Lucene search
K

30 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-8727

Malware in sbrugna...

8.8CVSS8.8AI score0.00554EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2024/09/23 8:52 a.m.15 views

Security Bulletin: IBM DevOps Release addresses denial of service vulnerability caused by a flaw in processing HTTP/2 stream.

Summary IBM DevOps Release7.0.0.3 addresses denial of service vulnerability caused by a flaw in processing HTTP/2 stream. Vulnerability Details CVEID:CVE-2024-34750 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by a flaw when processing an HTTP/2 stream. By sending...

7.5CVSS7.6AI score0.04602EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/10/27 7:53 a.m.40 views

Security Bulletin: IBM UrbanCode Release addresses multiple vulnerablities.

Summary IBM UrbanCode Release 6.2.5.11 addresses multiple vulnerablities. CVE-2023-41080, CVE-2022-40149, CVE-2022-40150, CVE-2022-45685, CVE-2023-1436, CVE-2022-45693, CVE-2023-28709, CVE-2020-13936, CVE-2023-28708, CVE-2023-34981, CVE-2019-10172, CVE-2019-10202 Vulnerability Details CVEID:...

9.8CVSS10.7AI score0.51547EPSS
Exploits4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/20 4:16 p.m.29 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2022-45143

Summary IBM UrbanCode Release is affected by CVE-2022-45143 Vulnerability Details CVEID:CVE-2022-45143 DESCRIPTION: Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by not escape the type, message or description values in the JsonErrorReportValve function. By...

7.5CVSS7.3AI score0.02505EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/20 4:15 p.m.74 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2022-42252

Summary IBM UrbanCode Release is affected by CVE-2022-42252 Vulnerability Details CVEID:CVE-2022-42252 DESCRIPTION: Apache Tomcat is vulnerable to HTTP request smuggling, caused by the failure to reject a request containing an invalid Content-Length header when configured to ignore invalid HTTP...

7.5CVSS7.2AI score0.01448EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/20 4:11 p.m.33 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2022-42252

Summary IBM UrbanCode Release is affected by CVE-2022-42252 Vulnerability Details CVEID:CVE-2021-43980 DESCRIPTION: Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by a long standing concurrency flaw in the simplified implementation of blocking reads and writes...

7.5CVSS5.9AI score0.01912EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/20 4:8 p.m.29 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2022-34305

Summary IBM UrbanCode Release is affected by CVE-2022-34305 Vulnerability Details CVEID:CVE-2022-34305 DESCRIPTION: Apache Tomcat is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote authenticated attacker could exploit this vulnerability using the...

6.1CVSS6.1AI score0.06156EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/18 3:25 p.m.45 views

Security Bulletin: IBM UrbanCode Release is vulnerable to a denial of service due to use of Apache Tomcat CVE-2022-29885

Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. Vulnerability Details CVEID:CVE-2022-29885 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an use-after-free flaw in theEncryptInterceptor in an untrusted network. By sending...

7.5CVSS7.4AI score0.73139EPSS
Exploits5Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/18 3:23 p.m.33 views

Security Bulletin: IBM UrbanCode Release is vulnerable to a bypass of security restrictions due to use of Apache Tomcat (CVE-2022-25762).

Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. Vulnerability Details CVEID:CVE-2022-25762 DESCRIPTION: Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by improper error handling in WebSocket connection. By sendin...

8.6CVSS8.2AI score0.08033EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/18 3:21 p.m.32 views

Security Bulletin: IBM UrbanCode Release is vulnerable to elevated privileges due to use of Apache Tomcat CVE-2022-23181

Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. Vulnerability Details CVEID:CVE-2022-23181 DESCRIPTION: Apache Tomcat could allow a local authenticated attacker to gain elevated privileges on the system, caused by a time of check, time of use flaw...

7CVSS6.8AI score0.00692EPSS
Exploits16Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/18 10:19 a.m.28 views

Security Bulletin: IBM UrbanCode Release is vulnerable to a denial of service due to use of Apache Tomcat CVE-2021-42340.

Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. Vulnerability Details CVEID:CVE-2021-42340 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by a memory leak flaw in WebSocket connections. By sending a specially-crafted request...

7.5CVSS6.7AI score0.10997EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/02/09 4:17 p.m.127 views

Security Bulletin: IBM UrbanCode Release is vulnerable to arbitrary code execution due to Apache Log4j( CVE-2021-44228)

Summary IBM UrbanCode Release is impacted by CVE-2021-44228 through the use Apache log4j-1.2 which is part of the logging infrastructure. A logging configuration change can exploit the weakness resulting in unauthorized access to the administrative functions within Settings. An iFix has been...

10CVSS1.7AI score0.99999EPSS
Exploits354Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/25 7:57 a.m.27 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-41079

Summary IBM UrbanCode Release version 6.2.2.7 - 6.2.5.2 are affected by CVE-2021-41079 Vulnerability Details CVEID: CVE-2021-41079 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by improper input validation of TLS packets. By sending a specially-crafted TLS packet, a remo...

7.5CVSS1.3AI score0.07182EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/25 7:56 a.m.39 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-30640

Summary IBM UrbanCode Release version 6.2.2.7 - 6.2.5.4 are affected by CVE-2021-30640 Vulnerability Details CVEID: CVE-2021-30640 DESCRIPTION: Apache Tomcat could allow a remote attacker to bypass security restrictions, caused by improper authentication validation in the JNDI Realm. By sending a...

6.5CVSS6.7AI score0.09886EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/25 7:54 a.m.39 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-25122 and CVE-2021-25329

Summary IBM UrbanCode Release version 6.2.2.7 - 6.2.5.2 are affected by CVE-2021-25122 and CVE-2021-25329 Vulnerability Details CVEID: CVE-2021-25122 DESCRIPTION: Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by a flaw when responding to new h2c connection...

7.5CVSS7.8AI score0.18114EPSS
Exploits16Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/25 7:51 a.m.35 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2020-17527

Summary IBM UrbanCode Release version 6.2.2.7 - 6.2.5.2 are affected by CVE-2020-17527 Vulnerability Details CVEID: CVE-2020-17527 DESCRIPTION: Apache Tomcat could allow a remote attacker to obtain sensitive information, caused by an issue when the HTTP request header value can be reused from the...

7.5CVSS7.1AI score0.24622EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/25 7:43 a.m.57 views

Security Bulletin: IBM UrbanCode Release is affected by CVE-2021-30639

Summary IBM UrbanCode Release version 6.2.5.3 - 6.2.5.4 are affected by CVE-2021-30639 Vulnerability Details CVEID: CVE-2021-30639 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by improper error handling during non-blocking I/O. By sending a specially-crafted request, a...

7.5CVSS7.3AI score0.06889EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/24 9:16 p.m.32 views

Security Bulletin: CVE-2019-10072

Summary The fix for CVE-2019-0199 was incomplete and did not address HTTP/2 connection window exhaustion on write in Apache Tomcat versions 9.0.0.M1 to 9.0.19 and 8.5.0 to 8.5.40 . By not sending WINDOWUPDATE messages for the connection window stream 0 clients were able to cause server-side threa...

7.5CVSS1AI score0.72988EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2020/07/24 9:16 p.m.52 views

Security Bulletin: [All] Apache Tomcat (core only) (Publicly disclosed vulnerability) CVE-2020-1935, CVE-2019-17569

Summary In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some invalid HTTP headers to be parsed as valid. This led to a possibility of HTTP Request Smuggling if Tomcat was located behind a...

5.8CVSS0.09386EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/18 1:22 p.m.36 views

Security Bulletin: Vulnerability in IBM JAVA 7 affect IBM UrbanCode Release (CVE-2016-2183)

Summary Vulnerability in IBM JAVA 7 affect IBM UrbanCode Release. Vulnerability Details IBM UrbanCode Release has addressed the following vulnerability: CVEID: CVE-2016-2183 DESCRIPTION: The DES and Triple DES ciphers, as used in the TLS, SSH, and IPSec protocols and other protocols and products,...

7.5CVSS1.5AI score0.95707EPSS
Exploits7Affected Software1
Rows per page
Query Builder