12 matches found
Azure Access Technology BLU-IC2和Azure Access Technology BLU-IC4 安全漏洞
The Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4 are both networked access controllers from Azure Access Technology, USA. An information disclosure vulnerability exists in Azure Access Technology BLU-IC2 and Azure Access Technology BLU-IC4, which is caused by incorrect...
CVE-2025-58445
CVE-2025-58445 concerns the Atlantis self-hosted Go application. The connected document GO-2025-3940 describes Atlantis exposing the service version publicly via the "/status" API endpoint in github.com/runatlantis/atlantis. The Initial document states that this information disclosure could allow...
Atlantis Exposes Service Version Publicly on /status API Endpoint
Summary Atlantis publicly exposes detailed version information on its /status endpoint. This information disclosure could allow attackers to identify and target known vulnerabilities associated with the specific versions, potentially compromising the service's security posture. Details The /statu...
CVE-2023-32542
Out-of-bounds read vulnerability exists in TELLUS v4.0.15.0 and TELLUS Lite v4.0.15.0. Opening a specially crafted V8 file may lead to information disclosure and/or arbitrary code execution...
CVE-2022-34355
CVE-2022-34355 affects IBM Jazz Foundation / IBM Engineering Lifecycle Management. Affected versions disclose sensitive version information to a user, which could be used in further attacks. Affected products and versions: CLM 6.0.6 and 6.0.6.1; ELM 7.0, 7.0.1, 7.0.2. Remediation (as per IBM bull...
IBM Jazz Foundation Security Vulnerability
IBM Jazz Foundation is a next-generation collaboration platform for software delivery technology from International Business Machines IBM. A security vulnerability exists in IBM Jazz Foundation that stems from the potential to disclose sensitive version information to users that could be used to...
PT-2022-22681 · Ibm · Ibm Business Automation Workflow
Name of the Vulnerable Software and Affected Versions: IBM Business Automation Workflow versions 18.0.0.0 through 22.0.1 Description: The issue could disclose sensitive version information to authenticated users, which could be used in further attacks against the system. Recommendations: For...
CVE-2021-38954
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.5 and 6.1.0.0 through 6.1.1.0 could disclose sensitive version information that could aid in future attacks against the system. IBM X-Force ID: 211414...
Security Bulletin: Multiple Security vulnerabilities have been fixed in the IBM Security Verify Access Docker container
Summary Multiple vulnerabilities have been fixed in the IBM Security Verify Access Docker container. Vulnerability Details CVEID: CVE-2021-20523 DESCRIPTION: IBM Security Access Manager Docker could allow a remote attacker to obtain sensitive information when a detailed technical error message is...
Missing Access Check in extension "Frontend User Registration" (sf_register)
It has been discovered that the extension "Frontend User Registration" sfregister lacks a proper access check. Release Date: May 24, 2016 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: version 6.2.7 and below Vulnerability...
Cisco FirePOWER Management Center Software Version Information Disclosure Vulnerability (cisco-sa-20151209-fmc)
A vulnerability in Cisco FirePOWER Management Center could allow an unauthenticated, remote attacker to obtain information about the version of Cisco FirePOWER Management Center software that is running on an affected system. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might ...
CVE-2012-0300
CVE-2012-0300 affects Symantec Message Filter’s Brightmail Control Center/web management interface (Symantec Message Filter 6.3 and prior). Root cause: improper restriction of sessions to the listening port enables remote disclosure of potentially sensitive version information via unspecified vec...