Lucene search
+L

4 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/10/08 11:16 a.m.4 views

Security Bulletin: IBM Engineering Lifecycle Optimization - Publishing - Uncontrolled Recursion vulnerability in Apache Commons Lang

Summary Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass... Can Throw A StackOverflowError On Very Long Inputs. Following IBM® Engineering Lifecycle Management product is vulnerable to this attack, it has been addressed in this bulletin: IBM Engineering Lifecycle Optimization -...

5.3CVSS6.7AI score0.02164EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/05 12:0 a.m.21 views

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software, related to the use of cryptographic algorithms containing defects, allows attackers to gain unauthorized access to protected information.

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...

5.9CVSS5.5AI score0.00198EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/02/09 1:15 a.m.5 views

CVE-2023-45187

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 268749...

8.8CVSS5.8AI score0.00381EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/07/13 12:0 a.m.3 views

CVE-2021-39016

IBM Engineering Lifecycle Optimization - Publishing 6.0.6, 6.0.6.1, 7.0, 7.0.1, and 7.0.2 does not sufficiently monitor or control transmitted network traffic volume, so that an actor can cause the software to transmit more traffic than should be allowed for that actor. IBM X-Force ID: 213722...

4.3CVSS5.9AI score0.00539EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder