 4.3.0, 4.3.1, and 4.3.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie...