Security Bulletin: Cross-Site Scripting Vulnerability Affects IBM Sterling File Gateway (CVE-2020-4564)

Summary IBM Sterling File Gateway has addressed XSS security vulnerablity Vulnerability Details CVEID: CVE-2020-4564 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition and IBM Sterling File Gateway are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary...

Security Bulletin: SQL Injection Vulnerability Affects IBM Sterling B2B Integrator Dashboard User Interface (CVE-2019-4598)

Summary IBM Sterling B2B Integrator has addressed the SQL Injection vulnerability. Vulnerability Details CVEID: CVE-2019-4598 DESCRIPTION: IBM Sterling B2B Integrator Standard Edition is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow...

Ruby on Rails < 6.0.3.2 DoS Vulnerability

Ruby on Rails is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

ABB Device Library Wizard

1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION: Low skill level to exploit Vendor: ABB Equipment: Device Library Wizard Vulnerability: Insecure Storage of Sensitive Information 2. RISK EVALUATION Successful exploitation of this vulnerability could allow a low-level user to escalate privileges and...