150 matches found
EUVD-2024-25852
Malicious code in bioql PyPI...
EUVD-2023-42095
Malicious code in bioql PyPI...
EUVD-2021-8003
Malicious code in bioql PyPI...
EUVD-2024-45744
Malicious code in bioql PyPI...
EUVD-2023-42488
Malicious code in bioql PyPI...
EUVD-2023-42489
Malicious code in bioql PyPI...
EUVD-2021-7759
Malicious code in bioql PyPI...
EUVD-2022-46838
Malicious code in bioql PyPI...
EUVD-2021-7838
Malicious code in bioql PyPI...
CVE-2025-2827 IBM Sterling File Gateway information disclosure
IBM Sterling File Gateway 6.0.0.0 through 6.1.2.6, and 6.2.0.0 through 6.2.0.4 could disclose sensitive installation directory information to an authenticated user that could be used in further attacks against the system...
CVE-2024-56342
IBM Verify Identity Access Digital Credentials 24.06 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system...
CVE-2024-37070
IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 could allow an authenticated user to obtain sensitive information that could aid in further attacks against the system...
CVE-2022-43852
IBM Aspera Console 3.4.0 through 3.4.4 could disclose sensitive information in HTTP headers that could be used in further attacks against the system...
Security Bulletin: IBM Robotic Process Automation is vulnerable to disclosure of information that could aid in further system attacks. (CVD-2022-38710)
Summary IBM Robotic Process Automation could potentially expose system and software version information which could aid in further system attacks. Vulnerability Details CVEID:CVE-2022-38710 DESCRIPTION: IBM Robotic Process Automation could disclose sensitive version information that could aid in...
CVE-2024-47109
IBM Sterling File Gateway UI versions 6.0.0.0–6.1.2.6 and 6.2.0.0–6.2.0.3 expose the server installation path, enabling information leakage that could aid prior or subsequent attacks. CVSS v3.1 base score 5.3 (Network, Low confidentiality impact). Remediation per IBM Security Bulletin: upgrade to...
CVE-2024-56811
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56493
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56496 IBM EntireX information disclosure
IBM EntireX 11.1 could allow a local user to obtain sensitive information when a detailed technical error message is returned. This information could be used in further attacks against the system...
CVE-2024-56811
CVE-2024-56811 affects IBM EntireX 11.1. An information-disclosure vulnerability allows a local user to obtain sensitive data by triggering a detailed technical error message returned by the system. The issue is tied to the error message contents, enabling information leakage that could assist fu...
CVE-2024-56494
IBM EntireX 11.1 contains CVE-2024-56494, a local information-disclosure vulnerability where detailed error messages reveal sensitive information. Affected: IBM EntireX 11.1; root cause: generation of error messages containing sensitive information (CWE-209). CVSSv3.1: 3.3 (LOW). Remediation: app...