Skip to main content
CVE-2015-2559 LOW Monitor

Drupal 6.x before 6.35 and 7.x before 7.35 allows remote authenticated users to reset the password of other accounts by leveraging an account with the same password hash as another account and a. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Debian Linux Drupal
NVD
CVSS 2.0
3.5
EPSS
0.4%
CVE-2014-8923 LOW PATCH Monitor

The (1) IBM Tivoli Identity Manager Active Directory adapter before 5.1.24 and (2) IBM Security Identity Manager Active Directory adapter before 6.0.14 for IBM Security Identity Manager on Windows,. Rated low severity (CVSS 1.9). This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

IBM Information Disclosure Microsoft Security Identity Manager Active Directory Adapter Tivoli Identity Manager Active Directory Adapter
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2014-6134 LOW PATCH Monitor

IBM Rational ClearCase 8.0.0 before 8.0.0.14 and 8.0.1 before 8.0.1.7, when Installation Manager before 1.8.2 is used, retains cleartext server passwords in process memory throughout the installation. Rated low severity (CVSS 1.2). This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

IBM Information Disclosure Installation Manager Rational Clearcase
NVD
CVSS 2.0
1.2
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy