Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-13933

Malware in sbrugna...

7.5CVSS7.6AI score0.01071EPSS
Exploits0References2
OSV
OSV
added 2025/09/28 11:5 p.m.6 views

USN-7780-1 qtbase-opensource-src vulnerabilities

It was discovered that Qt did not correctly handle certain inputs when using the SQL ODBC driver plugin. An attacker could possibly use this issue to cause a denial of service. CVE-2023-24607 It was discovered that Qt did not correctly parse certain strict-transport- security headers. An attacker...

7.5CVSS7AI score0.0132EPSS
Exploits0References5
OSV
OSV
added 2024/11/06 8:15 a.m.4 views

ALPINE-CVE-2024-9681

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

6.5CVSS6.9AI score0.0197EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/14 9:34 p.m.27 views

CVE-2024-30119 HCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security Header

HCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security Header. This could allow an attacker to intercept or manipulate data during redirection...

3.7CVSS0.00197EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/11/08 4:44 p.m.68 views

Security Bulletin: IBM Security Guardium is affected by a Missing HTTP Strict-Transport-Security Header vulnerability (CVE-2021-39072)

Summary IBM Security Guardium has fixed this vulnerability. Vulnerability Details CVEID:CVE-2021-39072 DESCRIPTION: IBM Security Guardium could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could explo...

5.9CVSS5.6AI score0.01197EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2019/06/10 12:0 a.m.3 views

IBM Security Information Queue Input Validation Error Vulnerability

IBM Security Information Queue is a data integration product from IBM USA. The product utilizes Kafka technology and a publish-subscribe model to integrate data between IBM security products. A security vulnerability exists in IBM Security Information Queue versions 1.0.0, 1.0.1, and 1.0.2, which...

7.5CVSS6.5AI score0.00595EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:46 p.m.19 views

Security Bulletin:  IBM Security Guardium Database Activity Monitor is affected by Missing HTTP Strict-Transport-Security Header vulnerability (CVE-2016-0240)

Summary IBM Security Guardium Database Activity Monitor does not force the HTTP Strict-Transport-Security Header. This could allow an attacker to obtain sensitive information using man in the middle techniques. Vulnerability Details CVEID: CVE-2016-0240 DESCRIPTION: IBM Security Guardium Database...

4.3CVSS1AI score0.0103EPSS
Exploits0Affected Software1
Rows per page
Query Builder