46 matches found
EUVD-2015-5022
Malware in sbrugna...
EUVD-2020-26079
Malware in sbrugna...
EUVD-2009-3871
Malware in sbrugna...
EUVD-2024-52843
Malicious code in bioql PyPI...
EUVD-2024-52844
Malicious code in bioql PyPI...
CVE-2024-55897
IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...
CVE-2024-55896
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...
Security Bulletin: IBM PowerHA SystemMirror for IBM i is vulnerable to multiple vulnerabilities in the PowerHA Web Interface [CVE-2024-55897, CVE-2024-55896]
Summary The IBM PowerHA SystemMirror for IBM i Web Interface is vulnerable to obtaining cookie values CVE-2024-55897 and hijacking the clicking action of users CVE-2024-55896 as described in the vulnerability details section. The PowerHA Web Interface allows easy management of PowerHA operations...
Security Bulletin: PVR0501342 [Express - CVE-2024-29041 (Publicly disclosed vulnerability) ]
Summary This Security Bulletin is created to reflect the remedian done for PVR0501342 Express - CVE-2024-29041 Publicly disclosed vulnerability. The 'express' has been upgraded in PowerHA GUI Rel 7.2.9 from version 4.16.4 to version 4.19.2 in order to resolve this PVR. Vulnerability Details...
Security Bulletin: PVR0546850 - Express - CVE-2024-45590 (Publicly disclosed vulnerability)
Summary This Security Bulletin is created to reflect the remedian done for PVR0546850 - Express - CVE-2024-45590 Publicly disclosed vulnerability. The 'bodyparser' has been upgraded to version 1.20.3 in PowerHA GUI Rel 7.2.9 in order to resolve this PVR. Vulnerability Details CVEID:CVE-2024-45590...
CVE-2024-55897
IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...
CVE-2024-55896
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...
CVE-2024-55896
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...
CVE-2024-55897
Summary: CVE-2024-55897 affects IBM PowerHA SystemMirror for IBM i versions 7.4 and 7.5. The issue is that authorization tokens and session cookies do not have the Secure attribute set, enabling cookie values to be exposed if a user visits an insecure (HTTP) link or a page with such a link, allow...
CVE-2024-55897 IBM PowerHA SystemMirror for i information disclosure
IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...
CVE-2024-55897 IBM PowerHA SystemMirror for i information disclosure
IBM PowerHA SystemMirror for i 7.4 and 7.5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie will be sent to the insecure...
CVE-2024-55896 IBM PowerHA SystemMirror for i clickjacking
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...
CVE-2024-55896
CVE-2024-55896 affects IBM PowerHA SystemMirror for IBM i, versions 7.4 and 7.5. The issue is improper restrictions when rendering content via iFrames, potentially allowing an attacker to gain improper access and perform unauthorized actions on the system. IBM’s bulletin lists fix actions: apply ...
CVE-2024-55896 IBM PowerHA SystemMirror for i clickjacking
IBM PowerHA SystemMirror for i 7.4 and 7.5 contains improper restrictions when rendering content via iFrames. This vulnerability could allow an attacker to gain improper access and perform unauthorized actions on the system...
IBM PowerHA SystemMirror 安全漏洞
IBM PowerHA SystemMirror is a high-availability cluster multiprocessor program from International Business Machines IBM. A security vulnerability exists in IBM PowerHA SystemMirror for i versions 7.4 and 7.5 that stems from the inclusion of improper restrictions when rendering content via iFrames...