High risk threats - API Security Blog

Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): * php: uninitialized array in pg_query_params() leading to RCE (CVE-2022-31625) For more details ...

August 31, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Use of Hard-coded Credentials in AgileConfig.Client

Hardcoded JWT Secret in AgileConfig Read More ...

August 30, 2022

CVSS3 - CRITICAL

Use of Hard-coded Credentials in AgileConfig.Client

Hardcoded JWT Secret in AgileConfig Read More ...

August 30, 2022

CVSS3 - CRITICAL

Security Bulletin:IBM TRIRIGA Application Platform discloses CVE-2021-22696

## Summary IBM TRIRIGA Application Platform discloses CVE-2021-22696 ## Vulnerability Details ** CVEID: **[CVE-2021-22696]() ** DESCRIPTION: **Apache CXF is vulnerable to a denial of service, caused b ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Security Bulletin: IBM Rational Build Forge is affected by Apache Tomcat version used in it. (CVE-2021-42340)

## Summary IBM Rational Build Forge is affected by CVE-2021-42340. ## Vulnerability Details ** CVEID: **[CVE-2021-42340]() ** DESCRIPTION: **Apache Tomcat is vulnerable to a denial of service, caused ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Security Bulletin: IBM UrbanCode Release is vulnerable to a denial of service due to use of Apache Tomcat CVE-2021-42340.

## Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. ## Vulnerability Details ** CVEID: **[CVE-2021-42340]() ** DESCRIPTION: **Apache Tomcat is vulnerable ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - MEDIUM

Security Bulletin: IBM UrbanCode Release is vulnerable to a bypass of security restrictions due to use of Apache Tomcat (CVE-2022-25762).

## Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. ## Vulnerability Details ** CVEID: **[CVE-2022-25762]() ** DESCRIPTION: **Apache Tomcat could allow a ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - HIGH

Security Bulletin: IBM UrbanCode Build is vulnerable to a bypass of security restrictions due to use of Apache Tomcat (CVE-2022-25762).

## Summary Apache Tomcat is used by IBM UrbanCode Build. This fix includes Apache Tomcat 8.5.79. ## Vulnerability Details ** CVEID: **[CVE-2022-25762]() ** DESCRIPTION: **Apache Tomcat could allow a r ...

August 30, 2022

CVSS3 - HIGH

CVSS2 - HIGH