## Summary There is a cross-site scripting vulnerability in the OAuth, OpenID Connect and SAML features. This has been addressed. ## Vulnerability Details ** CVEID: **[CVE-2020-4303]() ** DESCRIPTION: ...
Continue ReadingOctober 07, 2022
## Summary There is a denial of service vulnerablility in IBM WebSphere Application Server Liberty used in Liberty for Java for IBM Cloud. ## Vulnerability Details ** CVEID: **[CVE-2020-4590]() ** DES ...
Continue ReadingOctober 07, 2022
# CVE-2021-29156 done right This Proof of Concept is realized b...Read More ...
Continue ReadingOctober 07, 2022
### Impact Users who enable the default [Flytes authorization server](https://docs.flyte.org/en/latest/deployment/cluster_config/auth_setup.html#oauth2-authorization-server) without changing the def ...
Continue ReadingOctober 06, 2022
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...
Continue ReadingOctober 06, 2022
### Impact Users who enable the default [Flytes authorization server](https://docs.flyte.org/en/latest/deployment/cluster_config/auth_setup.html#oauth2-authorization-server) without changing the def ...
Continue ReadingOctober 05, 2022
OAuthLib is a generic utility which implements the logic of OAuth without assuming a specific HTTP request object or web framework. Use it to graft OAuth client support onto your favorite HTTP library ...
Continue ReadingOctober 04, 2022
Last week on Malwarebytes Labs: * [Why (almost) everything we told you about passwords was wrong]() * [Two new Exchange Server zero-days in the wild]() * [Local government cybersecurity: 5 best ...
Continue ReadingOctober 03, 2022
Back to Main