CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Cvelist•added 2025/04/16 10:12 p.m.•22 views

CVE-2025-0758 Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

6.1CVSS0.00126EPSS

Exploits0References1

Prion•added 2019/10/29 12:15 a.m.•10 views

Design/Logic Flaw

IBM Security Guardium Big Data Intelligence SonarG 4.0 specifies permissions for a security-critical resource which could lead to the exposure of sensitive information or the modification of that resource by unintended parties. IBM X-Force ID: 160986...

6.4CVSS6.1AI score0.01023EPSS

Exploits0References2Affected Software1

Prion•added 2019/07/22 2:15 p.m.•15 views

Code injection

IBM QRadar SIEM 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 155350...

5.5CVSS8AI score0.00681EPSS

Exploits0References2Affected Software1

OSV•added 2018/08/06 2:29 p.m.•3 views

CVE-2017-1396

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 127342...

8.1CVSS5.8AI score0.00808EPSS

Exploits0References2

IBM Security Bulletins•added 2018/06/16 9:50 p.m.•15 views

Security Bulletin: IBM Security Key Lifecycle Manager is affected by incorrect permission assignment for critical resource (CVE-2016-6098)

Summary IBM Security Key Lifecycle Manager specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM Security Key Lifecycle Manager addresses this vulnerability with the following CVE-2016-6098 Vulnerability Details...

8.1CVSS1.2AI score0.01031EPSS

Exploits0Affected Software1

Prion•added 2018/01/10 5:29 p.m.•18 views

Code injection

IBM QRadar 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 119737...

4.9CVSS6.4AI score0.12253EPSS

Exploits5References3Affected Software1

Prion•added 2017/12/20 6:29 p.m.•14 views

Code injection

IBM Security Guardium 10.0 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 124741...

5.5CVSS5.1AI score0.00538EPSS

Exploits0References2Affected Software1

NVD•added 2017/06/08 9:29 p.m.•15 views

CVE-2016-6098

IBM Tivoli Key Lifecycle Manager 2.0.1, 2.5, and 2.6 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors...

8.1CVSS7.9AI score0.01031EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by