Lucene search
K

259 matches found

RedHat Linux
RedHat Linux
added last week4 views

coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS5.9AI score0.00223EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/24 9:9 a.m.9 views

coreutils: Heap Buffer Under-Read in GNU Coreutils sort via Key Specification

A flaw was found in GNU Coreutils. The sort utility's begfield function is vulnerable to a heap buffer under-read. The program may access memory outside the allocated buffer if a user runs a crafted command using the traditional key format. A malicious input could lead to a crash or leak sensitiv...

4.4CVSS6AI score0.00223EPSS
Exploits0References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/18 8:12 p.m.4 views

Security Bulletin: Multiple Security vulnerabilities have been identified in IBM WebSphere Application Server traditional, WebSphere Liberty profile, IBM HTTP Server its WebSphere plugins shipped with IBM Business Automation Workflow

Summary WebSphere Application Server traditional and WebSphere Application Server Liberty profile are shipped as a component of IBM Business Automation Workflow. Optional IBM HTTP Server and relating WebSphere plugins are included with WebSphere. Information about security vulnerabilities affecti...

9.8CVSS5.5AI score0.00409EPSS
Exploits0Affected Software2
EUVD
EUVD
added 2026/05/27 3:33 p.m.11 views

EUVD-2026-32281

IBM WebSphere Application Server - Liberty 19.0.0.7 through 26.0.0.5 and IBM WebSphere Application Server 9.0, and 8.5 and WebSphere Application Server Liberty are vulnerable to a denial of service, caused by sending a specially-crafted request. A remote attacker could exploit this vulnerability ...

4.8CVSS5.8AI score0.005EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/27 2:20 p.m.11 views

CVE-2026-1248 IBM Business Automation Workflow information leak

IBM Business Automation Workflow containers and traditional may leak information about its database structure in error messages...

5.8AI score0.00219EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/27 2:20 p.m.12 views

CVE-2026-1248

IBM Business Automation Workflow containers and traditional may leak information about its database structure in error messages...

5.8AI score0.00219EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/27 2:20 p.m.43 views

CVE-2026-1248 IBM Business Automation Workflow information leak

IBM Business Automation Workflow containers and traditional may leak information about its database structure in error messages...

0.00219EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/05/06 10:57 a.m.18 views

Your AI Agents Are Already Inside the Perimeter. Do You Know What They're Doing?

Analysts recently confirmed what identity security teams have quietly feared: AI agents are being deployed faster than enterprises can govern them. In their inaugural Market Guide for Guardian Agents, Gartner states that “enterprise adoption of AI agents is accelerating, outpacing maturity of...

5.9AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/03/31 12:0 a.m.6 views

The Real Risk of Vibecoding

This blog looks at how AI‑driven vibecoding speeds up software development while increasing security risk by outpacing traditional review and ownership. It explains why security needs to move earlier and be built into modern development workflows...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/03/25 3:8 p.m.142 views

web-app-security-owasp-zap

🔐 Web Application Security Testing with OWASP ZAP Author:...

5.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/11 12:0 a.m.1 views

Layered Performance Analysis of TLS 1.3 Handshakes: Classical, Hybrid, and Pure Post-Quantum Key Exchange

In this paper, we present a laboratory study focused on the impact of post-quantum cryptography PQC algorithms on multiple layers of stateful HTTP over TLS transactions: the TCP handshake, the intermediate TCP-TLS layer, the TLS handshake, the intermediate TLS layer, and the HTTP application laye...

5.8AI score
Exploits0
Microsoft KB
Microsoft KB
added 2026/03/10 2:0 p.m.13 views

Description of the security update for Office 2016: March 10, 2026 (KB5002718)

Description of the security update for Office 2016: March 10, 2026 KB5002718 Summary This security update resolves a Microsoft Excel remote code execution vulnerability. To learn more about the vulnerability, see Microsoft Common Vulnerabilities and Exposures CVE-2026-26108. Note: To apply this...

7.8CVSS6.4AI score0.00493EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/03/03 12:0 a.m.5 views

Gravity Falls: A Comparative Analysis of Domain-Generation Algorithm (DGA) Detection Methods for Mobile Device Spearphishing

Mobile devices are frequent targets of eCrime threat actors through SMS spearphishing smishing links that leverage Domain Generation Algorithms DGA to rotate hostile infrastructure. Despite this, DGA research and evaluation largely emphasize malware C2 and email phishing datasets, leaving limited...

6AI score
Exploits0
CNVD
CNVD
added 2026/02/11 12:0 a.m.3 views

XML external entity injection vulnerability in IBM Business Automation Workflow containers and IBM Business Automation Workflow traditional

IBM Business Automation Workflow is a suite of workflow automation solutions from International Business Machines IBM. The product is primarily used for workflow management, compliance management, and features workflow visibility and scalability. IBM Business Automation Workflow containers V25.0....

7.1CVSS5.7AI score0.00458EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/03 9:19 p.m.4 views

CVE-2025-13096

IBM Business Automation Workflow containers V25.0.0 through V25.0.0-IF007, V24.0.1 - V24.0.1-IF007, V24.0.0 - V24.0.0-IF007 and IBM Business Automation Workflow traditional V25.0.0, V24.0.1, V24.0.0 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote...

7.1CVSS5.7AI score0.00458EPSS
Exploits0References1
OSV
OSV
added 2026/02/02 11:15 p.m.5 views

CVE-2025-13096

IBM Business Automation Workflow containers V25.0.0 through V25.0.0-IF007, V24.0.1 - V24.0.1-IF007, V24.0.0 - V24.0.0-IF007 and IBM Business Automation Workflow traditional V25.0.0, V24.0.1, V24.0.0 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote...

7.1CVSS5.8AI score0.00458EPSS
Exploits0References1
NVD
NVD
added 2026/02/02 11:15 p.m.5 views

CVE-2025-13096

IBM Business Automation Workflow containers V25.0.0 through V25.0.0-IF007, V24.0.1 - V24.0.1-IF007, V24.0.0 - V24.0.0-IF007 and IBM Business Automation Workflow traditional V25.0.0, V24.0.1, V24.0.0 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote...

7.1CVSS0.00458EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/02 8:56 p.m.30 views

CVE-2025-13096 XML eXternal Entity injection (XXE) vulnerability affect IBM Business Automation Workflow -

IBM Business Automation Workflow containers V25.0.0 through V25.0.0-IF007, V24.0.1 - V24.0.1-IF007, V24.0.0 - V24.0.0-IF007 and IBM Business Automation Workflow traditional V25.0.0, V24.0.1, V24.0.0 is vulnerable to an XML external entity injection XXE attack when processing XML data. A remote...

7.1CVSS0.00458EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.7 views

PT-2026-5697

Name of the Vulnerable Software and Affected Versions IBM Business Automation Workflow containers versions 24.0.0 through 25.0.0-IF007 IBM Business Automation Workflow traditional versions 24.0.0 through 25.0.0 Description The software is susceptible to an XML External Entity XXE attack when...

7.1CVSS5.4AI score0.00458EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/02/02 12:0 a.m.7 views

IBM Business Automation Workflow 代码问题漏洞

IBM Business Automation Workflow is a suite of workflow automation solutions from International Business Machines IBM. The product is primarily used for workflow management, compliance management, and features workflow visibility and scalability. IBM Business Automation Workflow containers V25.0....

7.1CVSS5.8AI score0.00458EPSS
Exploits0References2
Rows per page
Query Builder