Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-26079

Malware in sbrugna...

6.2CVSS6AI score0.00332EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-3871

Malware in sbrugna...

7.8CVSS6.4AI score0.02636EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-5022

Malware in sbrugna...

8.5CVSS6.4AI score0.0169EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52843

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00219EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-52844

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00178EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:41 a.m.6 views

CVE-2024-55897

IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...

4.3CVSS6.5AI score0.00178EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:57 a.m.6 views

CVE-2024-55896

IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...

5.4CVSS6.9AI score0.00219EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:28 a.m.21 views

Security Bulletin: IBM PowerHA SystemMirror for IBM i is vulnerable to multiple vulnerabilities in the PowerHA Web Interface [CVE-2024-55897, CVE-2024-55896]

Summary The IBM PowerHA SystemMirror for IBM i Web Interface is vulnerable to obtaining cookie values CVE-2024-55897 and hijacking the clicking action of users CVE-2024-55896 as described in the vulnerability details section. The PowerHA Web Interface allows easy management of PowerHA operations...

5.4CVSS5.1AI score0.00219EPSS
Exploits0Affected Software2
NVD
NVD
added 2025/01/03 11:15 p.m.15 views

CVE-2024-55897

IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...

4.3CVSS0.00178EPSS
Exploits0References1
NVD
NVD
added 2025/01/03 11:15 p.m.29 views

CVE-2024-55896

IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...

5.4CVSS0.00219EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/03 10:28 p.m.14 views

CVE-2024-55897 IBM PowerHA SystemMirror for i information disclosure

IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...

4.3CVSS4.5AI score0.00178EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/03 10:28 p.m.20 views

CVE-2024-55897 IBM PowerHA SystemMirror for i information disclosure

IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...

4.3CVSS0.00178EPSS
Exploits0References1
CVE
CVE
added 2025/01/03 10:28 p.m.73 views

CVE-2024-55897

Summary: CVE-2024-55897 affects IBM PowerHA SystemMirror for IBM i versions 7.4 and 7.5. The issue is that authorization tokens and session cookies do not have the Secure attribute set, enabling cookie values to be exposed if a user visits an insecure (HTTP) link or a page with such a link, allow...

4.3CVSS4.5AI score0.00178EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/01/03 10:27 p.m.68 views

CVE-2024-55896

CVE-2024-55896 affects IBM PowerHA SystemMirror for IBM i, versions 7.4 and 7.5. The issue is improper restrictions when rendering content via iFrames, potentially allowing an attacker to gain improper access and perform unauthorized actions on the system. IBM’s bulletin lists fix actions: apply ...

5.4CVSS5.7AI score0.00219EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/01/03 10:27 p.m.18 views

CVE-2024-55896 IBM PowerHA SystemMirror for i clickjacking

IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...

5.4CVSS7AI score0.00219EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/03 10:27 p.m.28 views

CVE-2024-55896 IBM PowerHA SystemMirror for i clickjacking

IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...

5.4CVSS0.00219EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/12/30 12:0 a.m.9 views

PT-2024-36606 · Ibm · Ibm Powerha Systemmirror

Name of the Vulnerable Software and Affected Versions: IBM PowerHA SystemMirror for i versions 7.4 through 7.5 Description: The issue is related to improper restrictions when rendering content via iFrames, which could allow an attacker to gain improper access and perform unauthorized actions on t...

5.4CVSS7AI score0.00219EPSS
Exploits0References7
CNVD
CNVD
added 2021/02/06 12:0 a.m.3 views

IBM PowerHA Information Disclosure Vulnerability

IBM PowerHA is a U.S. IBM company based on fault detection, failover technology for IT equipment to provide stability energy security equipment. An information disclosure vulnerability exists in IBM PowerHA version 7.2 that allows a local attacker to exploit the vulnerability to obtain sensitive...

6.2CVSS5.7AI score0.00332EPSS
Exploits0References1
NVD
NVD
added 2021/02/05 3:15 p.m.14 views

CVE-2020-4832

IBM PowerHA 7.2 could allow a local attacker to obtain sensitive information from temporary directories after a discovery failure occurs. IBM X-Force ID: 189969...

6.2CVSS0.00332EPSS
Exploits0References2
Prion
Prion
added 2021/02/05 3:15 p.m.14 views

Design/Logic Flaw

IBM PowerHA 7.2 could allow a local attacker to obtain sensitive information from temporary directories after a discovery failure occurs. IBM X-Force ID: 189969...

2.1CVSS4.9AI score0.00332EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder