|
195011
|
4.4 |
MEDIUM
Local
|
linux
debian
|
linux_kernel
debian_linux
|
A flaw was found in the Linux kernel. A corrupted timer tree caused the task wakeup to be missing in the timerqueue_add function in lib/timerqueue.c. This flaw allows a local attacker with special us…
|
-
|
CVE-2021-20317
|
2024-11-21 14:46 |
2021-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195012
|
4.3 |
MEDIUM
Network
|
ibm
|
sterling_file_gateway
|
IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote authenciated user to obtain sensitive information. By sending a specially crafted request, the user could disclose a valid filep…
|
NVD-CWE-noinfo
|
CVE-2021-20563
|
2024-11-21 14:46 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195013
|
4.3 |
MEDIUM
Network
|
ibm
|
sterling_file_gateway
|
IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information co…
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-20485
|
2024-11-21 14:46 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195014
|
5.4 |
MEDIUM
Network
|
ibm
|
sterling_file_gateway
|
IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20484
|
2024-11-21 14:46 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195015
|
5.5 |
MEDIUM
Local
|
ibm
|
security_verify_bridge
|
IBM Security Verify Bridge 1.0.5.0 does not properly validate a certificate which could allow a local attacker to obtain sensitive information that could aid in further attacks against the system. IB…
|
CWE-295
Improper Certificate Validation
|
CVE-2021-20435
|
2024-11-21 14:46 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195016
|
4.4 |
MEDIUM
Local
|
ibm
|
security_verify_bridge
|
IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 196346.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2021-20434
|
2024-11-21 14:46 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195017
|
2.7 |
LOW
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-20377
|
2024-11-21 14:46 |
2021-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195018
|
6.5 |
MEDIUM
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.3 could allow a an authenticated user to obtain sensitive information that could be used in further attacks against the system. IBM X-Force ID: 196345.
|
NVD-CWE-noinfo
|
CVE-2021-20433
|
2024-11-21 14:46 |
2021-09-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195019
|
5.3 |
MEDIUM
Network
|
ibm
|
security_secret_server
|
IBM Security Secret Server up to 11.0 stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer…
|
CWE-200
Information Exposure
|
CVE-2021-20582
|
2024-11-21 14:46 |
2021-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195020
|
5.3 |
MEDIUM
Network
|
ibm
|
security_secret_server
|
IBM Security Secret Server up to 11.0 could allow an attacker to enumerate usernames due to improper input validation. IBM X-Force ID: 199243.
|
CWE-20
Improper Input Validation
|
CVE-2021-20569
|
2024-11-21 14:46 |
2021-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
