CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

472 matches found

IBM Maximo Asset Management Information Disclosure - XML External Entity Injection

IBM Maximo Asset Management is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. id: CVE-2020-4463 info: name: IBM Maximo Asset Management Information...

8.2CVSS7.3AI score0.8575EPSS

Exploits1References5

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: The warning "rxecleanup+0x12c/0x170 rdmarxe" has been fixed. The call trace is as follows: ? show regs.cold+0x1a/0x1f ? rxecleanup+0x12c/0x170 rdmarxe ? warn+0x84/0xd0 ? rxecleanup+0x12c/0x170 rdmarxe ?...

5.5CVSS6.2AI score0.00014EPSS

Exploits0References2

NVD•added 2026/02/04 9:15 p.m.•2 views

CVE-2025-1823

IBM Jazz Reporting Service could allow an authenticated user on the host network to cause a denial of service using specially crafted SQL query that consumes excess memory resources...

3.5CVSS0.00013EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:58 a.m.•4 views

CVE-2023-45192

IBM Engineering Requirements Management DOORS Next 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 268758...

8.2CVSS6.6AI score0.00062EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:45 a.m.•5 views

CVE-2022-38389

IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 233975...

9.1CVSS6.5AI score0.00477EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:33 a.m.•6 views

CVE-2024-39726

IBM Engineering Lifecycle Optimization - Engineering Insights 7.0.2 and 7.0.3 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources...

8.2CVSS6.7AI score0.00086EPSS

Exploits0References1