Security Bulletin: Vulnerability in Apache Derby affects IBM Cloud Pak System [CVE-2022-46337]

Summary Vulnerability in Apache Derby affects IBM Cloud Pak System CVE-2022-46337 This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2022-46337 DESCRIPTION: Apache Derby could allow a remote attacker to bypass security restrictions, caused by ...

Fuji Electric D300win

1. EXECUTIVE SUMMARY CVSS v3 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Fuji Electric Equipment: D300win Vulnerabilities: Out-of-bounds Read, Write-what-where Condition 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in loss of sensitive...

4images 1.7.9 - Multiple Vulnerabilities

No description provided by source. ================================ Vulnerability ID: HTB22950 Reference: http://www.htbridge.ch/advisory/sqlinjectionin4images.html Product: 4images Vendor: http://www.4homepages.de/ http://www.4homepages.de/ Vulnerable Version: 1.7.9 Vendor Notification: 07 April...

XSRF (CSRF) in ocPortal

Vulnerability ID: HTB22369 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinocportal.html Product: ocPortal Vendor: ocProducts Ltd Vulnerable Version: 4.3.2 and Probably Prior Versions Vendor Notification: 05 May 2010 Vulnerability Type: CSRF Cross-Site Request Forgery Status: Not Fixed, Vend...