Juniper Junos OS Vulnerability (JSA11215)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA11215 advisory. - An Improper Privilege Management vulnerability in the gRPC framework, us ...

Continue Reading
Guide: How to Hack API in 60 minutes or API Threats Simulation with Open-Source Tools

**What is API?** API is the abbreviation for Application Programming Interface, which is a product middle person that permits two applications to converse with one another. ![](https://cdn-images-1.me ...

Continue Reading
CVE-2021-41130

Extensible Service Proxy, a.k.a. ESP is a proxy which enables API management capabilities for JSON/REST or gRPC API services. ESPv1 can be configured to authenticate a JWT token. Its verified JWT clai ...

Continue Reading
Google Extensible Service Proxy Header Forgery

Post ContentRead More ...

Continue Reading
CVE-2021-32781

An out-of-bounds memory read vulnerability was found in envoyproxy/envoy. When using one of the following envoy extensions, it is possible to modify and increase the request or response body size of t ...

Continue Reading
CVE-2021-36155

LengthPrefixedMessageReader in gRPC Swift 1.1.0 and earlier allocates buffers of arbitrary length, which allows remote attackers to cause uncontrolled resource consumption and deny service.Read More ...

Continue Reading
CVE-2021-36154

HTTP2ToRawGRPCServerCodec in gRPC Swift 1.1.1 and earlier allows remote attackers to deny service via the delivery of many small messages within a single HTTP/2 frame, leading to Uncontrolled Recursio ...

Continue Reading
CVE-2021-36153

Mismanaged state in GRPCWebToHTTP2ServerCodec.swift in gRPC Swift 1.1.0 and 1.1.1 allows remote attackers to deny service by sending malformed requests.Read More ...

Continue Reading

Back to Main

Subscribe for the latest news: