Lucene search
K

10 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2023/05/25 6:50 a.m.52 views

Security Bulletin: Vulnerability from log4j-1.2.16.jar affect IBM Operations Analytics - Log Analysis (CVE-2023-26464)

Summary log4j-1.2.16.jar is vulnerable and it is shipped in Log Analysis. The fix includes Apache Log4j core 2.17.1 Vulnerability Details CVEID:CVE-2023-26464 DESCRIPTION: Apache Log4j is vulnerable to a denial of service, caused by a flaw when using the Chainsaw or SocketAppender components. By...

7.5CVSS7.2AI score0.01905EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/01 10:33 p.m.30 views

Security Bulletin: A security vulnerability has been identified in Apache log4j versions 2.0 beta 9 - 2.14 (CVE-2021-44228) in IBM Maximo Scheduler Optimization

Summary Apache log4j 2 library is used by IBM Maximo Scheduler Optimization MSO. This bulletin provides remediation for the Apache log4j 2 vulnerability CVE-2021-44228 by performing the applicable steps to the MSO product. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j coul...

10CVSS1.3AI score0.99999EPSS
Exploits351Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/03/22 4:47 p.m.50 views

Security Bulletin: IBM Db2 Big SQL is vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-45046, CVE-2021-45105)

Summary Apache Log4j is used by IBM Db2 Big SQL as part of its logging infrastructure. IBM Db2 Big SQL is vulnerable to arbitrary code execution and denial of service due to Apache Log4j CVE-2021-45046, CVE-2021-45105. The fix includes Apache Log4j 2.17.1 Vulnerability Details CVEID: CVE-2021-451...

10CVSS1.2AI score0.99999EPSS
Exploits355Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/03/14 7:30 p.m.32 views

Security Bulletin: Apache Log4j 1.2 reached end of life in August 2015. Users should upgrade to Log4j 2 as it addresses numerous other issues from the previous versions.

Summary Apache Log4j 1.2 reached end of life in August 2015. Users should upgrade to Log4j 2 as it addresses numerous other issues from the previous versions. CSM version 6.3.2 ships the latest library available 2.17.1. Vulnerability Details CVEID: CVE-2021-4104 DESCRIPTION: Apache Log4j could...

7.5CVSS1.5AI score0.81147EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/03/07 1:46 p.m.41 views

Security Bulletin: IBM Spectrum Control is vulnerable to multiple weaknesses related to IBM Dojo (CVE-2021-234550), Java SE (CVE-2021-35578), IBM WebSphere Application Server - Liberty (CVE-2021-39031), Apache Log4j (CVE-2021-44832) and Gson (217225)

Summary IBM Spectrum Control has multiple vulnerabilities: arbitrary code execution due to Apache Log4j CVE-2021-44832 and Dojo CVE-2021-23450, denial of service due to Java SE CVE-2021-35578 and Gson 217225 and LDAP injection due to IBM Websphere Application Security - Liberty CVE-2021-39031. Th...

9.8CVSS9.6AI score0.97906EPSS
Exploits10Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/03/07 6:12 a.m.403 views

Security Bulletin: IBM Security Directory Integrator has upgraded log4j

Summary IBM Security Directory Integrator SDI has upgraded to log4j 2.17.1. Although SDI was technically not vulnerable to the issue described below because it did not use JMSAppender, as a matter of good software hygiene the product has upgraded to the current version of log4j. SDI uses log4j as...

7.5CVSS0.8AI score0.81147EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/24 8:37 a.m.104 views

Security Bulletin: IBM Tivoli Netcool/OMNIbus Web GUI is vulnerable to multiple Apache Log4j vulnerabilities (CVE-2021-45046,CVE-2021-45105)

Summary IBM Tivoli Netcool/OMNIbus Web GUI is vulnerable to arbitrary code execution due to Apache Log4j CVE-2021-45046 and denial of service due to Apache Log4j CVE-2021-45105. IBM Tivoli Netcool/OMNIbus WebGUI uses IBM Jazz for Service Management and Websphere Application Server WAS...

9CVSS0.5AI score0.99999EPSS
Exploits44Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/14 2:34 p.m.451 views

Security Bulletin: Vulnerability in Apache Log4j may affect IBM Spectrum Protect Operations Center (CVE-2021-44832)

Summary A vulnerability in Apache Log4j could result in remote code execution. This vulnerability may affect the Help system in IBM Spectrum Protect Operations Center. The below fix packages include Apache Log4j 2.17.1. Vulnerability Details CVEID: CVE-2021-44832 DESCRIPTION: Apache Log4j could...

8.5CVSS1.3AI score0.97906EPSS
Exploits9Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/07 5:5 p.m.166 views

Security Bulletin: Apache Log4j vulnerability affects IBM Sterling Secure Proxy (CVE-2021-44832)

Summary IBM Sterling Secure Proxy is vulnerable to arbitrary code execution due to Apache Log4j, which is used for logging CVE-2021-44832. The fix includes Apache Log4j 2.17.1. Vulnerability Details CVEID: CVE-2021-44832 DESCRIPTION: Apache Log4j could allow a remote attacker with permission to...

10CVSS1AI score0.99999EPSS
Exploits357Affected Software1
GithubExploit
GithubExploit
added 2021/12/13 7:24 a.m.275 views

Exploit for Uncontrolled Resource Consumption in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

Log4J-Mitigation-CVE-2021-44228https://vulners.com/cve/CVE-...

10CVSS9.7AI score0.99999EPSS
Exploits358
Rows per page
Query Builder