Lucene search
+L

10 matches found

ibm
ibm
added 2020/03/01 6:2 p.m.25 views

Security Bulletin: A security vulnerability has been identified in TensorFlow shipped with PowerAI.

Summary Vulnerability CVE-2020-5215 found in TensorFlow package. Vulnerability Details CVEID: CVE-2020-5215 DESCRIPTION: Tensorflow is vulnerable to a denial of service, caused by a flaw when converting a string from Python to a tf.float16 value. By sending a specially-crafted string, a remote...

7.5CVSS0.1AI score0.00581EPSS
Exploits1Affected Software1
ibm
ibm
added 2020/01/22 6:27 p.m.27 views

Security Bulletin: A security vulnerability has been identified in OpenCV shipped with PowerAI

Summary Multiple Vulnerabilities CVE-2019-14493, CVE-2019-14492 and CVE-2019-14491 were found in OpenCV package. Vulnerability Details CVEID: CVE-2019-14493 DESCRIPTION: An issue was discovered in OpenCV before 4.1.1. There is a NULL pointer dereference in the function cv::XMLParser::parse at...

8.2CVSS0.8AI score0.0337EPSS
Exploits3Affected Software2
ibm
ibm
added 2020/01/22 6:26 p.m.42 views

Security Bulletin: A security vulnerability has been identified in lodash shipped with PowerAI.

Summary Vulnerability CVE-2019-10744 found in lodash package. Vulnerability Details CVEID: CVE-2019-10744 DESCRIPTION: Versions of lodash lower than 4.17.12 are vulnerable to Prototype Pollution. The function defaultsDeep could be tricked into adding or modifying properties of Object.prototype...

9.1CVSS1AI score0.05006EPSS
Exploits2Affected Software2
ibm
ibm
added 2020/01/22 11:10 a.m.32 views

Security Bulletin: A security vulnerability has been identified in SQLite shipped with PowerAI

Summary Vulnerability CVE-2019-8457 in SqLite package Vulnerability Details CVEID: CVE-2019-8457 DESCRIPTION: SQLite3 from 3.6.0 to and including 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode function when handling invalid rtree tables. CVSS Base score: 5.3 CVSS Temporal Score:...

9.8CVSS0.9AI score0.45426EPSS
Exploits0Affected Software2
ibm
ibm
added 2020/01/10 7:15 p.m.28 views

Security Bulletin: A security vulnerability has been identified in Pillow shipped with PowerAI.

Summary Vulnerability CVE-2019-16865 was found in a Pillow package Vulnerability Details CVEID: CVE-2019-16865 DESCRIPTION: An issue was discovered in Pillow versions before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or...

7.5CVSS0.9AI score0.03154EPSS
Exploits0Affected Software1
ibm
ibm
added 2020/01/10 7:12 p.m.35 views

Security Bulletin: A security vulnerability has been identified in Openssl shipped with PowerAI.

Summary Multiple vulnerabilities CVE-2019-1547, CVE-2019-1549 and CVE-2019-1563 were found in Openssl package. Vulnerability Details CVEID: CVE-2019-1547 DESCRIPTION: Normally in OpenSSL, EC groups have a cofactor present which is used in side channel resistant code paths. However, it is possible...

5.3CVSS0.5AI score0.06232EPSS
Exploits0Affected Software1
ibm
ibm
added 2020/01/08 4:47 p.m.38 views

Security Bulletin: A security vulnerability has been identified in Kubernetes shipped with PowerAI Vision

Summary Multiple vulnerabilities CVE-2019-11251, CVE-2019-11253 in Kubernetes package. Vulnerability Details CVEID: CVE-2019-11251 DESCRIPTION: Kubernetes could allow a remote attacker to gain unauthorized access to the system, caused by an error in kubectl cp that allows a combination of two...

7.5CVSS0.6AI score0.25939EPSS
Exploits2Affected Software1
ibm
ibm
added 2020/01/08 4:41 a.m.41 views

Security Bulletin: A security vulnerability has been identified in SQLite shipped with PowerAI Vision

Summary Vulnerability CVE-2019-8457 in SQLite package. Vulnerability Details CVEID: CVE-2019-8457 DESCRIPTION: SQLite3 version 3.6.0 - 3.27.2 is vulnerable to heap out-of-bound read in the rtreenode function when handling invalid rtree tables. CVSS Base score: 5.3 CVSS Temporal Score: See:...

9.8CVSS0.6AI score0.45426EPSS
Exploits0Affected Software1
ibm
ibm
added 2019/12/20 8:47 a.m.42 views

Security Bulletin: A security vulnerability has been identified in Kubernetes shipped with PowerAI Vision

Summary Vulnerability CVE-2019-11246 in Kubernetes package. Vulnerability Details CVEID: CVE-2019-11246 DESCRIPTION: The kubectl cp command allows copying files between containers and the user's machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar...

6.5CVSS0.5AI score0.03616EPSS
Exploits0Affected Software1
ibm
ibm
added 2019/12/20 8:47 a.m.47 views

Security Bulletin: Multiple vulnerabilities CVE-2019-12410, CVE-2019-12408 in arrow package

Summary Multiple vulnerabilities CVE-2019-12410, CVE-2019-12408 in arrow package Vulnerability Details CVEID: CVE-2019-12410 DESCRIPTION: While investigating UBSAN errors in it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data uninitialized when reading RLE null data...

7.8CVSS1.6AI score0.09156EPSS
Exploits0Affected Software1
Rows per page
Query Builder