Submariner 0.17.6 packages fix bugs and adds enhancements that are now available for Red Hat Advanced Cluster Management for Kubernetes version 2.10. Red Hat Product Security has rated this update as ...
Continue Reading
June 24, 2025
Impact The JWT secret key in the vantage6 server is auto-generated unless defined by the user. The auto-generated key is a UUID1, which is not cryptographically secure as it is predictable to some ext ...
Continue Reading
June 24, 2025
Red Hat multicluster global hub 1.2.3 General Availability release images, which provide enhancements, bug fixes, and updated container images. Red Hat Product Security has rated this update as havin ...
Continue Reading
June 23, 2025
Summary Golang JWT is used by the IBM Storage Protect Server OSSM and Object Agent component. The vulnerabilities in the product component have been addressed. Vulnerability Details CVEID:CVE-2024-51 ...
Continue Reading
June 20, 2025
Summary Go is used by IBM Storage Fusion Data Foundation in csi-dirver, odf-cli-container, ocs-operator-container, msc-operator-container, odf-multicluster-operator-container, rook-ceph-operator and o ...
Continue Reading
June 19, 2025
The ArchiverSpaApi ASP.NET application uses a hard-coded JWT signing key. An unauthenticated remote attacker can generate and use a verifiable JWT token to access protected ArchiverSpaApi URL...Read M ...
Continue Reading
June 19, 2025
vantage6 is an open-source infrastructure for privacy preserving analysis. The JWT secret key in the vantage6 server is auto-generated unless defined by the user. The auto-generated key is a UUID1, wh ...
Continue Reading
June 19, 2025
vantage6 is vulnerable to Use of Insufficiently Random Values. The vulnerability is due to insecure randomness of UUID1 for auto-generating JWT secret keys, which is partially predictable and not cryp ...
Continue Reading
June 18, 2025
Back to Main
