Security Bulletin: Denial of Service vulnerability in Apache commons-fileupload may affect IBM Business Automation Workflow (CVE-2023-24998)

Summary IBM Business Automation Workflow packages a vulnerable copy of Apache commons-fileupload in its /BPM/Lombardi/lib directory. Vulnerability Details CVEID:CVE-2023-24998 DESCRIPTION: Apache Commons FileUpload and Tomcat are vulnerable to a denial of service, caused by not limit the number o...

CVE-2014-0661

The System Status Collection Daemon SSCD in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.242, and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.411, allows remote attackers to execute arbitrary commands or cause a denial of service stack memory corruption via a crafte...

CVE-2014-0661

The System Status Collection Daemon SSCD in Cisco TelePresence System 500-37, 1000, 1300-65, and 3xxx before 1.10.242, and 500-32, 1300-47, TX1310 65, and TX9xxx before 6.0.411, allows remote attackers to execute arbitrary commands or cause a denial of service stack memory corruption via a crafte...

CVE-2014-0661

The CVE-2014-0661 issue affects Cisco TelePresence System software (SSCD in System Status Collection Daemon) prior to specific versions (1.10.2(42) for 500-37/1000/1300-65/3xxx; 6.0.4(11) for 500-32/1300-47/TX1310 65/TX9xxx). A crafted XML-RPC message can enable remote command execution or cause ...