At Microsoft Security, we understand how challenging it is to protect your most important asset, your data, in today’s threat landscape. You’re faced with evolving challenges—from empowering employ ...

Continue Reading

October 18, 2022

Data Exposure vulnerability via REST API discovered by Than Taintor in WordPress core (versions Read More ...

Continue Reading

October 18, 2022

An External XML entity (XXE) vulnerability in ePO prior to 5.10 Update 14 can lead to an unauthenticated remote attacker to potentially trigger a Server Side Request Forgery attack. This can be exploi ...

Continue Reading

October 18, 2022

[![](https://blogger.googleusercontent.com/img/a/AVvXsEgkLZkQxluWvJdOjxJ-Jpu7ibuj169An2K6hCWAkOwFaHURZY15WYdJCL7IQdkO_1uvzENRGm6Nw9_qip-QbJmXn-xHyEerpTZ1R4ztvPc2qtofvRRDRFKMwrS4Cp6X00cryCzY1oXe5mB3_yr ...

Continue Reading

October 18, 2022

Yet another RCE with a CVSS score of 9.8 out of 10 was disclosed a few hours ago. This issue looks like the same Log4shell and it seems even more dangerous since Common Texts are used more broadly. T ...

Continue Reading

October 17, 2022

istio is vulnerable to denial of service. The vulnerability is due to the Kubernetes validating or mutating webhook service being exposed to the public, allowing a malicious attacker to send a special ...

Continue Reading

October 17, 2022

Improper access control in the GitLab CE/EE API affecting all versions ...Read More ...

Continue Reading

October 17, 2022

# CVE-2022-42889-MASS-RCE (another LOG4SHELL) Mass exploitation ...Read More ...

Continue Reading

October 17, 2022