KubePi is an opensource kubernetes management panel. The endpoint /kubepi/api/v1/users/search?pageNum=1&&pageSize=10 leak password hash of any user (including admin). A sufficiently motivated ...
Continue Reading
July 21, 2023
Dapr is a portable, event-driven, runtime for building distributed applications across cloud and edge. A vulnerability has been found in Dapr that allows bypassing API token authentication, which is u ...
Continue Reading
July 21, 2023
## Summary Security Vulnerabilities in Node.js affects IBM Voice Gateway. The vulnerability has been addressed. ## Vulnerability Details ** CVEID: **[CVE-2023-30581]() ** DESCRIPTION: **Node.js could ...
Continue Reading
July 21, 2023
HashiCorp Nomad and Nomad Enterprise 0.11.0 up to 1.5.6 and 1.4.1 HTTP search API can reveal names of available CSI plugins to unauthenticated users or users without the plugin:read policy. Fixed in 1 ...
Continue Reading
July 21, 2023
Thank you to @beet1e(https://github.com/b33t1e) from Shanghai Ji...Read More ...
Continue Reading
July 21, 2023
There is no such thing as âtoo much contextâ when it comes to asset management. Continuous discovery and comprehensive, normalized asset data create the foundation for streamlined risk detec ...
Continue Reading
July 21, 2023
HashiCorp Nomad and Nomad Enterprise 0.11.0 up to 1.5.6 and 1.4.1 HTTP search API can reveal names of available CSI plugins to unauthenticated users or users without the plugin:read policy. Fixed in 1 ...
Continue Reading
July 21, 2023
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:2917-1 advisor ...
Continue Reading
July 21, 2023
Back to Main
