CVE-2025-6839 Conjure Position Department Service Quality Evaluation System head.php eval backdoor

A vulnerability, which was classified as critical, has been found in Conjure Position Department Service Quality Evaluation System up to 1.0.11. Affected by this issue is the function eval of the file public/assets/less/bootstrap-less/mixins/head.php. The manipulation of the argument payload lead...

CVE-2025-6839 Conjure Position Department Service Quality Evaluation System head.php eval backdoor

A vulnerability, which was classified as critical, has been found in Conjure Position Department Service Quality Evaluation System up to 1.0.11. Affected by this issue is the function eval of the file public/assets/less/bootstrap-less/mixins/head.php. The manipulation of the argument payload lead...

CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

OTRS AG OTRS Input Validation Error Vulnerability

OTRS is an application from the German company OTRS. A service management software. OTRS AG An input validation error vulnerability exists in OTRS that arises from the system not properly validating incoming data. An attacker placing a specially crafted URL in the body of an email message could...

Is 97% Network Traffic Offload Interesting?

Sports, gaming, and other live events have the potential to overwhelm network capacity due to the sheer volume of traffic generated when large numbers of viewers or gamers engage. These "peak" events may only occur once a month or even once a year sports championships, election results, gaming...

July 24, 2018—KB4340917 (OS Build 17134.191)

July 24, 2018—KB4340917 OS Build 17134.191 Improvements and fixes This update includes quality improvements. No new operating system features are being introduced in this update. Important changes include the following: Addresses an issue that causes devices within Active Directory or Hybrid AADJ...

Security Bulletin: A security vulnerability has been identified in WebSphere Application Server shipped with Tivoli Netcool Service Quality Manager (CVE-2015-2017)

Summary IBM WebSphere Application Server is shipped as a component of Tivoli Netcool Service Quality Manager. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin...

Security Bulletin: Vulnerability with Diffie-Hellman ciphers affects IBM Tivoli Netcool Service Quality Manager (CVE-2015-4000)

Summary The Logjam Attack on TLS connections using the Diffie-Hellman DH key exchange protocol affects IBM Tivoli Netcool Service Quality Manager. Vulnerability Details CVEID: CVE-2015-4000 DESCRIPTION: The TLS protocol could allow a remote attacker to obtain sensitive information, caused by the...

Security Bulletin: Security Vulnerability in IBM WebSphere Application Server affects Tivoli Netcool Service Quality Manager (CVE-2015-1920)

Summary WebSphere Application Server and WebSphere Application Server Hypervisor Edition could allow a remote attacker to execute arbitrary code by connecting to a management port and executing a specific sequence of instructions . Vulnerability Details CVEID: CVE-2015-1920 DESCRIPTION: WebSphere...

Security Bulletin: Vulnerability in RC4 stream cipher affects Tivoli Netcool Service Quality Manager (CVE-2015-2808)

Summary The RC4 “Bar Mitzvah” Attack for SSL/TLS affects Tivoli Netcool Service Quality Manager. Vulnerability Details CVEID: CVE-2015-2808 DESCRIPTION: The RC4 algorithm, as used in the TLS protocol and SSL protocol, could allow a remote attacker to obtain sensitive information. An attacker coul...

Security Bulletin: Vulnerability in IBM Java Runtime affects Tivoli Netcool Service Quality Manager (CVE-2015-0138)

Summary The “FREAK: Factoring Attack on RSA-EXPORT keys" TLS/SSL client and server vulnerability affects IBM® Runtime Java™ Technology Edition, Version 5.0 that is used by Tivoli Netcool Service Quality Manager. Vulnerability Details CVEID: CVE-2015-0138 DESCRIPTION: A vulnerability in various IB...

Security Bulletin: Tivoli Netcool Service Quality Manager is affected by the vulnerabilities in the IBM JRE and Tivoli Directory Server

Summary Tivoli Netcool Service Quality Manager is affected by the vulnerabilities in the IBM Java Runtime Environment Java Technology Edition, Version 5.0 and the IBM Tivoli Directory Server Vulnerability Details CVE-ID: CVE-2014-3065 DESCRIPTION: IBM Java SDK contains a vulnerability in which th...

Security Bulletin: Tivoli Netcool Service Quality Manager is affected by the WebSphere Application Server vulnerability (CVE-2014-0964)

Summary There is a potential denial of service with Tivoli Netcool Service Quality Manager when running a Heartbleed scanning tool. Vulnerability Details CVE ID: CVE-2014-0964 DESCRIPTION: IBM WebSphere Application Server is not vulnerable to the Heartbleed vulnerability CVE-2014-0160 where secur...

Security Bulletin: Tivoli Netcool Service Quality Manager is affected by the Open Source Tomcat vulnerabilities (CVE-2014-0075 CVE-2014-0095 CVE-2014-0096 CVE-2014-0099 CVE-2014-0119)

Summary Tivoli Netcool Service Quality Manager is affected by the Open Source Apache Tomcat vulnerabilities. Vulnerability Details CVE ID: CVE-2014-0075, CVE-2014-0095, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119 DESCRIPTION: Tivoli Netcool Service Quality Manager is affected by a problem with th...

Five Reasons Why I Joined Wallarm

By Johan Nordstrom The question of “what made you change jobs?” may be old, but the answer with my move to Wallarm is new and clear. I have a vision how to address the dynamic threat landscape of today and Wallarm’s innovative approach to security is in line with these ideas. In my 30 years caree...

Unspecified Vulnerability in IBM Tivoli Netcool Service Quality Manager

IBM Tivoli Netcool Service Quality Manager is a solution that combines Service Quality Management and Service Level Agreements to manage the quality of telecommunications services. An unspecified security vulnerability exists in IBM Tivoli Netcool Service Quality Manager, and no detailed...

SSL/TLS: Check Supported Cipher Suites

This routine connects to a SSL/TLS service and checks the quality of the accepted cipher suites. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-onl...

IBM Tivoli Netcool Service Quality Manager跨站脚本及HTML代码注入漏洞

BUGTRAQ ID: 32233 IBM Tivoli Netcool Service Quality Manager是IBM Tivoli服务质量管理解决方案的核心软件。 Tivoli Netcool Service Quality Manager的Web接口中存在多个跨站脚本漏洞，已认证的用户可以使用报表生成功能创建名称中嵌入了恶意代码的报表，当在主面板中打开报表历史时就会在用户浏览器会话中执行注入的代码。 至少有以下三个页面存在漏洞： http://server/document root/ReportTree http://server/document root/Launch...

IBM Tivoli Netcool Service Quality Manager - Cross-Site Scripting / HTML Injection

source: https://www.securityfocus.com/bid/32233/info IBM Tivoli Netcool Service Quality Manager is prone to multiple cross-site scripting and an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the...