Filter
AND
AND
IBM Cognos Analyticsvm2 Sandbox Escape vulnerability
10
First published (updated )
IBM Cognos AnalyticsIn Clojure before 1.9.0, classes can be used to construct a serialized object that executes arbitrar…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsImproperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-…
9.8
First published (updated )
AndroidIn the xmlSnprintfElementContent function of valid.c, there is a possible out of bounds write. This …
8.8
First published (updated )
IBM Cognos AnalyticsEclipse Jetty could allow a remote attacker to hijack a user's session, caused by a flaw in the File…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsNode.js is vulnerable to a denial of service, caused by an error when reading unprocessed HTTP reque…
7.5
EPSS
0.04%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
redhat/rh-sso7-keycloakInefficient Regular Expression Complexity in moment
7.5
First published (updated )
FedoraNode.js could allow a remote attacker to bypass security restrictions, caused by the circumvention o…
7.5
First published (updated )
Eclipse JettyIn Eclipse Jetty version 9.3.x and 9.4.x, the server is vulnerable to Denial of Service conditions i…
7.5
First published (updated )
redhat/OpenSSLIncorrect cipher key & IV length processing
7.5
EPSS
0.11%
First published (updated )
IBM Cognos AnalyticsIBM WebSphere Application Server Liberty denial of service
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsNode.js versions which bundle an unpatched version of OpenSSL or run against a dynamically linked ve…
7.4
First published (updated )
Apache ShiroApache Shiro: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in FORM authentication feature Apache Shiro.
7.4
First published (updated )
IBM Cognos AnalyticsNode.js could allow a local attacker to gain elevated privileges on the system, caused by the failur…
7.3
First published (updated )
Apache ShiroApache Shiro before 1.13.0 or 2.0.0-alpha-4, may be susceptible to a path traversal attack that results in an authentication bypass when used together with path rewriting
6.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cognos AnalyticsNode.js could allow a remote attacker to bypass security restrictions, caused by the improper handli…
6.5
EPSS
0.04%
First published (updated )
IBM Cognos AnalyticsNode.js is vulnerable to a denial of service, caused by a resource exhaustion flaw in fetch() brotli…
6.5
EPSS
0.04%
First published (updated )
maven/org.apache.santuario:xmlsecApache Santuario: Private Key disclosure in debug-log output
6.5
First published (updated )
IBM Cognos AnalyticsIBM Cognos Analytics cross-site scripting
6.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.