CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a sensitive information exposure in Sudo Project Sudo [CVE-2023-28486]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a sensitive information exposure in Sudo Project Sudo, caused by improper escaping terminal control characters during logging operations CVE-2023-28486. Sudo Project Sudo is included as a Base OS package used...

5.3CVSS6.1AI score0.00136EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/10/03 5:50 p.m.•16 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a sensitive information exposure in Sudo Project Sudo [CVE-2023-28487]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a sensitive information exposure in Sudo Project Sudo, caused by improper escaping terminal control characters by the "sudoreplay -l" command CVE-2023-28487. Sudo Project Sudo is included as a Base OS package...

5.3CVSS6.2AI score0.00136EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2024/10/03 5:48 p.m.•22 views

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in Sudo Project Sudo [CVE-2023-42465]

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in Sudo Project Sudo, caused by a fault injection flaw in the stack/register variables CVE-2023-42465. Sudo Project Sudo is included as a Base OS package used by our service...

7CVSS6.7AI score0.00004EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2024/08/05 8:46 p.m.•22 views

Security Bulletin: IBM Storage Ceph is vulnerable to CWE in the RHEL UBI (CVE-2023-28487)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. CVE-2023-28487. Vulnerability Details CVEID:CVE-2023-28487 DESCRIPTION: Sudo Project Sudo could allow a remote attacker to obtain...

5.3CVSS5.4AI score0.00136EPSS

Exploits0Affected Software1

GithubExploit•added 2023/06/20 12:38 a.m.•273 views

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809 Analysis & Exploit Basic Information V...

7.8CVSS7.1AI score0.41093EPSS

Exploits20

GithubExploit•added 2023/05/13 1:2 a.m.•838 views

Exploit for Off-by-one Error in Sudo_Project Sudo

PECVE-CVE-2021-3156 Exploit for Ubuntu 20.04 using CVE-2021-3...

7.8CVSS8.8AI score0.92579EPSS

Exploits81