Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-13670

Malware in sbrugna...

5.9CVSS5.9AI score0.01045EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-25515

Malware in sbrugna...

5.4CVSS5.5AI score0.00561EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-25521

Malware in sbrugna...

5.5CVSS5.5AI score0.00893EPSS
Exploits3References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-13639

Malware in sbrugna...

9.8CVSS6.8AI score0.01551EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-29774

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0055EPSS
Exploits0References2
Prion
Prion
added 2021/08/30 5:15 p.m.17 views

Code injection

IBM Sterling Secure Proxy 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-ForceID: 201100...

5CVSS7.3AI score0.00919EPSS
Exploits0References3Affected Software2
CVE
CVE
added 2021/06/02 8:40 p.m.70 views

CVE-2021-20348

CVE-2021-20348 describes a server-side request forgery (SSRF) affecting IBM Jazz Foundation and IBM Engineering products. An authenticated attacker could issue unauthorized requests from the system, enabling network enumeration or related abuse. Connected sources enumerate affected products (DOOR...

5.5CVSS6.1AI score0.00504EPSS
Exploits0References2Affected Software9
NVD
NVD
added 2020/10/12 2:15 p.m.14 views

CVE-2020-4689

IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-ForceID: 186696...

8.5CVSS0.02324EPSS
Exploits0References2
Prion
Prion
added 2020/10/12 2:15 p.m.14 views

Input validation

IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-ForceID: 186696...

8.5CVSS6.8AI score0.02324EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/10/12 1:20 p.m.20 views

CVE-2020-4689

IBM Security Guardium 11.2 is vulnerable to CVS Injection. A remote privileged attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-ForceID: 186696...

6.8CVSS6.9AI score0.02324EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/09/15 1:50 p.m.18 views

CVE-2020-4530

IBM Business Automation Workflow C.D.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

5.4CVSS5.3AI score0.00561EPSS
Exploits0References2
NVD
NVD
added 2020/04/15 4:15 p.m.32 views

CVE-2020-4272

IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted request specify a malicious file from a remote system, which could allow the attacker to execute arbitrary code on the vulnerable server. IBM X-ForceID:...

8.8CVSS6.8AI score0.02978EPSS
Exploits3References4
Prion
Prion
added 2020/04/15 4:15 p.m.19 views

Information disclosure

IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-ForceID:...

4.3CVSS5.4AI score0.00814EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2020/04/15 4:15 p.m.22 views

Code injection

IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a remote attacker to include arbitrary files. A remote attacker could send a specially-crafted request specify a malicious file from a remote system, which could allow the attacker to execute arbitrary code on the vulnerable server. IBM X-ForceID:...

6.5CVSS8.8AI score0.02978EPSS
Exploits3References4Affected Software1
CVE
CVE
added 2020/04/15 3:13 p.m.58 views

CVE-2020-4294

IBM QRadar SIEM (7.3.0–7.3.3 Patch 2) is vulnerable to Server-Side Request Forgery via the RssFeedItem component due to missing URL validation, potentially allowing an authenticated attacker to send unauthorized requests from the appliance (network enumeration or further attacks). Root cause: lac...

6.5CVSS6.1AI score0.01244EPSS
Exploits3References4Affected Software1
CVE
CVE
added 2020/04/15 3:13 p.m.94 views

CVE-2020-4272

CVE-2020-4272 affects IBM QRadar SIEM, specifically versions 7.3.0 through 7.3.3 Patch 2. The issue arises from an arbitrary object instantiation vulnerability in the QRadar Forensics web application that can be triggered by user-supplied input, allowing a remote attacker to include arbitrary fil...

8.8CVSS8.8AI score0.02978EPSS
Exploits3References4Affected Software1
CVE
CVE
added 2020/04/15 3:13 p.m.117 views

CVE-2020-4269

Summary: CVE-2020-4269 affects IBM QRadar 7.3.0–7.3.3 Patch 2 and involves hard-coded credentials used for inbound authentication, outbound communication to external components, or encryption of internal data. The root issue is the presence of embedded credentials that can compromise confidential...

7.5CVSS7.5AI score0.01959EPSS
Exploits3References4Affected Software1
CVE
CVE
added 2020/04/15 3:13 p.m.43 views

CVE-2019-4654

IBM QRadar SIEM is affected by CVE-2019-4654 in versions 7.3.0 through 7.3.3 Patch 2, where certificate validation is missing or incorrect, enabling MITM-based spoofing of a trusted entity. The primary affected component is QRadar’s TLS certificate validation mechanism, leading to potential infor...

5.8CVSS4.8AI score0.00368EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2019/03/11 10:29 p.m.12 views

Buffer overflow

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-ForceID: 155893...

7.2CVSS7.8AI score0.00531EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2019/03/11 10:29 p.m.15 views

Buffer overflow

IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server 9.7, 10.1, 10.5, and 11.1 is vulnerable to a buffer overflow, which could allow an authenticated local attacker to execute arbitrary code on the system as root. IBM X-ForceID: 155894...

7.2CVSS7.8AI score0.00531EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder