Apache Dubbo prior to 2.6.9 and 2.7.9 by default supports generic calls to arbitrary methods exposed by provider interfaces. These invocations are handled by the GenericFilter which will find the serv ...

Continue Reading

May 30, 2022

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Cisco RV340 routers. Authentication is required to exploit this vulnerability. The specific ...

Continue Reading

May 30, 2022

[![](https://blogger.googleusercontent.com/img/a/AVvXsEiOul_KCkh9ENHvZadXvKqVY2grj6MP9ngEozIq4I-y_afr5xhRsEQsfOp5ad2OFlwFhqKOZdYO046qLVNBW3fpullLfPqqW9CMQb-yPIBptr8BfWHydGHM2AVY9kBv2dSSCpQgi3H8rIXYkGK ...

Continue Reading

May 30, 2022

[![](https://blogger.googleusercontent.com/img/a/AVvXsEjYav8wQXsJJmo1gRA2o_KhZvDPF7beN8UQ2RknaM8q_5r56HGzYS7CmE7qn_MLvgzi911k6V-Ik0no9nK6zz1_BiPL33IsmKcHwF_vp-tvCGh5PrHx0WdHbnweAERpm6-z_rfl2fOANof4cDh ...

Continue Reading

May 30, 2022

Enterprises using various business apps have a tough time maintaining data’s secrecy and access grants as per user roles throughout the infrastructure landscape. SAML (Security Assertion Markup Langu ...

Continue Reading

May 30, 2022

Users of OpenSea, the world’s largest digital-collectible marketplace, have found their cryptocurrency wallets ripped off thanks to cyberattackers weaponizing security bugs that allowed them to highj ...

Continue Reading

May 30, 2022

The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue by sending ...

Continue Reading

May 30, 2022

In Arista's MOS (Metamako Operating System) software which is supported on the 7130 product line, under certain conditions, user authentication can be bypassed when API access is enabled via the JSON- ...

Continue Reading

May 30, 2022