Lucene search
K

7 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/01 3:9 p.m.13 views

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in follow-redirects-1.15.11.tgz

Summary IBM Watson Discovery Cartridge affected by vulnerability in follow-redirects-1.15.11.tgz Vulnerability Details CVEID:CVE-2026-40895 DESCRIPTION: follow-redirects is an open source, drop-in replacement for Node's http and https modules that automatically follows redirects. Prior to 1.16.0,...

7.5CVSS7.3AI score0.00486EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2025/06/26 12:0 a.m.4 views

SUSE: Security Advisory (SUSE-SU-2025:02082-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8.4AI score0.00957EPSS
Exploits13References4
OSV
OSV
added 2025/03/19 3:55 p.m.7 views

GHSA-X3M8-F7G5-QHM7 vLLM Allows Remote Code Execution via Mooncake Integration

Summary When vLLM is configured to use Mooncake, unsafe deserialization exposed directly over ZMQ/TCP will allow attackers to execute remote code on distributed hosts. Details 1. Pickle deserialization vulnerabilities are well documented. 2. The mooncake pipe is exposed over the network by design...

9CVSS9.5AI score0.01478EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2025/01/09 10:11 a.m.17 views

Security Bulletin: Vulnerability in Axios affect BM Spectrum Control

Summary Axios is vulnerable to server-side request forgery, This vulnerability affect IBM Spectrum Control. Vulnerability Details CVEID:CVE-2024-39338 DESCRIPTION: Axios is vulnerable to server-side request forgery, caused by a flaw with requests for path relative URLs get processed as protocol...

7.5CVSS6.2AI score0.01414EPSS
Exploits1Affected Software1
Openbugbounty
Openbugbounty
added 2023/05/09 10:26 a.m.6 views

123spanishclub.com Cross Site Scripting vulnerability OBB-3312732

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/03/20 11:12 a.m.12 views

profits-empire.com Cross Site Scripting vulnerability OBB-3227714

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Github Security Blog
Github Security Blog
added 2021/01/20 9:27 p.m.163 views

Prototype Pollution in immer

Overview Affected versions of immer are vulnerable to Prototype Pollution. Proof of exploit js const applyPatches, enablePatches = require"immer"; enablePatches; let obj = ; console.log"Before : " + obj.polluted; applyPatches, op: 'add', path: "proto", "polluted" , value: "yes" ; // applyPatches,...

7.5CVSS8.4AI score0.02293EPSS
Exploits1References8Affected Software1
Rows per page
Query Builder