IBM Aspera Shares 代码问题漏洞

IBM Aspera Shares is a Web application from International Business Machines IBM. An access control error vulnerability exists in IBM Aspera Shares versions 1.9.9 through 1.11.0. The vulnerability stems from a password reset that does not disable the session and can be exploited by an attacker to...

IBM Engineering Lifecycle Optimization Code Issue Vulnerability

IBM Engineering Lifecycle Optimization ELO is an extension of the Engineering Lifecycle Management ELM portfolio from International Business Machines IBM. They make it easier to collect and analyze data across the development environment to make better decisions. Automate reporting to ensure that...

IBM Maximo Asset Management Security Bypass Vulnerability (CNVD-2020-41863)

IBM Maximo Asset Management is a comprehensive solution for asset-intensive industries to manage corporate physical assets through a common platform. A security bypass vulnerability exists in IBM Maximo Asset Management 7.6.0, 7.6.1. The vulnerability stems from the product not disabling a sessio...

IBM Cloud Private Privilege Escalation Vulnerability

IBM Cloud Private is a set of enterprise private cloud solutions from IBM USA. The product is built primarily on Kubernetes and container technology. A privilege escalation vulnerability exists in IBM Cloud Private versions 3.1.1 and 3.1.2, which stems from the program failing to disable a sessio...

Sensio Labs Symfony Security Component CSRF Vulnerability

Sensio Labs Symfony is the French company Sensio Labs a set of free , MVC-based PHP development framework , which provides commonly used functional components and tools , can be used to quickly create complex WEB program . Security is one of the security components . A security vulnerability exis...