VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2025-01-27
CVE-2024-28766
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 could disclose sensitive information about directory contents that could aid in further attacks against the system.
low complexity
CWE-548
2.4
2.4
2025-01-27
CVE-2024-28770
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies.
network
high complexity
CWE-614
4.8
4.8
2025-01-27
CVE-2024-28771
IBM Security Directory Integrator 7.2.0 and IBM Security Verify Directory Integrator 10.0.0 does not set the secure attribute on authorization tokens or session cookies.
network
high complexity
CWE-614
4.8
4.8
2025-01-27
CVE-2025-0721
Cross-site Scripting vulnerability in Needyamin Image Gallery Management System 1.0
A vulnerability classified as problematic has been found in needyamin image_gallery 1.0.
network
low complexity
needyamin
CWE-79
6.1
6.1
2025-01-27
CVE-2025-0722
Unrestricted Upload of File with Dangerous Type vulnerability in Needyamin Image Gallery Management System 1.0
A vulnerability classified as critical was found in needyamin image_gallery 1.0.
network
low complexity
needyamin
CWE-434
7.2
7.2
2025-01-26
CVE-2025-0720
A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux.
local
low complexity
CWE-121
3.3
3.3
2025-01-26
CVE-2023-38009
IBM Cognos Mobile Client 1.1 iOS may be vulnerable to information disclosure through man in the middle techniques due to the lack of certificate pinning.
high complexity
CWE-295
4.2
4.2
2025-01-26
CVE-2023-50945
Unprotected Storage of Credentials vulnerability in IBM Common Licensing 9.0.0
IBM Common Licensing 9.0 stores user credentials in plain clear text which can be read by a local user.
local
low complexity
ibm
CWE-256
5.5
5.5
2025-01-26
CVE-2023-50946
Incorrect Authorization vulnerability in IBM Common Licensing 9.0.0
IBM Common Licensing 9.0 could allow an authenticated user to modify a configuration file that they should not have access to due to a broken authorization mechanism.
network
low complexity
ibm
CWE-863
6.5
6.5
2025-01-26
CVE-2024-31906
IBM Automation Decision Services 23.0.2 allows web pages to be stored locally which can be read by another user on the system.
local
low complexity
CWE-525
6.2
6.2
«
Previous
1
2
...
303
304
305
(current)
306
307
...
16754
16755
»
Next