Filters

Versions

9.7.2.7
39

IBM IBM® Engineering Requirements Management DOORS38 vulnerabilities

First published (updated )
IBM-7124058

IBM Engineering Requirements Management information disclosure

medium
5.1
First published (updated )
CVE-2023-50305

IBM Engineering Requirements Management cross-site scripting

medium
4.8
First published (updated )
CVE-2023-28525

IBM Engineering Requirements Management cross-site request forgery

medium
6.5
First published (updated )
CVE-2023-28949

IBM Common Licensing information disclosure

medium
4
First published (updated )
CVE-2023-50306

Apache Tomcat: Leaking of unrelated request bodies in default error page

high
7.5
EPSS
0.69%
First published (updated )
CVE-2024-21733

Apache Tomcat: Trailer header parsing too lenient

medium
5.3
First published (updated )
CVE-2023-45648

Apache Tomcat: Failure during request clean-up leads to sensitive data leaking to subsequent requests

medium
5.3
First published (updated )
CVE-2023-42795

Missing upper bound check on chunk length in snappy-java

high
7.5
First published (updated )
CVE-2023-43642

Race Condition

medium
5.9
First published (updated )
CVE-2023-28320

Use After Free

high
7.5
First published (updated )
CVE-2023-28319

Use After Free, Double Free

high
7.5
First published (updated )
CVE-2023-27537

cURL libcurl could allow a local attacker to bypass security restrictions, caused by a SSH connectio…

medium
5.5
First published (updated )
CVE-2023-27538

cURL libcurl could allow a remote attacker to bypass security restrictions, caused by a GSS delegati…

medium
5.9
First published (updated )
CVE-2023-27536

cURL libcurl could allow a remote attacker to bypass security restrictions, caused by a FTP too eage…

medium
5.9
First published (updated )
CVE-2023-27535

Path Traversal

high
8.8
First published (updated )
CVE-2023-27534

Input Validation

high
8.8
First published (updated )
CVE-2023-27533

cURL libcurl is vulnerable to a denial of service, caused by a flaw in the decompression chain imple…

high
7.5
First published (updated )
CVE-2023-23916

Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …

high
7.5
First published (updated )
CVE-2023-23915

Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text …

critical
9.1
First published (updated )
CVE-2023-23914

Use After Free

medium
5.9
First published (updated )
CVE-2022-43552

curl. Multiple issues were addressed by updating curl.

high
7.5
First published (updated )
CVE-2022-43551

Apache Tomcat request smuggling via malformed content-length

high
7.5
First published (updated )
CVE-2022-42252

Apache Tomcat: Information disclosure

medium
5.3
First published (updated )
CVE-2021-43980

Scala could allow a remote authenticated attacker to execute arbitrary code on the system, caused by…

critical
9.8
First published (updated )
CVE-2022-36944

Authentication Bypass Vulnerability

critical
9.8
First published (updated )
CVE-2022-32532

Cross-site Scripting in CKEditor4

medium
5.4
First published (updated )
CVE-2022-24728

Regular expression Denial of Service in dialog plugin

high
7.5
First published (updated )
CVE-2022-24729

HTML comments vulnerability allowing to execute JavaScript code

high
8.2
First published (updated )
CVE-2021-41165

Advanced Content Filter (ACF) vulnerability allowing to execute JavaScript code using malformed HTML

high
8.2
First published (updated )
CVE-2021-41164

Execution of JavaScript code using malformed HTML in ckeditor

high
7.3
First published (updated )
CVE-2021-37695

Apache Tomcat h2c request mix-up

high
7.5
First published (updated )
CVE-2021-25122

Infoleak

critical
9.1
First published (updated )
CVE-2021-27568

It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim …

high
7.5
First published (updated )
CVE-2021-26271

Apache Tomcat: Request header mix-up between HTTP/2 streams

high
7.5
First published (updated )
CVE-2020-17527

XSS

medium
6.1
First published (updated )
CVE-2020-27193

Infoleak

medium
5.3
First published (updated )
CVE-2020-13943

Input Validation

medium
5.3
First published (updated )
CVE-2020-14338

Null Pointer Dereference

high
7.5
First published (updated )
CVE-2020-13934

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203