(RHSA-2022:5664) Important: OpenShift Container Platform 4.10.24 bug fix and security update

Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the container im ...

Continue Reading
Grafana — OAuth Account Takeover

Grafana Labs reports: It is possible for a malicious user who has authorization to log into a Grafana instance via a configured OAuth IdP to take over an existing Grafana account under some conditions ...

Continue Reading
CVE-2022-31162

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading
Privilege Escalation

gafana is vulnerable to privilege escalation. An attacker can take over another user's account in the grafana instance by supplying a login name through the specified `OAuth IdP` when the attacker's e ...

Continue Reading
Oracle MySQL Enterprise Monitor DOS (July 2022 CPU)

The version of MySQL Enterprise Monitor installed on the remote host are affected by a denial of service as referenced in the July 2022 CPU advisory, via the initiation of the Authorization Request in ...

Continue Reading
Slack Morphism for Rust before 0.41.0 can accidentally leak Slack OAuth client information in application debug logs

### Impact Potential/accidental leaking of Slack OAuth client information in application debug logs. ### Patches More strict and secure debug formatting was introduced in v0.41 for OAuth secret types ...

Continue Reading
Slack Morphism for Rust before 0.41.0 can accidentally leak Slack OAuth client information in application debug logs

### Impact Potential/accidental leaking of Slack OAuth client information in application debug logs. ### Patches More strict and secure debug formatting was introduced in v0.41 for OAuth secret types ...

Continue Reading
CVE-2022-2133

This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...

Continue Reading

Back to Main

Subscribe for the latest news: