CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score

Exploits0

IBM Security Bulletins•added 2022/06/22 10:12 p.m.•56 views

Security Bulletin: IBM Spectrum LSF Suite and IBM Platform Process Manager are vulnerable to arbitrary code execution and denial of service due to Apache Log4j (CVE-2021-4104, CVE-2020-9488, CVE-2022-23302, CVE-2022-23307, CVE-2022-23305)

Summary Apache Log4j is used by IBM Spectrum LSF Suite and IBM Platform Process Manager as part of its logging infrastructure. These vulnerabilities can be addressed by executing steps detailed in the Workaround section. These issues will be addressed in the next fix patch release 10.2.0.13 by en...

9.8CVSS1.4AI score0.81147EPSS

Exploits13Affected Software2

IBM Security Bulletins•added 2022/03/29 10:53 p.m.•36 views

Security Bulletin: An vulnerability in 3rd party library jackson-databind affect IBM Spectrum LSF Suite, IBM Spectrum LSF Explorer and IBM Platform Application Center

Summary There is an vulnerabilityCVE-2020-36518 in in 3rd party library jackson-databind affect IBM Spectrum LSF Suite, IBM Spectrum LSF Explorer and IBM Platform Application Center, Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products an...

7.5CVSS7.9AI score0.0486EPSS

Exploits1Affected Software3

IBM Security Bulletins•added 2022/03/29 10:44 p.m.•14 views

Security Bulletin: An vulnerability in IBM Websphere Liberty affect IBM Spectrum LSF Suite and IBM Platform Application Center

Summary There is an vulnerability CVE-2021-39038in IBM Websphere Liberty used by IBM Spectrum LSF Suite and IBM Platform Application Center . Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions...

5.4CVSS5.8AI score0.00672EPSS

Exploits0Affected Software3

Github Security Blog•added 2022/03/29 7:18 p.m.•32 views

Use of insecure temporary file in Horovod

Impact The insecure tempfile.mktemp is used when Horovod is run in an LSF job with jsrun. In that situation, a jsrun rank file is created with mktemp, which could be hijacked by another process to read or manipulate the content. This issue does not impact the use of MPI, Gloo, Spark or Ray. Patch...

8.2CVSS0.2AI score0.00922EPSS

Exploits0References7Affected Software1

OSV•added 2022/03/29 7:18 p.m.•18 views

GHSA-47WV-VHJ2-G66M Use of insecure temporary file in Horovod

8.8CVSS7.3AI score0.00922EPSS

Exploits0References8

IBM Security Bulletins•added 2022/01/27 2:10 a.m.•83 views

Security Bulletin: IBM Spectrum LSF is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105, CVE-2021-45046)

Summary Apache Log4j CVE-2021-45105, CVE-2021-45046 is used by IBM Spectrum LSF as part of its logging infrastructure. The fix includes Apache Log4j v2.17.1. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected...

9CVSS7AI score0.99999EPSS

Exploits42Affected Software1

IBM Security Bulletins•added 2022/01/12 9:48 a.m.•20 views

Security Bulletin: Multiple Vulnerabilities in Apache Log4j2 affect IBM Spectrum LSF Suite, IBM Spectrum LSF Suite for HPA, IBM Spectrum LSF Explorer and IBM Spectrum LSF Application Center

Summary There are vulnerabilities in Apache log4j2 used by IBM Spectrum LSF Suite, IBM Spectrum LSF Suite for HPA, IBM Spectrum LSF Explorer and IBM Spectrum LSF Application Center. IBM Spectrum LSF Suite, IBM Spectrum LSF Suite for HPA, IBM Spectrum LSF Explorer and IBM Spectrum LSF Application...

8.5CVSS0.8AI score0.97906EPSS

Exploits9Affected Software4

IBM Security Bulletins•added 2021/12/22 6:47 a.m.•142 views

Security Bulletin: Multiple Vulnerabilities in Apache Log4j2 affect IBM Spectrum LSF Explorer and IBM Spectrum LSF Application Center

Summary There is a vulnerability in Apache Log4j2 used by IBM Spectrum LSF Explorer and IBM Spectrum LSF Application Center. IBM Spectrum LSF Explorer and IBM Spectrum LSF Application Center have addressed the applicable CVE. Customers are encouraged to take action by executing the mitigation...

10CVSS1.1AI score0.99999EPSS

Exploits349Affected Software2

IBM Security Bulletins•added 2021/12/22 12:3 a.m.•98 views

Security Bulletin: Vulnerabilities in Apache log4j2 (CVE-2021-4104, CVE-2021-44228, CVE-2021-45046) affect IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA

Summary There are vulnerabilities in Apache log4j2 used by IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA. IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA have addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2021-4104 DESCRIPTION: Apache Log4j could allow a...

10CVSS1.5AI score0.99999EPSS

Exploits349Affected Software2

IBM Security Bulletins•added 2021/12/17 5:25 a.m.•121 views

Security Bulletin: Vulnerability in Apache Log4j2 affects IBM Spectrum LSF. (CVE-2021-44228)

Summary There is a vulnerability in Log4j2 used by IBM Spectrum LSF. IBM Spectrum LSF have addressed the applicable CVE. LSF is only vulnerable if resource connector is enabled. Customers are encouraged to take action by executing the mitigation steps. Vulnerability Details CVEID: CVE-2021-44228...

10CVSS1.7AI score0.99999EPSS

Exploits346Affected Software1

IBM Security Bulletins•added 2021/12/16 6:42 a.m.•16 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Process Manager

Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Process Manager. IBM Spectrum LSF Process Manager has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected...

0.8AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2021/12/16 6:42 a.m.•17 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Explorer

Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Explorer. IBM Spectrum LSF Explorer has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and...

0.2AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2021/12/16 6:41 a.m.•13 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Application Center

Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Application Center. IBM Spectrum LSF Application Center has addressed the applicable CVEs. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...

0.5AI score

Exploits0Affected Software1

IBM Security Bulletins•added 2021/12/16 6:40 a.m.•10 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA

Summary There are multiple vulnerabilities in IBM®Runtime Environment Java™Version 8 used by IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA. IBM Spectrum LSF Suite and IBM Spectrum LSF Suite for HPA have addressed the applicable CVEs. Vulnerability Details Refer to the security bulleti...

Exploits0Affected Software2

IBM Security Bulletins•added 2021/08/19 2:58 a.m.•22 views

Security Bulletin: A vulnerable issue affects IBM Spectrum LSF Suite, IBM Spectrum LSF and IBM Spectrum LSF Suite Community Edition

Summary There is a vulnerable issue in LSF that an attacker can exploit an authentication weakness in some messages transferred between some binaries through network, to run commands with unauthorized permission. LSF have addressed this security issue CVE-2020-4983. Vulnerability Details Refer to...

7.8CVSS0.6AI score0.00437EPSS

Exploits1Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by