CVE-2024-28755

An issue was discovered in Mbed TLS 3.5.x before 3.6.0. When an SSL context was reset with the mbedtls_ssl_session_reset() API, the maximum TLS version to be negotiated was not restored to the configu ...

Continue Reading

April 03, 2024

Insufficient Access Control

Kimai is vulnerable to Insufficient Granularity of Access Control. This vulnerability is due to the view_other_timesheet permission between the UI and API performing differently, leading to unauthoriz ...

Continue Reading

April 03, 2024

olcne security update

[1.8.1-2] - Cleanup spec file [1.8.1-1] - Fix OLM upgrade failure - upgrade from 0.17.0 to 0.23.1 failed due to a couple of crds missing - Add hostpathRequiresPrivilged value to rook template cr to be ...

Continue Reading

April 03, 2024

olcne security update

[1.8.1-2] - Cleanup spec file [1.8.1-1] - Fix OLM upgrade failure - upgrade from 0.17.0 to 0.23.1 failed due to a couple of crds missing - Add hostpathRequiresPrivilged value to rook template cr to be ...

Continue Reading

April 03, 2024

olcne security update

[1.8.1-2] - Cleanup spec file [1.8.1-1] - Fix OLM upgrade failure - upgrade from 0.17.0 to 0.23.1 failed due to a couple of crds missing - Add hostpathRequiresPrivilged value to rook template cr to be ...

Continue Reading

April 03, 2024

Casdoor < v1.331.0 – '/api/set-password' CSRF

...Read More ...

Continue Reading

April 02, 2024

CVE-2024-27602

Alldata V0.4.6 is vulnerable to Incorrect Access Control. A total of many modules interface documents have been leaked.For example, the /api/system/v2/api-docs...Read More ...

Continue Reading

April 02, 2024

(RHSA-2024:1608) Moderate: opencryptoki security update

The opencryptoki packages contain version 2.11 of the PKCS#11 API, implemented for IBM Cryptocards, such as IBM 4764 and 4765 crypto cards. These packages includes support for the IBM 4758 Cryptograph ...

Continue Reading

April 02, 2024

1 8,339 8,340 8,341 8,342 8,343 9,321

Back to Main
Subscribe for the latest news: