Lucene search
+L

3678 matches found

RedHat Linux
RedHat Linux
added 2026/04/22 8:19 a.m.10 views

kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

5.6AI score0.00173EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/22 12:15 a.m.7 views

kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

5.7AI score0.00173EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/16 5:27 a.m.6 views

Security Bulletin: Vulnerabilities jackson-core-2.13.5.jar affects affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in jackson-core package. Vulnerabilities include obtaining sensitive information, causing a denial of service condition, the elevation of privileges, remote execution of arbitrary code and bypassing security restrictions, as...

6.2AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/15 5:41 a.m.5 views

Security Bulletin: Vulnerabilities in Linux Kernel, MongoDB and Tomcat affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in MongoDB, Tomcat and Linux. Vulnerabilities include obtaining sensitive information, causing a denial of service condition, the elevation of privileges, remote execution of arbitrary code and bypassing security restrictions, a...

6.2CVSS7.1AI score0.00236EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/13 9:49 p.m.3 views

Security Bulletin: vulerability in IBM Spectrum Symphony with spring framework

Summary vulerability in IBM Spectrum Symphony with spring framework Vulnerability Details CVEID:CVE-2024-38820 DESCRIPTION: The fix for CVE-2022-22968 made disallowedFields patterns in DataBinder case insensitive. However, String.toLowerCase has some Locale dependent exceptions that could...

5.3CVSS5.8AI score0.05666EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/13 9:48 p.m.4 views

Security Bulletin: vulerability in IBM Spectrum Symphony with IBM WebSphere Application Server Liberty

Summary vulerability in IBM Spectrum Symphony with IBM WebSphere Application Server Liberty Vulnerability Details CVEID:CVE-2024-56339 DESCRIPTION: IBM WebSphere Application Server 9.0 and WebSphere Application Server Liberty 17.0.0.3 through 25.0.0.7 could allow a remote attacker to bypass...

7.5CVSS5.9AI score0.004EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/13 9:46 p.m.5 views

Security Bulletin: Vulerability in IBM Spectrum Symphony with OpenSSL

Summary Vulerability in IBM Spectrum Symphony with OpenSSL Vulnerability Details CVEID:CVE-2024-13176 DESCRIPTION: Issue summary: A timing side-channel which could potentially allow recovering the private key exists in the ECDSA signature computation. Impact summary: A timing side-channel in ECDS...

4.1CVSS5.8AI score0.00601EPSS
Exploits0Affected Software1
Packet Storm
Packet Storm
added 2026/04/09 12:0 a.m.117 views

📄 Spectrum ANOG Device Credential Extraction / Command Injection

This Metasploit auxiliary module targets Spectrum/ANOG devices and combines credential extraction, password decryption, and remote command execution through an authenticated command injection flaw...

6.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/01 11:0 p.m.10 views

CVE-2026-3356

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS5.9AI score0.00387EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/01 4:36 p.m.10 views

Security Bulletin: Vulnerabilities in Linux Kernel, MongoDB and Tomcat affect IBM Spectrum Protect Plus

Summary IBM Spectrum Protect Plus can be affected by vulnerabilities in MongoDB, Tomcat and Linux. Vulnerabilities include obtaining sensitive information, causing a denial of service condition, the elevation of privileges, remote execution of arbitrary code and bypassing security restrictions, a...

9.8CVSS7.2AI score0.66933EPSS
Exploits8Affected Software1
EUVD
EUVD
added 2026/03/31 9:31 p.m.5 views

EUVD-2026-17585

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS5.9AI score0.00387EPSS
Exploits0References2
NVD
NVD
added 2026/03/31 7:16 p.m.6 views

CVE-2026-3356

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS0.00387EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/31 6:40 p.m.2 views

CVE-2026-3356 Missing Authentication for Critical Function vulnerability in Anritsu Remote Spectrum Monitor

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS5.9AI score0.00387EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/31 6:40 p.m.26 views

CVE-2026-3356 Missing Authentication for Critical Function vulnerability in Anritsu Remote Spectrum Monitor

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS0.00387EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/31 6:40 p.m.2 views

CVE-2026-3356

The MS27102A Remote Spectrum Monitor is vulnerable to an authentication bypass that allows unauthorized users to access and manipulate its management interface. Because the device provides no mechanism to enable or configure authentication, the issue is inherent to its design rather than a...

9.3CVSS5.9AI score0.00387EPSS
Exploits0References2
CVE
CVE
added 2026/03/31 6:40 p.m.27 views

CVE-2026-3356

The CVE-2026-3356 entry concerns the MS27102A Remote Spectrum Monitor, a device that exposes an authentication bypass vulnerability. The providedConnected documents (Red Hat, ENISA EUVD, NVD/NVD-related, CISA ICS advisory, AttackersKB, CVE listing, and PT-Security) consistently describe a flaw in...

9.3CVSS5.9AI score0.00387EPSS
Exploits0References1
ICS
ICS
added 2026/03/31 6:0 a.m.8 views

Anritsu Remote Spectrum Monitor

RISK EVALUATION Successful exploitation of this vulnerability could allow attackers with network access to alter operational settings, obtain sensitive signal data, or disrupt device availability. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

9.3CVSS5.8AI score0.00387EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

Anritsu Remote Spectrum Monitor MS27100A 访问控制错误漏洞

The Anritsu Remote Spectrum Monitor MS27100A is a monitoring device from the Japanese company Anritsu. It supports remote spectrum monitoring and wireless signal analysis. The Anritsu Remote Spectrum Monitor MS27100A has a access control vulnerability; this vulnerability arises from the device no...

9.3CVSS5.8AI score0.00387EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/30 3:45 p.m.11 views

kernel: mlxsw: spectrum_mr: Fix use-after-free when updating multicast route stats

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrummr: Fix use-after-free when updating multicast route stats Cited commit added a dedicated mutex instead of RTNL to protect the multicast route list, so that it will not change while the driver periodically traverse...

5.8AI score0.00173EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/27 1:1 a.m.5 views

Security Bulletin: Security Configuration vulnerability in WebSphere Application Server Liberty affects IBM Spectrum Protect Operations Center (CVE-2025-14914)

Summary IBM WebSphere Application Server Liberty is vulnerable to a remote code execution attack which can affect IBM Spectrum Protect Operations Center. Vulnerability Details CVEID:CVE-2025-14914 DESCRIPTION: IBM WebSphere Application Server Liberty 17.0.0.3 through 26.0.0.1 could allow a...

7.6CVSS6.7AI score0.0039EPSS
Exploits0Affected Software1
Rows per page
Query Builder