Security Bulletin: IBM i Modernization Engine for Lifecycle Integration is vulnerable to multiple vulnerabilities

## Summary There are multiple vulnerabilities in components of IBM i Modernization Engine for Lifecycle Integration as described in the Vulnerability Details section. Google Guava and Apache James MIM ...

Continue Reading

30 августа, 2023

CVSS3 - CRITICAL

CVSS2 - HIGH

SugarCRM 12.2.0 Bean Manipulation Vulnerability

Post ContentRead More ...

Continue Reading

24 августа, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

SugarCRM 12.2.0 PHP Object Injection Vulnerability

Post ContentRead More ...

Continue Reading

24 августа, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

Authorization Bypass

gitlab is vulnerable to Authorization Bypass. The vulnerability allows a malicious user create an OAuth client application with arbitrary scope names which may allow the malicious user to trick unsusp ...

Continue Reading

23 августа, 2023

CVSS3 - LOW

CVSS2 - LOW

SugarCRM 12.2.0 Bean Manipulation

Post ContentRead More ...

Continue Reading

23 августа, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

SugarCRM 12.2.0 PHP Object Injection

Post ContentRead More ...

Continue Reading

23 августа, 2023

CVSS3 - HIGH

CVSS2 - MEDIUM

Tackling the OAuth2 Client component model in Spring Security

In Spring Security 5, we saw many developments in the OAuth2 story with the introduction of OAuth2 Resource Server and OAuth2 Client into the framework. Today, it is quite convenient to develop applic ...

Continue Reading

23 августа, 2023

How to Investigate an OAuth Grant for Suspicious Activity or Overly Permissive Scopes

[![Investigate an OAuth Grant](data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAAAEAAAABCAQAAAC1HAwCAAAAC0lEQVR42mP8Xw8AAoMBgDTD2qgAAAAASUVORK5CYII=)]() From a user's perspective, OAuth works like magic. ...

Continue Reading

21 августа, 2023

1 116 117 118 119 120 184

Back to Main
Subscribe for the latest news: