cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-32331,https://securityvulnerability.io/vulnerability/CVE-2023-32331,Buffer Overflow Vulnerability in Connect:Express for UNIX Could Lead to Denial of Service,"IBM Connect:Express for UNIX version 1.5.0 is exposed to a buffer overflow vulnerability that can be exploited by remote attackers through the application's browser-based user interface. Successful exploitation may result in denial of service, impacting the availability of the service. Organizations utilizing this product should evaluate their security posture and consider implementing mitigations to safeguard against potential exploits.",IBM,Sterling Connect:express For Unix,7.5,HIGH,0.0005499999970197678,false,,true,false,false,,,false,false,,2024-03-04T18:38:46.392Z,0
CVE-2023-26023,https://securityvulnerability.io/vulnerability/CVE-2023-26023,IBM Planning Analytics Cartridge for Cloud Pak for Data information disclosure,Planning Analytics Cartridge for Cloud Pak for Data 4.0 exposes sensitive information in logs which could lead an attacker to exploit this vulnerability to conduct further attacks.  IBM X-Force ID:  247896.,IBM,Sterling Connect:express For Unix,6.5,MEDIUM,0.0009800000116229057,false,,false,false,false,,,false,false,,2023-07-19T02:15:00.000Z,0
CVE-2023-29259,https://securityvulnerability.io/vulnerability/CVE-2023-29259,IBM Sterling Connect:Express for UNIX information disclosure,IBM Sterling Connect:Express for UNIX 1.5 browser UI is vulnerable to attacks that rely on the use of cookies without the SameSite attribute.  IBM X-Force ID:  252055.,IBM,Sterling Connect:express For Unix,3.7,LOW,0.0006200000061653554,false,,false,false,false,,,false,false,,2023-07-19T02:15:00.000Z,0
CVE-2023-29260,https://securityvulnerability.io/vulnerability/CVE-2023-29260,IBM Sterling Connect:Express for UNIX server-side request forgery,"IBM Sterling Connect:Express for UNIX 1.5 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks.  IBM X-Force ID:  252135.",IBM,Sterling Connect:express For Unix,6.5,MEDIUM,0.0004799999878741801,false,,false,false,false,,,false,false,,2023-07-19T02:15:00.000Z,0
CVE-2021-38933,https://securityvulnerability.io/vulnerability/CVE-2021-38933,IBM Sterling Connect:Express for UNIX information disclosure,IBM Sterling Connect:Direct for UNIX 1.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.  IBM X-Force ID:  210574.,IBM,Sterling Connect:express For Unix,5.9,MEDIUM,0.0009800000116229057,false,,false,false,false,,,false,false,,2023-07-19T01:22:12.736Z,0