A vulnerability was found in IBM Sterling Connect:Direct 4.2.0/4.3.0/6.0.0 on UNIX (Business Process Management Software). It has been rated as critical. Applying a patch is able to eliminate this problem. The bugfix is ready for download at www-933.ibm.com.
IBM Sterling Connect:Direct 4.2.0/4.3.0/6.0.0 on UNIX getuid Privilege Escalation
- Virtual Patching
- October 12, 2021
- 9:05 am
Contact us to get started
CVE-2023-6514 : HUAWEI AJMD-370S 103.1.0.110(SP12C00E2R1P2) BLUETOOTH MODULE LOGIC ERROR
Description The Bluetooth module of some Huawei Smart Screen products has an identity authentication bypass vulnerability. Successful exploitation of this
CVE-2023-22523 : ATLASSIAN ASSETS DISCOVERY CLOUD ASSETS DISCOVERY AGENT REMOTE CODE EXECUTION
Description This vulnerability, if exploited, allows an attacker to perform privileged RCE (Remote Code Execution) on machines with the Assets
CVE-2023-49070 : APACHE OFBIZ UP TO 18.12.9 CODE INJECTION
Description Pre-auth RCE in Apache Ofbiz 18.12.09. It’s due to XML-RPC no longer maintained still present. This issue affects Apache