RHEL 8 : container-tools:2.0 (RHSA-2021:2291)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2291 advisory. - runc: vulnerable to symlink exchange attack (CVE ...

Continue Reading
Gitea 1.16.6 Remote Code Execution

Post ContentRead More ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

CVE-2022-35946

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. In af ...

Continue Reading
CVE-2022-35947

GLPI stands for Gestionnaire Libre de Parc Informatique and is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. Affec ...

Continue Reading
Security Updates for Microsoft Visual Studio Products (Sep 2022)

A denial of service (DoS) vulnerability exists in Visual Studio. An authenticated, remote attacker can exploit this issue, to cause the system to stop responding. Note that Nessus has not tested for t ...

Continue Reading
Gitea 1.16.6 – Remote Code Execution Exploit

Post ContentRead More ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

KubeVirt vulnerable to arbitrary file read on host

### Impact Users with the permission to create VMIs can construct VMI specs which allow them to read arbitrary files on the host. There are three main attack vectors: 1. Some path fields on the VMI sp ...

Continue Reading
Netmaker before 0.15.1 vulnerable to Insufficient Granularity of Access Control

### Impact Improper Authorization functions leads to non-privileged users running privileged API calls. If you have added users to your Netmaker platform who whould not have admin privileges, they cou ...

Continue Reading

Back to Main

Subscribe for the latest news: