Lucene search
K

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-7718

Malware in sbrugna...

7.1CVSS6.4AI score0.01413EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2019/07/08 4:13 p.m.37 views

Security Bulletin: Multiple vulnerabilities exist in the current IBM SDK for Java used in IBM System Networking Switch Center (CVE-2014-0411 & CVE-2014-0460)

Summary IBM System Networking Switch Center ships with IBM Java 7 JRE. Two vulnerabilities are fixed in the April 2014 Critical Patch Update. 1 CVE-2014-0460: JNDI DNS service provider has several implementation flaws that make spoofing DNS responses much easier; 2 CVE-2014-0411: Vulnerability in...

5.8CVSS1.7AI score0.0435EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.38 views

Security Bulletin: IBM System Networking Switch Center is affected by a Jsch vulnerability (CVE-2016-5725)

Summary A vulnerability in Jsch affects IBM System Networking Switch Center. IBM System Networking Switch Center has addressed the vulnerability. Vulnerability Details Summary A vulnerability in Jsch affects IBM System Networking Switch Center. IBM System Networking Switch Center has addressed th...

5.9CVSS0.5AI score0.24143EPSS
Exploits3
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.19 views

Security Bulletin: Vulnerability in Apache Commons affects IBM System Networking Switch Center (CVE-2015-7450)

Summary An Apache Commons Collections vulnerability for handling Java object deserialization was addressed by IBM System Networking Switch Center. Vulnerability Details Summary An Apache Commons Collections vulnerability for handling Java object deserialization was addressed by IBM System...

10CVSS1.7AI score0.97655EPSS
Exploits10
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:25 a.m.22 views

Security Bulletin: Vulnerability in IBM Java SDK affects IBM System Networking Switch Center (CVE-2015-7575)

Summary There is a vulnerability in IBMR; SDK JavaTM Technology Edition, Version 7 that is used by IBM System Networking Switch Center. This vulnerability, commonly referred to as "SLOTH", was disclosed as part of the IBM Java SDK updates in January 2016. Vulnerability Details Summary There is a...

5.9CVSS0.2AI score0.0288EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:10 a.m.18 views

Security Bulletin: Multiple vulnerabilities affect IBM System Networking Switch Center (CVE-2015-7817, CVE-2015-7818, CVE-2015-7819, CVE-2015-7820)

Summary There are multiple vulnerabilities in IBM System Networking Switch Center. Vulnerability Details Summary There are multiple vulnerabilities in IBM System Networking Switch Center. Vulnerability Details CVE-ID: CVE-2015-7817 Description: IBM System Networking Switch Center could allow a...

7.2CVSS0.9AI score0.01413EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 2:10 a.m.36 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM System Networking Switch Center (CVE-2015-0488, CVE-2015-0478, CVE-2015-1916)

Summary There are multiple vulnerabilities in IBMREG SDK JavaTM Technology Edition, Version 7 that is used by IBM System Networking Switch Center. These were disclosed as part of the IBM Java SDK updates in April 2015. Vulnerability Details Summary There are multiple vulnerabilities in IBM® SDK...

5CVSS0.8AI score0.04204EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:55 a.m.33 views

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM System Networking Switch Center (CVE-2014-3566, CVE-2014-6512, CVE-2014-6457 CVE-2015-0410, CVE-2015-6593)

Summary There are multiple vulnerabilities in IBM SDK Java Technology Edition, Version 7 that is used by IBM System Networking Switch Center. This also includes a fix for the Padding Oracle On Downgraded Legacy Encryption POODLE SSLv3 vulnerabilityCVE-2014-3566. These were disclosed as part of th...

5CVSS1.4AI score0.99999EPSS
Exploits12
Lenovo
Lenovo
added 2017/01/23 12:0 a.m.93 views

Privilege escalation vulnerabilities in IBM System Networking Switch Center and Lenovo Switch Center

Lenovo Security Advisory:LEN-2015-074, LEN-2746 Potential Impact: Escalation of Privileges Severity: High Summary: Multiple vulnerabilities have been identified in the following products: - IBM System Networking Switch Center - Lenovo Switch Center Description: Lenovo Switch Center, previously...

7.2CVSS6.7AI score0.01413EPSS
Exploits0
CNVD
CNVD
added 2015/11/13 12:0 a.m.4 views

IBM System Networking Switch Center Contention Condition Vulnerability

IBM System Networking Switch Center is a suite of applications used to remotely monitor and manage Ethernet converged switches from IBM USA, which was acquired by Lenovo of China. A contention condition vulnerability exists in IBM System Networking Switch Center versions prior to 7.3.1.5 and Leno...

7.1CVSS7AI score0.01413EPSS
Exploits0References1
NVD
NVD
added 2015/11/12 3:59 a.m.18 views

CVE-2015-7820

Race condition in the administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide ZipDownload.jsp input containing directory traversal...

7.1CVSS6.4AI score0.01413EPSS
Exploits0References2
Prion
Prion
added 2015/11/12 3:59 a.m.16 views

Race condition

Race condition in the administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide ZipDownload.jsp input containing directory traversal...

7.1CVSS6.9AI score0.01413EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2015/11/12 3:59 a.m.11 views

Race condition

Race condition in the administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide FileReader.jsp input containing directory traversal...

7.1CVSS6.9AI score0.01413EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2015/11/12 3:59 a.m.14 views

Design/Logic Flaw

The DB service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a request on port 40999, as demonstrated by an improperly encrypted password...

5CVSS6.5AI score0.01318EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2015/11/12 2:0 a.m.46 views

CVE-2015-7817

CVE-2015-7817 affects IBM System Networking Switch Center (SNSC) prior to 7.3.1.5 and Lenovo Switch Center prior to 8.1.2.0. A race condition in the administration-panel web service enables remote attackers to obtain privileged-account access, then feed FileReader.jsp input containing directory t...

7.1CVSS6.6AI score0.01413EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/11/12 2:0 a.m.21 views

CVE-2015-7820

Race condition in the administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain privileged-account access, and consequently provide ZipDownload.jsp input containing directory traversal...

6.4AI score0.01413EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/11/12 2:0 a.m.21 views

CVE-2015-7819

The DB service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows remote attackers to obtain sensitive administrator-account information via a request on port 40999, as demonstrated by an improperly encrypted password...

5.9AI score0.01318EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/11/12 2:0 a.m.24 views

CVE-2015-7818

The administration-panel web service in IBM System Networking Switch Center SNSC before 7.3.1.5 and Lenovo Switch Center before 8.1.2.0 allows local users to execute arbitrary JSP code with SYSTEM privileges by using the Apache Axis AdminService deployment method to install a .jsp file...

6.8AI score0.00434EPSS
Exploits0References2
CNVD
CNVD
added 2015/11/12 12:0 a.m.4 views

Lenovo Switch Center Remote Privilege Vulnerability

Lenovo Switch Center formerly known as IBM System Networking Switch Center is a suite of applications used by Lenovo in China to remotely monitor and manage Ethernet converged switches. A remote elevation vulnerability exists in IBM System Networking Switch Center version 7.1.3.4 and earlier and...

5CVSS6.8AI score0.01318EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2015/11/10 12:0 a.m.30 views

IBM System Networking Switch Center ZipDownload.jsp Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose information on vulnerable installations of IBM System Networking Switch Center. Authentication is not required to exploit this vulnerability. The specific flaws exist within the IBM SNSC Web Service, which listens by default on ports 40080 HT...

7.1CVSS6AI score0.01413EPSS
Exploits0References1
Rows per page
Query Builder