CVE-2021-43824

Envoy is an open source edge and service proxy, designed for cloud-native applications. In affected versions a crafted request crashes Envoy when a CONNECT request is sent to JWT filter configured wit ...

Continue Reading
Zabbix – A Case Study of Unsafe Session Storage

![A critical vulnerability in the IT monitoring software Zabbix](https://images.prismic.io/sonarsource/a1691e38-7c8f-4e2e-add4-ae3675bb7489_RD-111+zabbix+use+case%402x.png?auto=compress,format) ## Int ...

Continue Reading
RHEL 8 : Red Hat OpenShift Service Mesh 2.1.2 (RHSA-2022:1275)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1275 advisory. - envoy: Null pointer dereference when us ...

Continue Reading
(RHSA-2022:4690) Important: Red Hat OpenShift GitOps security update

Red Hat Openshift GitOps is a declarative way to implement continuous deployment for cloud native applications. Security Fix(es): * argocd: ArgoCD will blindly trust JWT claims if anonymous access is ...

Continue Reading
(RHSA-2022:4671) Important: Red Hat OpenShift GitOps security update

Red Hat Openshift GitOps is a declarative way to implement continuous deployment for cloud native applications. Security Fix(es): * argocd: ArgoCD will blindly trust JWT claims if anonymous access is ...

Continue Reading
Privilege Escalation

openjdk is vulnerable to privilege escalation. The vulnerability exists due to a lack of validation of authorization allowing an attacker to update, insert or delete access to some of Oracle Java SE, ...

Continue Reading
Signature Verification Bypass

Oracle Java SE and Oracle GraalVM Enterprise Edition product of Oracle Java SE (their component: Libraries) are vulnerable to signature verification bypass. The vulnerability is possible due to a flaw ...

Continue Reading
Exploit for Vulnerability in Oracle Graalvm

CVE-2022-21449 Vulnerability tester -------------- # Introducti...Read More ...

Continue Reading

Back to Main

Subscribe for the latest news: