Leawo Prof. Media security vulnerabilities

Leawo Prof. Media is a multimedia toolkit developed by Leawo Corporation. Version 11.0.0.1 of Leawo Prof. Media contains a security vulnerability, which stems from an excessively large payload in the activation key code field. This vulnerability could lead to denial-of-service attacks...

CVE-2024-28760

IBM App Connect Enterprise 11.0.0.1 through 11.0.0.25 and 12.0.1.0 through 12.0.12.0 dashboard is vulnerable to a denial of service due to improper restrictions of resource allocation. IBM X-Force ID: 285244...

CVE-2024-28760

CVE-2024-28760 affects IBM App Connect Enterprise dashboard. Affected versions: 11.0.0.1–11.0.0.25 and 12.0.1.0–12.0.12.0. Root cause: improper restrictions of resource allocation in the Dashboard component, leading to a denial of service. Practical impact: DoS, with CVSS base score 4.3 (Network ...

Security Bulletin: IBM App Connect Enterprise is vulnerable to a remote attack due to the node.js module follow-redirects and Express.js (CVE-2024-28849, CVE-2024-29041)

Summary IBM App Connect Enterprise is vulnerable to a remote attack due to node.js module follow-redirects and Express.js. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2024-28849 DESCRIPTION: Node.js follow-redirects module could allow...

Security Bulletin: IBM App Connect Enterprise is vulnerable to cross-site request forgery due to Axios ( CVE-2023-45857)

Summary IBM App Connect Enterprise is vulnerable to a a cross-site request forgery due to Axios. This bulletin identifies the steps to take to address the vulnerability. Vulnerability Details CVEID:CVE-2023-45857 DESCRIPTION: Axios is vulnerable to cross-site request forgery, caused by improper...