Lucene search
K

26 matches found

NVD
NVD
added 2025/07/23 3:15 p.m.8 views

CVE-2025-33076

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

8.8CVSS0.00395EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 2:49 p.m.4 views

CVE-2025-33077 IBM Engineering Systems Design Rhapsody code execution

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

8.8CVSS7.2AI score0.00395EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 2:49 p.m.9 views

CVE-2025-33077 IBM Engineering Systems Design Rhapsody code execution

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

8.8CVSS0.00395EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 2:49 p.m.25 views

CVE-2025-33077

IBM Engineering Systems Design Rhapsody is affected by CVE-2025-33077: stack-based buffer overflow due to improper bounds checking in versions 9.0.2, 10.0, and 10.0.1. A local attacker could overflow a buffer and execute arbitrary code. The IBM Security Bulletin confirms the affected versions and...

8.8CVSS7.2AI score0.00395EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/07/23 2:48 p.m.8 views

CVE-2025-33076 IBM Engineering Systems Design Rhapsody code execution

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system...

8.8CVSS0.00395EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/23 2:47 p.m.5 views

CVE-2025-33020 IBM Engineering Systems Design Rhapsody information disclosure

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information without encryption that could allow an attacker to obtain highly sensitive information...

5.9CVSS0.00101EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/23 2:47 p.m.3 views

CVE-2025-33020 IBM Engineering Systems Design Rhapsody information disclosure

IBM Engineering Systems Design Rhapsody 9.0.2, 10.0, and 10.0.1 transmits sensitive information without encryption that could allow an attacker to obtain highly sensitive information...

5.9CVSS5.8AI score0.00101EPSS
Exploits0References1
CVE
CVE
added 2025/07/23 2:47 p.m.23 views

CVE-2025-33020

CVE-2025-33020 affects IBM Engineering Systems Design Rhapsody versions 9.0.2, 10.0, and 10.0.1 . The root issue is transmission of sensitive information without encryption, leading to potential information disclosure. The vulnerability is network-based with no user interaction required and has a...

7.5CVSS5.8AI score0.00101EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/23 8:6 a.m.5 views

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2025-33077

Summary IBM Engineering Systems Design Rhapsody was vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system. Vulnerability Details CVEID:CVE-2025-33077 DESCRIPTION: IBM Engineering Systems...

8.8CVSS7.2AI score0.00395EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/23 8:2 a.m.4 views

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2025-33020

Summary IBM Engineering Systems Design Rhapsody was vulnerable to transmits sensitive information without encryption that could allow an attacker to obtain highly sensitive information. Vulnerability Details CVEID:CVE-2025-33020 DESCRIPTION: IBM Engineering Systems Design Rhapsody transmits...

7.5CVSS5.7AI score0.00101EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/23 8:0 a.m.4 views

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2024-38434

Summary IBM Engineering Systems Design Rhapsody was vulnerable to use of Potentially Dangerous Function which may allow security feature bypass Vulnerability Details CVEID:CVE-2024-38434 DESCRIPTION: Unitronics Vision PLC – CWE-676: Use of Potentially Dangerous Function may allow security feature...

6.5CVSS6.2AI score0.00437EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/23 7:58 a.m.5 views

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2025-33076

Summary IBM Engineering Systems Design Rhapsody was vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system. Vulnerability Details CVEID:CVE-2025-33076 DESCRIPTION: IBM Engineering Systems...

8.8CVSS7.1AI score0.00395EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.2 views

PT-2025-30590 · Ibm · Engineering Systems Design Rhapsody

Name of the Vulnerable Software and Affected Versions: IBM Engineering Systems Design Rhapsody versions 9.0.2, 10.0, and 10.0.1 Description: IBM Engineering Systems Design Rhapsody transmits sensitive information without encryption, potentially allowing an attacker to obtain highly sensitive...

7.5CVSS5.9AI score0.00101EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/07/23 12:0 a.m.5 views

PT-2025-30592 · Ibm · Engineering Systems Design Rhapsody

Name of the Vulnerable Software and Affected Versions: IBM Engineering Systems Design Rhapsody versions 9.0.2, 10.0, and 10.0.1 Description: IBM Engineering Systems Design Rhapsody is susceptible to a stack-based buffer overflow due to insufficient bounds checking. A local user can exploit this...

8.8CVSS7.3AI score0.00395EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/03 8:20 a.m.12 views

Security Bulletin: IBM Engineering Systems Design Rhapsody was affected by CVE-2024-38081

Summary IBM Engineering Systems Design Rhapsody was affected by Microsoft .NET privilege escalation. Risk was signaficantly low. We have upgraded our Build Environment to resolve this vulnerability. Vulnerability Details CVEID:CVE-2024-38081 DESCRIPTION:.NET, .NET Framework, and Visual Studio...

7.3CVSS6.2AI score0.01292EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/03 8:19 a.m.8 views

Security Bulletin: IBM Engineering Systems Design Rhapsody affected by CVE-2024-6763

Summary jetty-http-12.0.9.jar, jetty-server-12.0.9.jar was vulnerable and IBM Engineering Systems Design Rhapsodyhas upgraded JARs to org.eclipse.jetty:jetty-http:12.0.12;org.eclipse.jetty:jetty-server:12.0.12 Vulnerability Details CVEID:CVE-2024-6763 DESCRIPTION: Eclipse Jetty is a lightweight,...

5.3CVSS6.1AI score0.00986EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 7:43 a.m.5 views

CVE-2024-41779

IBM Engineering Systems Design Rhapsody - Model Manager 7.0.2 and 7.0.3 could allow a remote attacker to bypass security restrictions, caused by a race condition. By sending a specially crafted request, an attacker could exploit this vulnerability to remotely execute code...

9.8CVSS6.9AI score0.00838EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/03 9:21 a.m.21 views

Security Bulletin: The IBM® Engineering Lifecycle Engineering products are vulnerable to CVE-2021-28167

Summary A flaw in Eclipse OpenJ9 allows malicious code to access static methods and fields in classes before those classes have been initialized. Following IBM® Engineering Lifecycle Engineering product is vulnerable to this attack, it has been addressed in this bulletin: IBM Engineering Systems...

6.5CVSS6.6AI score0.01104EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/28 6:59 a.m.2922 views

Security Bulletin: Apache Log4j (CVE-2021-44228) vulnerability in IBM Engineering Systems Design Rhapsody (Rhapsody)

Summary IBM Engineering Systems Design Rhapsody Rhapsody components, Knowledge Center and Test Conductor are impacted by the Apache Log4j vulnerability CVE-2021-44228. Customers are encouraged to take quick action to apply fix. Vulnerability Details CVEID:CVE-2021-44228 DESCRIPTION: Apache Log4j...

10CVSS9.8AI score0.99999EPSS
Exploits352Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/05/27 9:21 p.m.73 views

Security Bulletin: IBM Engineering Systems Design Rhapsody (Rhapsody) is vulnerable to arbitrary code execution due to Apache Log4j (CVE-2021-44832, CVE-2021-45046, ) and denial of service due to Apache Log4j (CVE-2021-45105)

Summary There are Remote Attack Vulnerabilities in Apache Log4j CVE-2021-45105, CVE-2021-45046, CVE-2021-44832 which is used by IBM Engineering Systems Design Rhapsody RDM components; Knowledge Center and Test Conductor for logging . The fix includes upgrade to Apache Log4j v2.17.1. Vulnerability...

10CVSS2.2AI score0.99999EPSS
Exploits358Affected Software2
Rows per page
Query Builder