BIG-IP Advanced WAF and ASM incorrectly handle certain WebSocket requests. This issue occurs when the following condition is met: * BIG-IP Advanced WAF or ASM handles a malicious WebSocket message. ...

Continue Reading

May 30, 2022

[![](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEjPILqKGY0VarXgycC38XiNZhAds6X8o4a6aZIypxuNJBbuABj-1FrSZopkW4WFvI6bREwF6gwOdlZ-yuSGrYoZ80YsnYB09qjJJg-N1myjDderbxzi5hQXUQQqn0PHRkaTvFBMU0- ...

Continue Reading

May 30, 2022

## 1. EXECUTIVE SUMMARY * **CVSS v3 9.8** * **ATTENTION: **Exploitable remotely/low attack complexity * **Vendor:** Aethon (owned by ST Engineering) * **Equipment: **TUG Home Base Server * * ...

Continue Reading

May 30, 2022

## Capture Plugin  Capturing credentials is a critical and early phase in the playbook of many offens ...

Continue Reading

May 30, 2022

## Summary IBM UrbanCode Build is affected by CVE-2021-42340 ## Vulnerability Details ** CVEID: **[CVE-2021-42340]() ** DESCRIPTION: **Apache Tomcat is vulnerable to a denial of service, caused by a m ...

Continue Reading

May 30, 2022

A micro version update (from 1.6.3 to 1.6.4) is now available for Red Hat Camel K that includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the Referenc ...

Continue Reading

May 30, 2022

The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2022:0083-1 advisory. - WeeChat before 3.2.1 allows remote attackers to ...

Continue Reading

May 30, 2022

Automotive Grade Linux Kooky Koi 11.0.0, 11.0.1, 11.0.2, 11.0.3, 11.0.4, and 11.0.5 is affected by Incorrect Access Control in usr/bin/afb-daemon. To exploit the vulnerability, an attacker should send ...

Continue Reading

May 30, 2022