|
195131
|
7.5 |
HIGH
Network
|
privoxy
|
privoxy
|
A memory leak vulnerability was found in Privoxy before 3.0.29 in the show-status CGI handler when no action files are configured.
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2021-20209
|
2024-11-21 14:46 |
2021-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195132
|
7.2 |
HIGH
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request. IBM X-Force ID: 199184.
|
CWE-78
OS Command
|
CVE-2021-20557
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195133
|
5.3 |
MEDIUM
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further …
|
CWE-209
Information Exposure Through an Error Message
|
CVE-2021-20428
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195134
|
9.8 |
CRITICAL
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, o…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2021-20426
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195135
|
7.5 |
HIGH
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196280.
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2021-20419
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195136
|
7.8 |
HIGH
Local
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 195770.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2021-20389
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195137
|
6.1 |
MEDIUM
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20386
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195138
|
7.2 |
HIGH
Network
|
ibm
|
security_guardium
|
IBM Security Guardium 11.2 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerabilit…
|
NVD-CWE-noinfo
|
CVE-2021-20385
|
2024-11-21 14:46 |
2021-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195139
|
5.3 |
MEDIUM
Network
|
ibm
|
control_center
|
IBM Control Center 6.2.0.0 could allow a user to obtain sensitive version information that could be used in further attacks against the system. IBM X-Force ID: 198763.
|
NVD-CWE-noinfo
|
CVE-2021-20529
|
2024-11-21 14:46 |
2021-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
195140
|
5.4 |
MEDIUM
Network
|
ibm
|
control_center
|
IBM Control Center 6.2.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially…
|
CWE-79
Cross-site Scripting
|
CVE-2021-20528
|
2024-11-21 14:46 |
2021-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
