Lucene search
+L

205 matches found

openbugbounty
openbugbounty
added 2022/03/10 8:48 p.m.9 views

mrpeanutir.com Cross Site Scripting vulnerability OBB-2422573

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
openbugbounty
openbugbounty
added 2022/01/15 5:10 p.m.24 views

blog.stellantisnorthamerica.com Cross Site Scripting vulnerability OBB-2336959

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
ibm
ibm
added 2022/01/06 8:36 p.m.28 views

Security Bulletin: WebSphere Application Server is vulnerable to a denial of service which can impact IBM Engineering Lifecycle Management (ELM) products based on IBM Jazz technology

Summary WebSphere Application Server is vulnerable to a denial of service CVE-2021-38951. This may affect IBM Engineering Products based on IBM Jazz technology. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected...

7.5CVSS7.2AI score0.01521EPSS
Exploits0Affected Software10
ibm
ibm
added 2021/12/15 1:32 p.m.71 views

Security Bulletin: IBM Application Navigator is vulnerable to an remote attacker exploitation of Apache Log4j (CVE-2021-44228)

Summary The IBM Application Navigator contains a copy of Apache Log4j which is not used by the IBM Application Navigator function. Out of an abundance of caution this update removes the unused copy of Apache Log4j. Vulnerability Details CVEID: CVE-2021-44228 DESCRIPTION: Apache Log4j could allow ...

10CVSS1.7AI score0.99999EPSS
Exploits354Affected Software1
openvas
openvas
added 2021/10/06 12:0 a.m.22 views

Python < 2.7.14, 3.4.x < 3.4.8, 3.5.x < 3.5.5 PyString_DecodeEscape integer overflow (bpo-30657) - Linux

CPython aka Python is prone to an integer overflow vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:python:python";...

9.8CVSS9.6AI score0.08228EPSS
Exploits0References2
ibm
ibm
added 2021/09/14 8:7 p.m.51 views

Security Bulletin: Security Vulnerabilities in IBM® Java SDK July 2021 CPU affect multiple IBM Continuous Engineering products based on IBM Jazz Technology

Summary There are multiple vulnerabilities in IBM® SDK Java Technology Edition from July 2021 CPU that are used by IBM Jazz Team Server affecting the following IBM Jazz Team Server based Applications: Engineering Lifecycle Management ELM, IBM Engineering Requirements Management DOORS Next DOORS...

7.5CVSS0.5AI score0.04008EPSS
Exploits0Affected Software9
ibm
ibm
added 2021/09/01 4:38 p.m.39 views

Security Bulletin: Multiple security vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Security Directory Server

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Directory Server ISDS. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

8.8CVSS1AI score0.52331EPSS
Exploits0Affected Software1
openbugbounty
openbugbounty
added 2021/08/25 12:44 p.m.23 views

travelmanagers.com.au Cross Site Scripting vulnerability OBB-2125991

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
rosalinux
rosalinux
added 2021/07/02 5:13 p.m.72 views

Advisory ROSA-SA-2021-1867

Software: libebml 1.3.9 OS: Cobalt 7.9 CVE-ID: CVE-2021-3405 CVE-Crit: MEDIUM CVE-DESC: A bug was found in libebml before version 1.4.2. A heap overflow bug exists in the EbmlString :: ReadData and EbmlUnicodeString :: ReadData implementations of libebml. CVE-STATUS: default CVE-REV: default...

6.5CVSS7.3AI score0.01737EPSS
Exploits1
ibm
ibm
added 2021/04/28 6:35 p.m.23 views

Security Bulletin: Vulnerability in WebSphere Application Server affects multiple IBM Rational products based on IBM Jazz technology (CVE-2016-3092)

Summary Apache Commons Fileupload vulnerability in WebSphere Application Server bundled with IBM Jazz Team Server based Applications affects multiple products: Collaborative Lifecycle Management CLM, Rational DOORS Next Generation RDNG, Rational Engineering Lifecycle Manager RELM, Rational Team...

7.8CVSS0.8AI score0.35927EPSS
Exploits0Affected Software6
ibm
ibm
added 2021/04/28 6:35 p.m.23 views

Security Bulletin: Security Vulnerability in IBM® Java SDK affect IBM Rational Team Concert Apr 2019 CPU

Summary There is a security vulnerability in IBM® SDK Java Technology Edition, Version 1.7 and 1.8 that is used by Rational Team Concert RTC. This issue was disclosed as part of the IBM Java SDK updates in April 2019. Vulnerability Details CVEID: CVE-2019-2602 DESCRIPTION: An unspecified...

7.5CVSS0.4AI score0.07437EPSS
Exploits0Affected Software2
ibm
ibm
added 2021/04/05 8:34 p.m.25 views

Security Bulletin: Security vulnerability has been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager(CVE-2020-4949)

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Identity Manager ISIM. Information about security vulnerabilitiy affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

8.2CVSS3AI score0.04754EPSS
Exploits0Affected Software1
ibm
ibm
added 2021/02/22 11:37 p.m.25 views

Security Bulletin: Multiple vulnerabilities have been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Identity Manager ISIM. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

4.3CVSS2.8AI score0.03625EPSS
Exploits0Affected Software1
nessus
nessus
added 2020/12/14 12:0 a.m.48 views

SUSE SLES15 Security Update : kernel (SUSE-SU-2020:3764-1)

The SUSE Linux Enterprise 15 SP2 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed : CVE-2020-15436: Fixed a use after free vulnerability in fs/blockdev.c which could have allowed local users to gain privileges or cause a denial of service...

7.8CVSS7.3AI score0.06692EPSS
Exploits9References96
ibm
ibm
added 2020/10/05 7:8 p.m.17 views

Security Bulletin: A Security vulnerabilty has been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager(CVE-2020-4629)

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Identity Manager ISIM. Information about a security vulnerability affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

3.3CVSS2.3AI score0.00332EPSS
Exploits0Affected Software1
hackerone
hackerone
added 2020/09/23 8:51 a.m.22 views

LY Corporation: Path traversal in a Tomcat server

A path traversal vulnerability was discovered in a Tomcat server, which allowed an attacker to access internal resources such as the administrator page. The vulnerability was caused by a misconfiguration between the reverse proxy and the WAS, and occurred when the attacker entered the string "..;...

6.9AI score
Exploits0
ibm
ibm
added 2020/08/31 8:16 p.m.31 views

Security Bulletin: Security vulnerabilty have been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager(CVE-2019-17566)

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Identity Manager ISIM. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

7.5CVSS2.7AI score0.1074EPSS
Exploits0Affected Software1
openbugbounty
openbugbounty
added 2020/07/31 2:28 p.m.13 views

kolczykowo.pl Cross Site Scripting vulnerability OBB-1244779

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
redhat
redhat
added 2020/07/29 6:6 a.m.5 views

jackson-databind: Serialization gadgets in org.apache.openjpa.ee.WASRegistryManagedRuntime

A flaw was found in jackson-databind 2.x in versions prior to 2.9.10.4. The interaction between serialization gadgets and typing is mishandled. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

8.8CVSS7.1AI score0.06278EPSS
Exploits0References5
ibm
ibm
added 2020/07/29 12:11 a.m.28 views

Security Bulletin: Security vulnerabilty have been identified in IBM WebSphere Application Server shipped with IBM Security Identity Manager( CVE-2020-4464 )

Summary IBM WebSphere Application Server WAS is shipped with IBM Security Identity Manager ISIM. Information about security vulnerabilities affecting IBM WebSphere Application Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the...

9CVSS3AI score0.13227EPSS
Exploits0Affected Software1
Rows per page
Query Builder