None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see the following security advisories: * [Micr ...
Continue Reading
December 14, 2022
cubejs-backend/api-gateway is vulnerable to SQL Injection attacks. A specifically crafted attack statement through the `/v1/sql-runner` endpoint allows a malicious authenticated user to inject and exe ...
Continue Reading
December 13, 2022
Barbican is a REST API designed for the secure storage, provisioning and management of secrets, including in OpenStack environments. Security Fix(es): * Barbican allows authenticated users to add/modi ...
Continue Reading
December 13, 2022
The Veeam Distribution Service in the Backup & Replication application allows unauthenticated users to access internal API functions. A remote attacker can send input to the internal API which ...
Continue Reading
December 13, 2022
The Veeam Distribution Service in the Backup & Replication application allows unauthenticated users to access internal API functions. A remote attacker can send input to the internal API which ...
Continue Reading
December 13, 2022
Multiple Wiesemann&Theis products of the ComServer Series are prone to an authentication bypass through IP spoofing. During an authenticated session to the WBM of the Com-Server an unauthenticated ...
Continue Reading
December 13, 2022
## Summary IBM WebSphere Application Server Liberty is shipped with IBM Tivoli Netcool Impact as part of its server infrastructure. IBM Tivoli Netcool Impact has addressed the applicable CVEs. ## Vuln ...
Continue Reading
December 12, 2022
The (winter) solstice is fast approaching, along with the end-of-year holidays - before we know it, it'll be 2023 already! And with the fall behind us, our hive has been busy putting the finishing tou ...
Continue Reading
December 12, 2022
Back to Main
