## Summary An information disclosure vulnerability in Kubernetes used by IBM InfoSphere Information Server was addressed. ## Vulnerability Details ** CVEID: **[CVE-2021-25740]() ** DESCRIPTION: **Kube ...
Continue Reading
January 03, 2023
## Summary IBM Sterling B2B Integrator has addressed the CKEditor security vulnerabilities in B2B API. ## Vulnerability Details ** CVEID: **[CVE-2021-32808]() ** DESCRIPTION: **CKEditor is vulnerable ...
Continue Reading
January 03, 2023
## Summary IBM Sterling B2B Integrator has addressed the vulnerability in OWASP ESAPI in B2B API ## Vulnerability Details ** CVEID: **[CVE-2013-5960]() ** DESCRIPTION: **OWASP ESAPI could allow a remo ...
Continue Reading
January 03, 2023
### Impact Incorrect default permissions for certain read-only resources in the Apiman 1.5.7.Final through 2.2.3.Final in the Apiman Manager REST API allows a remote authenticated attacker to access i ...
Continue Reading
January 03, 2023
### Impact Incorrect default permissions for certain read-only resources in the Apiman 1.5.7.Final through 2.2.3.Final in the Apiman Manager REST API allows a remote authenticated attacker to access i ...
Continue Reading
January 03, 2023
aEnrich a+HRD has insufficient user input validation for specific API parameter. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify an ...
Continue Reading
January 03, 2023
aEnrich a+HRD has improper validation for login function. An unauthenticated remote attacker can exploit this vulnerability to bypass authentication and access API function to perform arbitrary system ...
Continue Reading
January 03, 2023
The Administrator function of EasyTest has an Incorrect Authorization vulnerability. A remote attacker authenticated as a general user can exploit this vulnerability to bypass the intended access rest ...
Continue Reading
January 03, 2023
Back to Main
