CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4330 matches found

0day.today•added 2021/07/13 12:0 a.m.•253 views

Apache Tomcat 9.0.0.M1 - Cross-Site Scripting (XSS) Vulnerability

Exploit Title: Apache Tomcat 9.0.0.M1 - Cross-Site Scripting XSS Exploit Author: Central InfoSec Version: Apache Tomcat 9.0.0.M1 to 9.0.0.17, 8.5.0 to 8.5.39, and 7.0.0 to 7.0.93 CVE : CVE-2019-0221 Requirements: SSI support must be enabled within Apache Tomcat. SSI support is not enabled by...

6.1CVSS7AI score0.14481EPSS

Exploits3

IBM Security Bulletins•added 2021/07/08 9:30 p.m.•38 views

Security Bulletin:Eclipse OpenJ9 could allow a local attacker to gain elevated privileges on the system and The IBM Java Runtime Environment's Diagnostic Tooling Framework for Java does not protect against CVE-2018-1656 and CVE-2018-12539

Summary The IBM Java Runtime Environment's Diagnostic Tooling Framework for Java DTFJ IBM SDK, Java Technology Edition 6.0, 7.0, and 8.0 does not protect against path traversal attacks when extracting compressed dump files. IBM X-Force ID: 144882. And Eclipse OpenJ9 could allow a local attacker t...

7.8CVSS0.8AI score0.00582EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/07/08 9:30 p.m.•43 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM InfoSphere Optim Performance Manager (CVE-2015-0383, CVE-2015-0410, CVE-2014-6593)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Technology Edition, Version 6 and 7, that is used by IBM InfoSphere Optim Performance Manager. These issues were disclosed as part of the IBM Java SDK updates in January 2015. Vulnerability Details CVEID: CVE-2015-0383...

5.4CVSS5.2AI score0.72836EPSS

Exploits5Affected Software1

IBM Security Bulletins•added 2021/07/08 8:57 p.m.•35 views

Security Bulletin: Multiple Vulnerabilities in IBM Java Runtime Affects Optim Data Growth, Test Data Management and Application Retirement

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 6 and IBM® Runtime Environment Java™ Version 8 used by Optim Data Growth, Test Data Management, and Application Retirement. These issues were disclosed as part of the IBM Java SDK updates in January, April and Ju...

10CVSS0.8AI score0.21835EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2021/07/08 8:36 p.m.•49 views

Security Bulletin: Multiple Vulnerabilites in IBM Java Runtime Affect IBM InfoSphere Optim Masking On Demand

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 6 used by Optim Masking on Demand. These issues were disclosed as part of the IBM Java SDK updates in January 2017. Vulnerability Details If you run your own Java code using the IBM Java Runtime delivered with th...

7.5CVSS0.9AI score0.40993EPSS

Exploits7Affected Software1

IBM Security Bulletins•added 2021/07/08 8:36 p.m.•60 views

Security Bulletin: A Vulnerability in IBM Java Runtime Affects Optim Data Growth, Test Data Management and Application Retirement

Summary There is a vulnerabilitiy in IBM® Runtime Environment Java™ Version 6 and IBM® Runtime Environment Java™ Version 8 used by Optim Data Growth, Test Data Management and Application Retirement. This issue was disclosed as part of the IBM Java SDK updates in October 2017. Vulnerability Detail...

6.2CVSS0.1AI score0.00701EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/07/08 8:36 p.m.•52 views

Security Bulletin: Multiple Vulnerabilites in IBM Java Runtime Affect Optim Data Growth, Test Data Management and Application Retirement

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 6 used by Optim Data Growth, Test Data Management and Application Retirement. These issues were disclosed as part of the IBM Java SDK updates in January 2017. Vulnerability Details If you run your own Java code...

7.5CVSS0.2AI score0.40993EPSS

Exploits7Affected Software1

IBM Security Bulletins•added 2021/07/02 9:54 a.m.•51 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Platform Symphony and IBM Spectrum Symphony

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 Service Refresh 5 Fix Pack 37 and earlier releases used by IBM Platform Symphony and IBM Spectrum Symphony. IBM Platform Symphony and IBM Spectrum Symphony have addressed the applicable CVEs. Vulnerability...

9.8CVSS8.2AI score0.01476EPSS

Exploits3Affected Software2

IBM Security Bulletins•added 2021/07/02 9:51 a.m.•92 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Platform Symphony and IBM Spectrum Symphony

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 Service Refresh 5 Fix Pack 22 and earlier releases used by IBM Platform Symphony and IBM Spectrum Symphony. IBM Platform Symphony and IBM Spectrum Symphony have addressed the applicable CVEs. Vulnerability...

9CVSS0.5AI score0.03717EPSS

Exploits2Affected Software2

IBM Security Bulletins•added 2021/07/02 6:16 a.m.•41 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Platform Symphony and IBM Spectrum Symphony

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 Service Refresh 5 Fix Pack 15 and earlier releases used by IBM Platform Symphony and IBM Spectrum Symphony. IBM Platform Symphony and IBM Spectrum Symphony have addressed the applicable CVEs. Vulnerability...

10CVSS0.3AI score0.21835EPSS

Exploits1Affected Software2

IBM Security Bulletins•added 2021/06/29 1:33 p.m.•34 views

Security Bulletin: Multiple vulnerabilities in the IBM Java Runtime affect IBM Rational ClearCase (CVE-2020-27221, CVE-2020-14782, CVE-2020-2773, CVE-2020-14781)

Summary There are vulnerabilities in the IBM® Runtime Environment Java™ Versions 7 and 8, which is used by IBM Rational ClearCase. These issues were disclosed as part of the IBM SDK, Java Technology Edition Quarterly CPU - Jan 2021 - Includes Oracle Jan 2021 CPU plus CVE-2020-27221, CVE-2020-1478...

9.8CVSS1.7AI score0.00727EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/25 6:20 p.m.•45 views

Security Bulletin: Vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Backup-Archive Client, IBM Spectrum Protect for Space Management, and IBM Spectrum Protect for Virtual Environments (CVE-2020-27221, CVE-2020-14782)

Summary Vulnerabilities in IBM® Runtime Environment Java™ were disclosed as part of the IBM Java SDK updates in October 2020 and January 2021. IBM® Runtime Environment Java™ is used by IBM Spectrum Protect Backup-Archive Client, IBM Spectrum Protect for Space Management, and IBM Spectrum Protect...

9.8CVSS1.8AI score0.00727EPSS

Exploits0Affected Software3

IBM Security Bulletins•added 2021/06/25 2:54 p.m.•28 views

Security Bulletin: CVE-2020-14782 in IBM Java Runtime may affect Tivoli Netcool Performance Manager for Wireless

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 7 & 8 used by Tivoli Netcool Performance Manager for Wireless. Tivoli Netcool Performance Manager for Wireless has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletins listed in th...

0.8AI score0.00144EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/25 2:53 p.m.•14 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime may affect Tivoli Netcool Performance Manager for Wireless.

0.8AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/23 1:24 p.m.•34 views

Security Bulletin: Vulnerability in IBM Java Runtime affect IBM Cloud Transformation Advisor

Summary There is a vulnerability in IBM® Runtime Environment Java™ Version 8.0.6.25 used by IBM Cloud Transformation Advisor. IBM Cloud Transformation Advisor has addressed the applicable CVE. This issue was disclosed as part of the IBM Java SDK update. Vulnerability Details CVEID: CVE-2021-2161...

5.9CVSS1.5AI score0.01132EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/21 6:57 p.m.•20 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK and IBM Java Runtime affect Rational Service Tester

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 1.8 and IBM® Runtime Environment Java™ Version 1.8 used by Rational Service Tester. Rational Service Tester has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2020-14781 DESCRIPTION: An...

4.3CVSS1.9AI score0.00103EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/21 5:32 p.m.•19 views

Security Bulletin: A Security Vulnerability in IBM Java Runtime affect IBM License Key Server Administration and Reporting Tool and its Agent

Summary A security vulnerability has been found in the IBM® Runtime Environment Java™ used by IBM License Key Server Administration and Reporting Tool and its Agent. A fix has been published to mitigate the same. Vulnerability Details CVEID: CVE-2020-14781 DESCRIPTION: An unspecified vulnerabilit...

4.3CVSS1.5AI score0.00103EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/10 4:49 p.m.•26 views

Security Bulletin: Vulnerability in IBM Java SDK and IBM Java Runtime affects TPF Toolkit

Summary A vulnerability in IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ that is used by TPF Toolkit has been addressed. Vulnerability Details CVEID: CVE-2021-2161 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an...

5.9CVSS1.6AI score0.01132EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/08 10:33 p.m.•38 views

Security Bulletin: IBM DataPower Gateway affected by multiple vulnerabilities in Java Runtime

Summary IBM has addressed the following CVEs: CVE-2020-2593, CVE-2020-2583 Vulnerability Details CVEID: CVE-2020-2593 DESCRIPTION: An unspecified vulnerability in Java SE related to the Java SE Networking component could allow an unauthenticated attacker to cause low confidentiality impact, low...

5.8CVSS5.6AI score0.00752EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2021/06/08 9:47 p.m.•47 views

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM DataPower Gateway

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ Version 8 used by IBM DataPower Gateway. IBM DataPower Gateway has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2019-2989 DESCRIPTION: An unspecified vulnerability in Java SE could allow an...

6.8CVSS5.9AI score0.02946EPSS

Exploits0Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by