CVE-2021-36153

Mismanaged state in GRPCWebToHTTP2ServerCodec.swift in gRPC Swift 1.1.0 and 1.1.1 allows remote attackers to deny service by sending malformed requests.Read More ...

Continue Reading
Juniper Junos OS Multiple DoS Vulnerabilities (JSA11167)

The version of Junos OS installed on the remote host is affected by multiple denial of service vulnerabilities as referenced in the JSA11167 advisory: - Some HTTP/2 implementations are vulnerable to ...

Continue Reading
[SECURITY] Fedora 35 Update: grpcurl-1.8.6-2.fc35

Like cURL, but for gRPC: Command-line tool for interacting with gRPC server s.Read More ...

Continue Reading
[SECURITY] Fedora 35 Update: golang-github-grpc-ecosystem-gateway-2-2.7.3-3.fc35

GRPC to JSON proxy generator following the gRPC HTTP spec.Read More ...

Continue Reading
Improper Authentication in etcd

etcd versions 3.2.x before 3.2.26 and 3.3.x before 3.3.11 are vulnerable to an improper authentication issue when role-based access control (RBAC) is used and client-cert-auth is enabled. If an etcd c ...

Continue Reading
New UAC-0056 activity: There’s a Go Elephant in the room

_This blog post was authored by Ankur Saini, Roberto Santos and Hossein Jazi._ UAC-0056 also known as SaintBear, UNC2589 and TA471 is a [cyber espionage actor]() that has been active since early 2021 ...

Continue Reading
CVE-2022-24777

grpc-swift is the Swift language implementation of gRPC, a remote procedure call (RPC) framework. Prior to version 1.7.2, a grpc-swift server is vulnerable to a denial of service attack via a reachabl ...

Continue Reading
CVE-2018-17453

GRPC::Unknown logging token disclosureRead More ...

Continue Reading

Back to Main

Subscribe for the latest news: