## Summary There is a vulnerability in gRPC used by IBM Robotic Process Automation as part of the Natural Language Processing, which may result in an attacker obtaining sensitive information (CVE-2023 ...
Continue Reading
December 15, 2023
# Golang CVE-2023-44487 testing This repository contains testin...Read More ...
Continue Reading
December 15, 2023
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.Read M ...
Continue Reading
December 15, 2023
### Impact In affected releases of gRPC-Go, it is possible for an attacker to send HTTP/2 requests, cancel them, and send subsequent requests, which is valid by the HTTP/2 protocol, but would cause th ...
Continue Reading
December 15, 2023
Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized too ...
Continue Reading
December 15, 2023
CVE-2022-1941 affecting package grpc 1.35.0-9. No patch is available...Read More ...
Continue Reading
December 15, 2023
The version of ecs-service-connect-agent installed on the remote host is prior to v1.27.0.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2023-007 advisory. ...
Continue Reading
December 15, 2023
google.golang.org/grpc is vulnerable to HTTP/2 Stream Cancellation Attack. The vulnerability exists because the library does not enforce the limit of concurrently running handlers set by MaxConcurrent ...
Continue Reading
December 15, 2023
Back to Main
