Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-12401

Malware in sbrugna...

10CVSS9.5AI score0.03432EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.36 views

EUVD-2020-26234

Malware in sbrugna...

6.4CVSS6.1AI score0.00495EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.39 views

Security Bulletin: A vulnerability in OpenSSL affects the IBM FlashSystem models 840 and 900 (CVE-2016-2107)

Summary There is a vulnerability in open source OpenSSL to which the IBM® FlashSystem™ 840 and IBM FlashSystem 900 are susceptible. An exploit of this vulnerability could allow a remote user with the ability to conduct a man-in-the-middle attack to decrypt traffic. Vulnerability Details CVEID:...

5.9CVSS6.1AI score0.89058EPSS
Exploits6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.38 views

Security Bulletin: A Vulnerability in Apache Tomcat affects the IBM FlashSystem models 840 and 900

Summary There is a vulnerability in Apache Tomcat to which the IBM® FlashSystem™ 840 and FlashSystem™ 900 are susceptible. An exploit of this vulnerability CVE-2017-6056 could allow a remote attacker to wage a denial of service attack. Vulnerability Details CVEID: CVE-2017-6056 DESCRIPTION: Apach...

7.5CVSS7.4AI score0.07486EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.42 views

Security Bulletin: Vulnerability in IBM Java Runtime affects the IBM FlashSystem models 840 and 900 (CVE-2016-0475).

Summary There are vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 7 that is used by IBM® FlashSystem™ 840 and IBM FlashSystem 900. These issues were disclosed as part of the IBM Java SDK updates in January 2016. IBM FlashSystem 840 and IBM FlashSystem 900 have...

5.8CVSS5.9AI score0.03663EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.50 views

Security Bulletin: A vulnerability in Network Security Services (NSS) affects the IBM FlashSystem models 840 and 900 (CVE-2015-2730)

Summary There is a vulnerability in Network Security Services NSS to which the IBM® FlashSystem™ 840 and IBM FlashSystem 900 are susceptible. An exploit of this vulnerability could allow a remote attacker could exploit this vulnerability to forge signatures. Vulnerability Details CVEID:...

4.3CVSS4.4AI score0.03594EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.35 views

Security Bulletin: A vulnerability in Java affects the IBM FlashSystem 840 and 900

Summary There is a vulnerability in Java to which the IBM FlashSystem™ 840 and FlashSystem 900 are susceptible CVE-2019-2602. An exploit of CVE-2019-2602 could make the system susceptible to a denial of service attack. Vulnerability Details CVEID: CVE-2019-2602 DESCRIPTION: An unspecified...

7.5CVSS7.4AI score0.0441EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/02/18 1:45 a.m.82 views

Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem models 840 and 900

Summary There are vulnerabilities in Apache Tomcat to which the IBM® FlashSystem™ 840 and FlashSystem™ 900 are susceptible. An exploit of these vulnerabilities CVE-2016-6816, CVE-2016-6817, and CVE-2016-6796 could allow a remote attacker to obtain sensitive information, cause an application to...

7.5CVSS9.1AI score0.39633EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/10/28 6:18 p.m.18 views

Security Bulletin: A vulnerability exists in the restricted shell of the IBM FlashSystem 900

Summary A vulnerability exists in the IBM FlashSystem 900 restricted shell CVE-2021-29873. An exploit of this vulnerability could allow an authenticated attacker to access sensitive information or cause a denial of service. Vulnerability Details CVEID: CVE-2021-29873 DESCRIPTION: IBM Flash System...

8.8CVSS1.3AI score0.01477EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/12 7:37 p.m.15 views

Security Bulletin: A vulnerability exists in the management GUI of the IBM FlashSystem 900

Summary A vulnerability CVE-2020-4987 affects the IBM FlashSystem model 900 management GUI. Vulnerability Details CVEID: CVE-2020-4987 DESCRIPTION: IBM FlashSystem 900 user management GUI is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript...

6.4CVSS0.4AI score0.00495EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2021/05/06 12:0 a.m.6 views

IBM FlashSystem 900 Cross-Site Scripting Vulnerability

IBM FlashSystem 900 is a software application from IBM, USA. Provides a subtle delay. A cross-site scripting vulnerability exists in IBM FlashSystem 900 versions 1.5.2.9 and 1.6.1.3 that allows an attacker to alter the intended functionality by embedding arbitrary JavaScript code in the Web UI,...

6.4CVSS6AI score0.00495EPSS
Exploits0References1
Prion
Prion
added 2021/05/04 4:15 p.m.19 views

Cross site scripting

The IBM FlashSystem 900 user management GUI is vulnerable to stored cross-site scripting in code versions 1.5.2.8 and prior and 1.6.1.2 and prior. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to...

3.5CVSS5.2AI score0.00495EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/05/03 12:0 a.m.3 views

CVE-2020-4987

The IBM FlashSystem 900 user management GUI is vulnerable to stored cross-site scripting in code versions 1.5.2.8 and prior and 1.6.1.2 and prior. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to...

6.4CVSS5.9AI score0.00495EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/14 3:19 p.m.37 views

Security Bulletin: Vulnerabilities in Java affect the IBM FlashSystem 900 (CVE-2019-2989 and CVE-2019-2964)

Summary There are two vulnerabilities in Java to which IBM FlashSystem™ 900 is susceptible CVE-2019-2989 and CVE-2019-2964. Vulnerability Details CVEID: CVE-2019-2989 DESCRIPTION: An unspecified vulnerability in Java SE could allow an unauthenticated attacker to cause no confidentiality impact,...

6.8CVSS2AI score0.03533EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/03 8:55 p.m.26 views

Security Bulletin: A vulnerability in RC4 stream cipher affects IBM FlashSystem 900 (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects the IBM FlashSystem 900. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit this...

5CVSS1AI score0.74006EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/03 8:50 p.m.30 views

Security Bulletin: Vulnerability in RC4 stream cipher affects IBM FlashSystem 900 (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects the IBM FlashSystem 900. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit this...

5CVSS6.6AI score0.74006EPSS
Exploits0Affected Software1
OSV
OSV
added 2018/10/18 3:29 p.m.5 views

CVE-2018-1822

IBM FlashSystem 900 product GUI allows a specially crafted attack to bypass the authentication requirements of the system, resulting in the ability to remotely change the superuser password. This can be used by an attacker to gain administrative control or to deny service. IBM X-Force ID: 150296...

9.8CVSS5.8AI score0.03432EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:36 a.m.35 views

Security Bulletin: Vulnerability in Mozilla Network Security Services (NSS) affects the IBM FlashSystem models 840 and 900

Summary There is a vulnerability in Mozilla NSS to which the IBM® FlashSystem™ 840 and FlashSystem™ 900 are susceptible. An exploit of this vulnerability CVE-2016-9074 could make the system susceptible to timing side-channel attacks which could be leveraged to allow launch of further attacks on t...

5.9CVSS7.9AI score0.02452EPSS
Exploits0Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:35 a.m.33 views

Security Bulletin: A vulnerability in Open Source Apache Tomcat affects the IBM FlashSystem 900, (CVE-2014-0227)

Summary There is a vulnerability in Open Source Apache Tomcat that is used by the IBM FlashSystem 900 which allows remote attackers to conduct HTTP request smuggling attacks or cause a denial of service under error scenarios. Vulnerability Details CVE-ID: CVE-2014-0227 Description: Apache Tomcat ...

6.4CVSS0.3AI score0.21045EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/18 12:35 a.m.34 views

Security Bulletin: A vulnerability in Open Source Apache Tomcat affects the IBM FlashSystem 900, (CVE-2014-0230)

Summary There is a vulnerability in Open Source Apache Tomcat that is used by the IBM FlashSystem 900 which allows remote attackers to cause a denial of service under certain scenarios. Vulnerability Details CVE-ID: CVE-2014-0230 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service,...

7.8CVSS0.4AI score0.20318EPSS
Exploits0Affected Software1
Rows per page
Query Builder