### Impact In ghinstallation v1, when the request to refresh an installation token failed, the HTTP request and response would be returned for debugging. https://github.com/bradleyfalzon/ghinstallatio ...

Continue Reading

December 19, 2022

[![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhxH4ORvtpJZLry3tPrOdrXtg4IZ3wKmD5jgL1MF4dFmYha42IOKeYVKJFGtwOoacaOZreL3-rixcCank0fW1cBhkwYCBGBO00xJ7-dzulegHFExvvqvhbDjFhutjk13ODp8rcqFl ...

Continue Reading

December 16, 2022

## Summary Multiple vulnerabilities were fixed in IBM Cloud Pak for Watson AIOps version 3.6. ## Vulnerability Details ** CVEID: **[CVE-2018-8023]() ** DESCRIPTION: **Apache Mesos could allow a remote ...

Continue Reading

December 14, 2022

### Impact All authenticated Cube clients could bypass row-level security and run arbitrary SQL via the newly introduced /v1/sql-runner endpoint. ### Patches The change has been reverted in 0.31.24 ## ...

Continue Reading

December 12, 2022

### Impact All authenticated Cube clients could bypass row-level security and run arbitrary SQL via the newly introduced /v1/sql-runner endpoint. ### Patches The change has been reverted in 0.31.24 ## ...

Continue Reading

December 12, 2022

The (winter) solstice is fast approaching, along with the end-of-year holidays - before we know it, it'll be 2023 already! And with the fall behind us, our hive has been busy putting the finishing tou ...

Continue Reading

December 12, 2022

It is, therefore, affected by a vulnerability as referenced in the ALAS2022-2022-241 advisory. - PyJWT is a Python implementation of RFC 7519. PyJWT supports multiple different JWT signing algorithm ...

Continue Reading

December 10, 2022

[![Hack Connected Cars](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEiJa01Keo3S1ObiTuCE6VQ0EqbIi7xwjsdV40blAZui0I0YEyNI5iiRWbg7TuJUhxyVqBI0QUPKKnQ32-4V7AxKyIT8Rjo20MEYa2Eqxtb8wy6rWOHgzAaq ...

Continue Reading

December 05, 2022