20905 matches found
CVE-2025-36321 Vulnerabilities found in Watson Data Intelligence
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site...
EUVD-2025-210379
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 s vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks...
CVE-2025-36327 Vulnerabilities found in Watson Data Intelligence
IBM watsonx.data intelligence 5.2.0, 5.2.1, 5.2.2, 5.3.0 could allow an authenticated user to bypass security controls and perform unauthorized actions due to client-side enforcement of sever-side security...
CVE-2025-36333
CVE-2025-36333 affects IBM watsonx.data intelligence versions 5.2.0, 5.2.1, 5.2.2, and 5.3.0. The authenticated user can perform unauthorized actions due to improper enforcement of the behavioral workflow. Root cause details are not specified in the provided documents. The entry lists a MEDIUM im...
CVE-2025-36336
CVE-2025-36336 affects IBM watsonx.data intelligence versions 5.2.0, 5.2.1, 5.2.2, and 5.3.0. The issue is that data is transmitted in clear text, which an attacker could exploit via man-in-the-middle techniques to obtain sensitive information. The base metrics show a moderate network attack with...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: ruby3.3: ruby3.3-3.3.10-23.2.hum1 aarch64, x8664 ruby3.3-bundled-gems-3.3.10-23.2.hum1 aarch64, x8664 ruby3.3-default-gems-3.3.10-23.2.hum1 noarch ruby3.3-devel-3.3.10-23.2.hum1 aarch64, x8664...
CVE-2026-48286
Adobe Campaign Classic ACC versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue does not require user interaction. Scope is changed...
CVE-2026-48286
Adobe Campaign Classic (ACC) versions 7.4.3 build 9396 and earlier are affected by an Incorrect Authorization vulnerability (CWE-863) that could permit arbitrary code execution in the context of the current user. Exploitation does not require user interaction, and the impact is limited to the use...
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: ruby3.4: ruby3.4-3.4.8-31.2.hum1 aarch64, x8664 ruby3.4-bundled-gems-3.4.8-31.2.hum1 aarch64, x8664 ruby3.4-default-gems-3.4.8-31.2.hum1 noarch ruby3.4-devel-3.4.8-31.2.hum1 aarch64, x8664...
CVE-2026-14178
openGauss 在处理带 NLS 参数的 totimestamp 调用时,totimestampwithfmtnls 会将 nlsfmtstr 保存到 usess-parsercxt.nlsfmtstr。在 seqscan + sort 执行路径下,该字符串原本被分配在 SeqScan 的表达式上下文中;当 SeqScan 完成后,该内存上下文会被 reset,但后续结果输出阶段 timestampout 仍会通过 CheckNlsFormat 访问 usess-parsercxt.nlsfmtstr,导致访问已释放内存。攻击者在具备数据库 SQL 执行权限的情况下,可构造特定...
EUVD-2026-40326
openGauss 在处理带 NLS 参数的 totimestamp 调用时,totimestampwithfmtnls 会将 nlsfmtstr 保存到 usess-parsercxt.nlsfmtstr。在 seqscan + sort 执行路径下,该字符串原本被分配在 SeqScan 的表达式上下文中;当 SeqScan 完成后,该内存上下文会被 reset,但后续结果输出阶段 timestampout 仍会通过 CheckNlsFormat 访问 usess-parsercxt.nlsfmtstr,导致访问已释放内存。攻击者在具备数据库 SQL 执行权限的情况下,可构造特定...
RHSA-2026:32992 Red Hat Security Advisory: python3.12-urllib3 security update
Bulletin has no description...
CVE-2026-6953
CVE-2026-6953 describes an HTML injection in Intermark IT's WebControl CMS v3.5. The vulnerability allows an attacker to send HTML-containing content to a victim via the contact form by crafting a request to /processContact.do with parameters such as nombreApellidos, dirección, and comentarios. A...
GHSA-HC7R-6254-88W5 vulnerabilities
Vulnerabilities for packages: py3-systemd...
Security update for google-cloud-sap-agent (important)
openSUSE security update: security update for google-cloud-sap-agent ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21010-1 Rating: important References: bsc1265764 bsc1265991 bsc1266604 Cross-References: CVE-2026-33186 CVE-2026-33814 CVE-2026-3498...
Critical Photon OS Security Update - PHSA-2026-5.0-0910
Updates of 'gnupg', 'python3' packages of Photon OS have been released...
CVE-2026-13763
creationtimestamp| type| source ---|---|--- 2026-06-29 22:45:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mphkvs6ply2x 2026-06-29 23:29:04+00:00| seen| https://bsky.app/profile/qiancx.bsky.social/post/3mphndjd77w2u 2026-06-29 23:29:04+00:00| seen|...
CVE-2026-55956
creationtimestamp| type| source ---|---|--- 2026-06-29 22:38:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mphkji2ejb2s 2026-06-29 23:02:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mphltgcvtn24 2026-06-29 23:19:22+00:00| seen|...
CVE-2026-57498
creationtimestamp| type| source ---|---|--- 2026-06-29 22:37:05+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mphkgkb5nx2y 2026-06-29 23:03:43+00:00| seen| https://bsky.app/profile/hugovalters.bsky.social/post/3mphlw6ku5s2x 2026-06-29 23:28:36+00:00| seen|...
CVE-2026-55276
creationtimestamp| type| source ---|---|--- 2026-06-29 22:28:43+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mphjxl65jr27 2026-06-29 22:59:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mphlo2ck6t24 2026-06-29 23:11:34+00:00| seen|...