The modern kill chain is eluding enterprises because they aren't protecting the infrastructure of modern business: SaaS. SaaS continues to dominate software adoption, and it accounts for the gre ...
Continue Reading
June 28, 2024
Issue summary: Calling the OpenSSL API function SSL_select_next_proto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buf ...
Continue Reading
June 28, 2024
CPython 3.9 and earlier doesn't disallow configuring an empty list ("[]") for SSLContext.set_npn_protocols() which is an invalid value for the underlying OpenSSL API. This resul ...
Continue Reading
June 28, 2024
CPython 3.9 and earlier doesn't disallow configuring an empty list ("[]") for SSLContext.set_npn_protocols() which is an invalid value for the underlying OpenSSL API. This resul ...
Continue Reading
June 28, 2024
It was identified that under certain specific preconditions, an API key that was originally created with a specific privileges could be subsequently used to create new API keys that have elevated...Re ...
Continue Reading
June 28, 2024
It was identified that under certain specific preconditions, an API key that was originally created with a specific privileges could be subsequently used to create new API keys that have elevated...Re ...
Continue Reading
June 28, 2024
"Piccoma" App for Android and "Piccoma" App for iOS provided by Kakao piccoma Corp. use a hard-coded API key for an external service (CWE-798). ## Impact Data in th ...
Continue Reading
June 28, 2024
Issue summary: Calling the OpenSSL API function SSL_select_next_proto ...Read More ...
Continue Reading
June 27, 2024
Back to Main
