Latest vulnerabilities for "ibm cognos dashboards"

8.1

EPSS

0.06%

First published (updated )

CVE-2024-25710

nodejs Node.jsXSS

7.5

First published (updated )

CVE-2023-30589

IBM Cognos DashboardsIBM Cognos Dashboards information disclosure

7.5

First published (updated )

CVE-2023-38275

IBM Cognos DashboardsIBM Cognos Dashboards information disclosure

7.5

First published (updated )

CVE-2023-38276

IBM Cognos DashboardsIBM Cognos Dashboards improper authentication

6.5

First published (updated )

CVE-2023-38735

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Node.jsLast updated 24 July 2024

5.3

First published (updated )

CVE-2023-30588

Python Programming LanguageInput Validation

5.3

First published (updated )

CVE-2023-27043

IBM Cognos Dashboards22 vulnerabilities

First published (updated )

IBM-7177766

Moby authz zero length regression

10

First published (updated )

CVE-2024-41110

Prototype Pollution in 75lb deep-merge 1.1.1 allows attackers to execute arbitrary code or cause a D…

9.8

First published (updated )

CVE-2024-38986

Certifi's removal of e-Tugra root certificate

9.8

First published (updated )

CVE-2023-37920

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded s…

9.1

First published (updated )

CVE-2024-42461

DNSJava DNSSEC Bypass

8.9

First published (updated )

CVE-2024-25638

OpenSearch could allow a remote authenticated attacker to bypass security restrictions, caused by a …

8.8

First published (updated )

CVE-2023-23612

HTTP/2 push headers memory-leak

8.6

EPSS

0.04%

First published (updated )

CVE-2024-2398

Decompressors can crash the JVM and leak memory content in Aircompressor

8.6

First published (updated )

CVE-2024-36114

libexpat through 2.5.0 allows a denial of service (resource consumption) because many full reparsing…

7.5

First published (updated )

CVE-2023-52425

Removal of TrustCor root certificate

7.5

First published (updated )

CVE-2022-23491

Proxy-Authorization header kept across hosts in follow-redirects

6.5

EPSS

0.04%

First published (updated )

CVE-2024-28849

ASN.1 date parser overread

6.5

EPSS

0.06%

First published (updated )

CVE-2024-7264

Infoleak

6.5

First published (updated )

CVE-2023-23613

jQuery UI contains potential XSS vulnerability when refreshing a checkboxradio with an HTML-like initial text label

6.1

First published (updated )

CVE-2022-31160

libexpat through 2.5.0 allows recursive XML Entity Expansion if XML_DTD is undefined at compile time…

5.5

First published (updated )

CVE-2023-52426

Regular Expression Denial of Service in micromatch

5.3

EPSS

0.04%

First published (updated )

CVE-2024-4067

In the Elliptic package 6.5.6 for Node.js, EDDSA signature malleability occurs because there is a mi…

5.3

First published (updated )

CVE-2024-42459

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because there is a mi…

5.3

First published (updated )

CVE-2024-42460

express vulnerable to XSS via response.redirect()

5

First published (updated )

CVE-2024-43796

Incorrect Error Handling Allowed Partial File Reads Over REST API in OpenSearch

4.3

First published (updated )

CVE-2022-41917

libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external …