Lucene search
K

8 matches found

OSV
OSV
added 2026/05/11 7:32 p.m.8 views

MINI-5V42-4JX4-QC75

Bulletin has no description...

7.5CVSS5.7AI score0.00588EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/09/10 12:0 a.m.2 views

Fedora: Security Advisory (FEDORA-2024-71ef04b872)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/07/04 12:0 a.m.4 views

Fedora 40 : firmitas (2024-71ef04b872)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-71ef04b872 advisory. Cryptography v42 is the new thing. Please follow the steps provided here https://github.com/fedora-infra/firmitas/blob/main/README.md for testing. References...

5.6AI score
Exploits0References1
NVD
NVD
added 2022/01/20 8:15 p.m.18 views

CVE-2021-29785

IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID:...

5.9CVSS0.01299EPSS
Exploits0References2
Prion
Prion
added 2022/01/20 8:15 p.m.16 views

Information disclosure

IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID:...

4.3CVSS5.3AI score0.01299EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/01/20 7:40 p.m.17 views

CVE-2021-29785

IBM Security SOAR V42 and V43could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID:...

5.9CVSS5.5AI score0.01299EPSS
Exploits0References2
CVE
CVE
added 2022/01/20 7:40 p.m.47 views

CVE-2021-29785

CVE-2021-29785 affects IBM Security SOAR. The root cause is the product’s failure to properly enable HTTP Strict-Transport-Security (HSTS) headers on some endpoints, which could allow an attacker to obtain sensitive information through man-in-the-middle techniques. IBM’s security bulletin confirm...

5.9CVSS5.4AI score0.01299EPSS
Exploits0References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/01/06 11:0 p.m.52 views

Security Bulletin: IBM® Security SOAR is vulnerable to denial of service and arbitrary code execution due to Apache Log4j (CVE-2021-45105 and CVE-2021-45046).

Summary Apache Log4j, a dependency of Elasticsearch as used in IBM® Security SOAR, has known vulnerabilities CVE-2021-45105, CVE-2021-45046. These are addressed by upgrading IBM Security SOAR to the latest build of v42 or latest build of v43. The fix packages include Apache Log4j 2.17...

10CVSS0.6AI score0.99999EPSS
Exploits356Affected Software1
Rows per page
Query Builder