CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions DX Unified Infrastructure Management Nimsoft/UIM versions prior to 8.63 Description The software contains an improper Access Control List ACL handling issue within the robot controller component. A remote attacker may be able to execute...

8.4CVSS7AI score0.00172EPSS

Exploits0References5

OSV•added 2025/08/14 6:52 p.m.•1 views

MAL-2025-37607 Malicious code in uim-web-sdk (npm)

The package uim-web-sdk was found to contain malicious code...

7.2AI score

Exploits0

OSSF Malicious Packages•added 2025/08/14 6:52 p.m.•2 views

Malicious code in uim-web-sdk (npm)

The package uim-web-sdk was found to contain malicious code...

7AI score

Exploits0

RedhatCVE•added 2025/05/23 3:51 a.m.•5 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name...

7.8CVSS7.2AI score0.00062EPSS

Exploits0References1

RedhatCVE•added 2025/02/06 1:55 a.m.•4 views

CVE-2022-25694

Memory corruption in Modem due to usage of Out-of-range pointer offset in UIM...

8.4CVSS7AI score0.00127EPSS

Exploits0References1

OSV•added 2024/10/23 4:15 p.m.•1 views

CVE-2024-30124

HCL Sametime is impacted by insecure services in-use on the UIM client by default. An unused legacy REST service was enabled by default using the HTTP protocol. An attacker could potentially use this service endpoint maliciously...

4CVSS5.8AI score

Exploits0References1

NVD•added 2024/10/23 4:15 p.m.•17 views

CVE-2024-30124

4CVSS0.00076EPSS

Exploits0References1

CVE•added 2024/10/23 3:17 p.m.•59 views

CVE-2024-30124

CVE-2024-30124 affects HCL Sametime; an unused legacy REST service was enabled by default over HTTP in the UIM client. The issue allows a local attacker to potentially abuse the service endpoint, with the CVSS indicating Local access, low attack complexity, no privileges, and a LOW availability i...

4CVSS4.3AI score0.00076EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/10/23 3:17 p.m.•16 views

CVE-2024-30124 HCL Sametime is impacted by insecure services

4CVSS0.00076EPSS

Exploits0References1

Positive Technologies•added 2024/10/23 12:0 a.m.•2 views

PT-2024-23198

Name of the Vulnerable Software and Affected Versions HCL Sametime affected versions not specified Description The issue concerns insecure services in-use on the UIM client by default. Specifically, an unused legacy REST service was enabled by default using the HTTP protocol. This could potential...

4CVSS6.5AI score0.00076EPSS

Exploits0References4

NVD•added 2023/12/05 3:15 a.m.•11 views

CVE-2023-33018

Memory corruption while using the UIM diag command to get the operators name...

7.8CVSS0.00062EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by