CVE-2023-32331
- EPSS 0.09%
- Published 04.03.2024 19:15:18
- Last modified 31.01.2025 16:27:03
IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote attacker to cause a denial of service through its browser UI. IBM X-Force ID: 254979.
CVE-2021-38933
- EPSS 0.03%
- Published 19.07.2023 02:15:09
- Last modified 21.11.2024 06:18:14
IBM Sterling Connect:Direct for UNIX 1.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 210574.
CVE-2023-29259
- EPSS 0.07%
- Published 19.07.2023 02:15:09
- Last modified 21.11.2024 07:56:46
IBM Sterling Connect:Express for UNIX 1.5 browser UI is vulnerable to attacks that rely on the use of cookies without the SameSite attribute. IBM X-Force ID: 252055.
CVE-2023-29260
- EPSS 0.05%
- Published 19.07.2023 02:15:09
- Last modified 21.11.2024 07:56:46
IBM Sterling Connect:Express for UNIX 1.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other at...