Lucene search
K

6 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2022/07/29 7:23 p.m.39 views

Security Bulletin: IBM DataPower Gateway affected by multiple vulnerabilities in Java

Summary While core IBM DataPower Gateway does not use Java, certain components shipped with IDG may be vulnerable. IBM has addressed the CVEs. Vulnerability Details CVEID:CVE-2022-21434 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an...

5.3CVSS5.9AI score0.02617EPSS
Exploits0Affected Software1
OSV
OSV
added 2022/05/17 5:15 p.m.3 views

CVE-2020-4994

IBM DataPower Gateway 10.0.1.0 through 10.0.1.4 and 2018.4.1.0 through 2018.4.1.17 could allow a remote user to cause a temporary denial of service by sending invalid HTTP requests. IBM X-Force ID: 192906...

7.5CVSS6.4AI score0.0139EPSS
Exploits0References2
Prion
Prion
added 2022/05/17 5:15 p.m.19 views

Code injection

IBM DataPower Gateway 10.0.2.0, 10.0.3.0, 10.0.1.0 through 10.0.1.4, and 2018.4.1.0 through 2018.4.1.17 could allow a remote user to cause a denial of service by consuming resources with multiple requests. IBM X-Force ID: 208348...

5CVSS7.3AI score0.0139EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/05/16 12:0 a.m.3 views

CVE-2020-4994

IBM DataPower Gateway 10.0.1.0 through 10.0.1.4 and 2018.4.1.0 through 2018.4.1.17 could allow a remote user to cause a temporary denial of service by sending invalid HTTP requests. IBM X-Force ID: 192906...

7.5CVSS6.1AI score0.0139EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2021/03/09 5:22 p.m.29 views

Security Bulletin: IBM API Connect is impacted by a denial of service (DoS) vulnerability in OpenSSL (CVE-2020-1971)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-1971 DESCRIPTION: OpenSSL is vulnerable to a denial of service, caused by a NULL pointer dereference. If the GENERALNAMEcmp function contain an EDIPARTYNAME, an attacker could exploit this...

5.9CVSS1.1AI score0.06968EPSS
Exploits3Affected Software1
CNVD
CNVD
added 2020/06/29 12:0 a.m.2 views

IBM API Connect Information Disclosure Vulnerability (CNVD-2020-36386)

IBM API Connect APIConnect is a suite of integrated solutions for managing the API lifecycle from IBM USA. The product supports creating, running, managing, and securing APIs, microservices, and more. A security vulnerability exists in IBM API Connect versions 2018.4.1.0 through 2018.4.1.11, whic...

7.5CVSS6.7AI score0.00792EPSS
Exploits0References1
Rows per page
Query Builder