Search Results (24978 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2024-43186 3 Ibm, Linux, Microsoft 4 Aix, Infosphere Information Server, Linux Kernel and 1 more 2025-09-01 5.3 Medium
IBM InfoSphere Information Server 11.7 could allow an authenticated user to obtain sensitive information that is stored locally under certain conditions.
CVE-2024-51477 3 Ibm, Linux, Microsoft 4 Aix, Infosphere Information Server, Linux Kernel and 1 more 2025-09-01 4.3 Medium
IBM InfoSphere Information Server 11.7 could allow an authenticated to obtain sensitive username information due to an observable response discrepancy.
CVE-2024-7577 3 Ibm, Linux, Microsoft 4 Aix, Infosphere Information Server, Linux Kernel and 1 more 2025-09-01 4.4 Medium
IBM InfoSphere Information Server 11.7 could disclose sensitive user credentials from log files during new installation of the product.
CVE-2024-55895 3 Ibm, Linux, Microsoft 4 Aix, Infosphere Information Server, Linux Kernel and 1 more 2025-09-01 2.7 Low
IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system.
CVE-2024-49808 3 Ibm, Linux, Microsoft 4 Aix, Sterling Connect Direct Web Services, Linux Kernel and 1 more 2025-09-01 6.3 Medium
IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0 could allow an authenticated user to spoof the identity of another user due to improper authorization which could allow the user to bypass access restrictions.
CVE-2024-45651 3 Ibm, Linux, Microsoft 4 Aix, Sterling Connect Direct Web Services, Linux Kernel and 1 more 2025-09-01 6.3 Medium
IBM Sterling Connect:Direct Web Services 6.1.0, 6.2.0, and 6.3.0 does not invalidate session after a browser closure which could allow an authenticated user to impersonate another user on the system.
CVE-2025-27907 5 Hp, Ibm, Linux and 2 more 8 Hp-ux, Aix, I and 5 more 2025-09-01 4.1 Medium
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.
CVE-2024-22351 3 Ibm, Linux, Microsoft 4 Aix, Infosphere Information Server, Linux Kernel and 1 more 2025-09-01 6.3 Medium
IBM InfoSphere Information 11.7 Server does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system.
CVE-2020-17159 2 Microsoft, Redhat 2 Visual Studio Code, Language Support For Java 2025-08-28 7.8 High
Visual Studio Code Java Extension Pack Remote Code Execution Vulnerability
CVE-2020-17158 1 Microsoft 1 Dynamics 365 2025-08-28 8.8 High
Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability
CVE-2020-17156 1 Microsoft 2 Visual Studio 2017, Visual Studio 2019 2025-08-28 7.8 High
Visual Studio Remote Code Execution Vulnerability
CVE-2020-17153 1 Microsoft 1 Edge 2025-08-28 4.3 Medium
Microsoft Edge for Android Spoofing Vulnerability
CVE-2020-17152 1 Microsoft 1 Dynamics 365 2025-08-28 8.8 High
Microsoft Dynamics 365 for Finance and Operations (on-premises) Remote Code Execution Vulnerability
CVE-2020-17150 1 Microsoft 2 Tslint, Visual Studio Code 2025-08-28 7.8 High
Visual Studio Code Remote Code Execution Vulnerability
CVE-2020-17148 1 Microsoft 1 Visual Studio Code 2025-08-28 7.8 High
Visual Studio Code Remote Development Extension Remote Code Execution Vulnerability
CVE-2020-17147 1 Microsoft 1 Dynamics 365 2025-08-28 8.7 High
Dynamics CRM Webclient Cross-site Scripting Vulnerability
CVE-2020-17145 1 Microsoft 7 Azure Devops Server, Azure Devops Server 2019, Azure Devops Server 2020 and 4 more 2025-08-28 5.4 Medium
Azure DevOps Server and Team Foundation Services Spoofing Vulnerability
CVE-2020-17143 1 Microsoft 1 Exchange Server 2025-08-28 8.8 High
Microsoft Exchange Server Information Disclosure Vulnerability
CVE-2020-17142 1 Microsoft 1 Exchange Server 2025-08-28 9.1 Critical
Microsoft Exchange Remote Code Execution Vulnerability
CVE-2020-17141 1 Microsoft 1 Exchange Server 2025-08-28 8.4 High
Microsoft Exchange Remote Code Execution Vulnerability