CVE-2025-36222
- EPSS 0.05%
- Veröffentlicht 11.09.2025 20:44:06
- Zuletzt bearbeitet 02.10.2025 19:31:43
IBM Fusion 2.2.0 through 2.10.1, IBM Fusion HCI 2.2.0 through 2.10.0, and IBM Fusion HCI for watsonx 2.8.2 through 2.10.0 uses insecure default configurations that could expose AMQStreams without client authentication that could allow an attacker to ...
CVE-2024-22315
- EPSS 0.01%
- Veröffentlicht 28.01.2025 02:15:28
- Zuletzt bearbeitet 19.08.2025 15:51:59
IBM Fusion and IBM Fusion HCI 2.3.0 through 2.8.2 is vulnerable to insecure network connection by allowing an attacker who gains access to a Fusion container to establish an external network connection.
CVE-2023-43040
- EPSS 6.21%
- Veröffentlicht 14.05.2024 13:46:23
- Zuletzt bearbeitet 14.08.2025 19:30:51
IBM Spectrum Fusion HCI 2.5.2 through 2.7.2 could allow an attacker to perform unauthorized actions in RGW for Ceph due to improper bucket access. IBM X-Force ID: 266807.
CVE-2023-50948
- EPSS 0.07%
- Veröffentlicht 08.01.2024 02:15:13
- Zuletzt bearbeitet 21.11.2024 08:37:35
IBM Storage Fusion HCI 2.1.0 through 2.6.1 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM...