Gitlab — Multiple Vulnerabilities

Gitlab reports: DAST API scanner exposes Authorization headers in vulnerabilities Group IP allow-list not fully respected by the Package Registry Deploy keys and tokens may bypass External Authorizati ...

Continue Reading
Security Bulletin: Multiple vulnerabilities affect IBM Db2® on Cloud Pak for Data and Db2 Warehouse® on Cloud Pak for Data

## Summary IBM has released the below fix for IBM Db2® on Cloud Pak for Data and Db2 Warehouse® on Cloud Pak for Data in response to multiple vulnerabilities found in multiple components. ## Vulnera ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

Security Bulletin: IBM API Connect is impacted by a vulnerability in Apache Xalan Java XSLT library (CVE-2022-34169)

## Summary IBM API Connect is impacted by a vulnerability in Apache Xalan Java XSLT library. IBM API Connect has addressed the vulnerability in CVE-2022-34169. ## Vulnerability Details ** CVEID: **[CV ...

Continue Reading

CVSS3 - HIGH

Denial Of Service (DOS)

github.com/mattermost/mattermost-server is vulnerable to denial of service. The vulnerability exists in `user_store.go` because it will send multiple requests to one of the api endpoints which could f ...

Continue Reading

CVSS3 - MEDIUM

[SECURITY] Fedora 36 Update: galera-26.4.13-1.fc36

Galera is a fast synchronous multimaster wsrep provider (replication engine) for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership ...

Continue Reading

CVSS3 - HIGH

CVSS2 - HIGH

[SECURITY] Fedora 37 Update: galera-26.4.13-1.fc37

Galera is a fast synchronous multimaster wsrep provider (replication engine) for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership ...

Continue Reading

CVSS3 - HIGH

CVSS2 - HIGH

[SECURITY] Fedora 35 Update: galera-26.4.13-1.fc35

Galera is a fast synchronous multimaster wsrep provider (replication engine) for transactional databases and similar applications. For more information about wsrep API see https://github.com/codership ...

Continue Reading

CVSS3 - HIGH

CVSS2 - HIGH

CVE-2022-46156

The Synthetic Monitoring Agent for Grafana's Synthetic Monitoring application provides probe functionality and executes network checks for monitoring remote targets. Users running the Synthetic Monito ...

Continue Reading

Back to Main

Subscribe for the latest news:
Generated by Feedzy