Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2025/09/05 12:35 a.m.14 views

CVE-2025-56760

When Memos 0.22 is configured to store objects locally, an attacker can create a file via the CreateResource endpoint containing a path traversal sequence in the name, allowing arbitrary file write on the server...

4.3CVSS7.1AI score0.0032EPSS
Exploits1References1
OSV
OSV
added 2025/01/20 6:15 p.m.5 views

CVE-2024-22349

IBM DevOps Velocity 5.0.0 and IBM UrbanCode Velocity 4.0.0 through 4.0. 25 allows web pages to be stored locally which can be read by another user on the system...

3.3CVSS5.8AI score0.00206EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/13 12:0 a.m.6 views

IBM Maximo Asset Management and IBM Maximo Application Suite Security Vulnerabilities

IBM Maximo Asset Management and IBM Maximo Application Suite are both products of International Business Machines IBM, U.S.A. IBM Maximo Asset Management is a comprehensive asset lifecycle and maintenance management solution. The solution is capable of managing all types of assets, such as...

3.3CVSS6.4AI score0.0018EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/02/29 12:45 a.m.22 views

CVE-2023-27545 IBM Watson CloudPak for Data Data Stores information disclosure

IBM Watson CloudPak for Data Data Stores information disclosure 4.6.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 248947...

4CVSS3.7AI score0.00195EPSS
Exploits0References2
OSV
OSV
added 2022/09/08 4:15 p.m.7 views

CVE-2022-22314

IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 217371...

3.3CVSS5.8AI score0.00193EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/09/06 12:0 a.m.7 views

CVE-2022-22314

IBM Planning Analytics Local 2.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 217371...

4CVSS6.1AI score0.00193EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/09/22 12:0 a.m.7 views

IBM Edge 安全漏洞

Edge is a Node.js logic and template engine that contains batteries. IBM Edge has an information disclosure vulnerability that stems from the fact that IBM Edge allows web pages to be stored locally, which can be exploited by an attacker to read those pages...

4CVSS5AI score0.00241EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/09/22 12:0 a.m.6 views

IBM Edge 安全漏洞

Edge is a Node.js logic and template engine that contains batteries. IBM Edge has an information disclosure vulnerability that stems from the fact that IBM Edge allows web pages to be stored locally, which can be exploited by an attacker to read those pages...

4CVSS5AI score0.00241EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/02/26 12:0 a.m.8 views

IBM Application Performance Management Security Vulnerability

IBM Application Performance Management APM is a suite of IT service management software from IBM in the United States. The software is primarily used to monitor and manage cloud, on-premise and hybrid applications, and IT infrastructure. A security vulnerability exists in the IBM Application...

4CVSS5.8AI score0.00271EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 10:4 p.m.21 views

Security Bulletin: IBM Security Access Manager Appliance is affected by a vulnerability (CVE-2017-1478)

Summary IBM Security Access Manager Appliance has addressed the following vulnerability due to locally stored web pages. Vulnerability Details CVEID: CVE-2017-1478 DESCRIPTION: IBM Security Access Manager Appliance allows web pages to be stored locally which can be read by another user on the...

3.3CVSS1.2AI score0.00392EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2018/01/10 12:0 a.m.4 views

Procter&Gamble Oral-B App for Android Privilege Gain Vulnerability

Procter&Gamble Oral-B App for Android is an Android-based electric toothbrush management app from Procter&Gamble. A security vulnerability exists in version 5.0.0 of the Procter&Gamble Oral-B App for Android, which stems from the program's use of AES encryption with static parameters. An attacker...

7.5CVSS6.8AI score0.00411EPSS
Exploits0References1
Prion
Prion
added 2018/01/08 8:29 a.m.12 views

Design/Logic Flaw

In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...

5CVSS7.6AI score0.00411EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/01/08 8:0 a.m.19 views

CVE-2018-5298

In the Procter & Gamble "Oral-B App" aka com.pg.oralb.oralbapp application 5.0.0 for Android, AES encryption with static parameters is used to secure the locally stored shared preferences. An attacker can gain access to locally stored user data more easily by leveraging access to the preferences...

7.6AI score0.00411EPSS
Exploits0References1
Rows per page
Query Builder