Lucene search
K

3 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/03/10 8:18 a.m.8 views

Security Bulletin: IBM Maximo Application Suite uses os/exec 1.24.3; 1.24.4, ansible-9.4.0, github.com/eclipse/paho.mqtt.golang v1.3.5 and archive/tar 1.24.2; 1.24.4 which is vulnerable to CVE-2025-47906,CVE-2025-14010,CVE-2025-10543 and CVE-2025-58183

Summary IBM Maximo Application Suite uses os/exec 1.24.3; 1.24.4, ansible-9.4.0, github.com/eclipse/paho.mqtt.golang v1.3.5 and archive/tar 1.24.2; 1.24.4 which is vulnerable to CVE-2025-47906,CVE-2025-14010,CVE-2025-10543 and CVE-2025-58183. This bulletin contains information regarding the...

6.5CVSS5.8AI score0.00489EPSS
Exploits1Affected Software1
CBLMariner
CBLMariner
added 2026/01/12 9:27 p.m.4 views

CVE-2025-10543 affecting package telegraf for versions less than 1.31.0-12

CVE-2025-10543 affecting package telegraf for versions less than 1.31.0-12. A patched version of the package is available...

6.3CVSS6.9AI score0.00197EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/12/05 9:4 a.m.4 views

In Eclipse Paho Go MQTT v3.1 library (paho.mqtt.golang) versions <=1.5.0 UTF-8 encoded strings, passed into the library, may be incorrectly encoded if their length exceeds 65535 bytes. This may lead to unexpected content in packets sent to the server (for example, part of an MQTT topic may leak into the message body in a PUBLISH packet). The issue arises because the length of the data passed in was converted from an int64/int32 (depending upon CPU) to an int16 without checks for overflows. The int16 length was then written, followed by the data (e.g. topic). This meant that when the data (e.g. topic) was over 65535 bytes then the amount of data written exceeds what the length field indicates. This could lead to a corrupt packet, or mean that the excess data leaks into another field (e.g. topic leaks into message body).

...

6.3CVSS7.2AI score0.00197EPSS
Exploits0
Rows per page
Query Builder