Lucene search
K

120 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2020/07/18 11:17 p.m.28 views

Security Bulletin: BigInsights is affected by multiple vulnerabilities in BigSheets and Data Server Manager (CVE-2017-1552, CVE-2017-1553, CVE-2017-1554)

Summary BigInsights is affected by multiple UI vulnerabilities in BigSheets and Data Server Manager DSM Vulnerability Details CVEID: CVE-2017-1552 DESCRIPTION: IBM Infosphere BigInsights is vulnerable to link injection. By persuading a victim to click on a specially-crafted URL link, a remote...

5.4CVSS1AI score0.00869EPSS
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/07/11 12:0 a.m.8 views

The vulnerability of the Cockpit server manager, caused by an operation going beyond buffer boundaries in memory, allows a attacker to trigger a service failure.

The vulnerability of the Cockpit server administrator arises from an operation that occurs outside the buffer boundaries of memory. Exploiting this vulnerability allows a malicious actor, operating remotely, to cause a service failure by sending a specially crafted request along with a specially...

7.8CVSS5.7AI score0.04858EPSS
Exploits0References6Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:44 p.m.199 views

InfoSphere Information Server Manager and the istool command may encounter errors after applying JR55455

Problem After applying JR55455, you might find that the istool command does not work correctly and that you cannot login to the Information Server Manager. Details of the fix for JR55455 can be found in the security bulletin http://www-01.ibm.com/support/docview.wss?uid=swg21982420 Symptom The...

Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 1:10 p.m.28 views

Security Bulletin: Vulnerability in RC4 stream cipher affects IBM Data Server Manager (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects IBM Data Server Manager. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker could exploit this...

5CVSS6AI score0.74006EPSS
Exploits0Affected Software1
seebug.org
seebug.org
added 2017/12/07 12:0 a.m.25 views

Allworx Server Manager Multiple Cross-Site Scripting Vulnerabilities

Allworx Server Manager Multiple Cross-Site Scripting Vulnerabilities history.pushState'', '', '/' ::: default.asp ::: confirm0' / confirm1' / confirm2' / ::: action.asp ::: confirm3' / ::: query.asp ::: input type="hidden" name="query" value="RepQuerya xmlns:a='http://www.w3.org/1999/x...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2017/11/15 12:0 a.m.63 views

Allworx Server Manager 6x / 6x12 / 48x Cross Site Scripting

Allworx Server Manager Multiple Cross-Site Scripting Vulnerabilities history.pushState'', '', '/' ::: default.asp ::: confirm0' / input type="hidden" name="SessionID" va...

7.1AI score
Exploits0
Zero Science Lab
Zero Science Lab
added 2017/11/15 12:0 a.m.181 views

Allworx Server Manager Multiple Cross-Site Scripting Vulnerabilities

Summary The Allworx phone system enables users to manage voicemails in the Allworx Message Center and customize the personal phone system configurations using My Allworx Manager. Description Allworx server manager interface suffers from multiple reflected XSS vulnerabilities when input passed via...

6.1AI score
Exploits0
0day.today
0day.today
added 2017/11/15 12:0 a.m.41 views

Allworx Server Manager 6x / 6x12 / 48x Cross Site Scripting Vulnerability

Allworx Server Manager versions 6x, 6x12, and 48x suffer from multiple cross site scripting vulnerabilities. Allworx Server Manager Multiple Cross-Site Scripting Vulnerabilities history.pushState'', '', '/' ::: default.asp ::: input type="hidden" name="Tab" v...

6.8AI score
Exploits0
hackapp
hackapp
added 2016/04/01 9:22 a.m.12 views

Nitrado Server Manager - Dynamic Code Loading, External URLs, Unsafe deleting vulnerabilities

HackApp vulnerability scanner discovered that application Nitrado Server Manager published at the 'play' market has multiple vulnerabilities...

0.4AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2016/01/23 12:0 a.m.4 views

Unspecified Vulnerability in Oracle E-Business Suite Oracle Mobile Application Servlet MWA Server Manager Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability exists in the Oracle E-Business Suite Oracle Mobile Application Servlet MWA Server Manager component, which could be exploited by a remote attacker to submit a special request to...

2.1CVSS6.8AI score0.00396EPSS
Exploits0References1
OSV
OSV
added 2016/01/21 3:0 a.m.3 views

CVE-2016-0454

Unspecified vulnerability in the Oracle Mobile Application Servlet component in Oracle E-Business Suite 12.1 and 12.2 allows local users to affect confidentiality via vectors related to MWA Server Manager...

5.8AI score
Exploits0References2
NVD
NVD
added 2016/01/21 3:0 a.m.16 views

CVE-2016-0454

Unspecified vulnerability in the Oracle Mobile Application Servlet component in Oracle E-Business Suite 12.1 and 12.2 allows local users to affect confidentiality via vectors related to MWA Server Manager...

2.1CVSS5.2AI score0.00396EPSS
Exploits0References2
Prion
Prion
added 2016/01/21 3:0 a.m.23 views

Design/Logic Flaw

Unspecified vulnerability in the Oracle Mobile Application Servlet component in Oracle E-Business Suite 12.1 and 12.2 allows local users to affect confidentiality via vectors related to MWA Server Manager...

2.1CVSS5.8AI score0.00396EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2016/01/21 2:0 a.m.52 views

CVE-2016-0454

The CVE targets Oracle E-Business Suite (12.1/12.2) via the Oracle Mobile Application Servlet (MWA) Server Manager component. The vulnerability is described as unspecified and allows local users to affect confidentiality through vectors related to MWA Server Manager. The connected CNVD/NVD entrie...

2.1CVSS4.8AI score0.00396EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/01/21 2:0 a.m.22 views

CVE-2016-0454

Unspecified vulnerability in the Oracle Mobile Application Servlet component in Oracle E-Business Suite 12.1 and 12.2 allows local users to affect confidentiality via vectors related to MWA Server Manager...

4.1AI score0.00396EPSS
Exploits0References2
CNVD
CNVD
added 2015/04/28 12:0 a.m.31 views

Red Hat VDSM Module Security Bypass Vulnerability

Red Hat VDSM Module is a Virtual Desktop Server Manager module from Red Hat, Inc. A security bypass vulnerability exists in Red Hat VDSM Module. An attacker could exploit this vulnerability to bypass security restrictions and conduct further attacks...

7.5CVSS6.8AI score0.00728EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

ncube server manager 1.0 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/9004/info nCUBE Server Manager has been reported prone to a directory traversal vulnerability. The issue presents itself likely due to a lack of sufficient sanitization performed on URI parameters. A remote attacker may...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.45 views

FlexNet License Server Manager Stack Overflow In lmgrd

No description provided by source. Luigi Auriemma Application: FlexNet License Server Manager http://www.flexerasoftware.com/products/flexnet-publisher.htm http://www.globes.com/support/fnputilitiesdownload.htm Versions: = 11.9.1 and others earlier this version number was written when I found the...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/04/21 12:0 a.m.25 views

Voipnow Local File Inclusion

/ + Application : Voipnow | Version , Perior to 2.4 | Download : http://4psa.com/ | By Faris , AKA i-Hmx | [email protected] + sec4ever.com , 1337s.cc / VoipNow is commercial web GUI voip server manager, it's affected by local file inclusion vuln File :...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2013/01/02 12:0 a.m.70 views

Multiple XSS vulnerabilities in Cerberus FTP Server <= 5.0.5.1 [CVE-2012-6339]

Overview =============== Cerberus FTP Server http://www.cerberusftp.com/ is a secure and reliable FTP server with many features and available functionality. It was discovered that the Web Administration interface has multiple persistent Cross Site Scripting XSS vulnerabilities. In the log viewer...

4.3CVSS1AI score0.01185EPSS
Exploits1
Rows per page
Query Builder