OAuth - API Security Blog

VMware Workspace ONE Access Template Injection / Command Execution

Post ContentRead More ...

May 30, 2022

VMware Workspace ONE Access CVE-2022-22954

This module exploits CVE-2022-22954, an unauthenticated server-side template injection (SSTI) in VMware Workspace ONE Access, to execute shell commands as the "horizon" user.Read More ...

May 30, 2022

Easy authentication and authorization in Azure Active Directory with No-Code Datawiza

_This blog post is part of the Microsoft Intelligent Security Association _[_guest blog series_]()_. _[_Learn more about MISA_]()_._ The acceleration of cloud journeys fueled by the pandemic and ever- ...

May 30, 2022

Security Bulletin: Multiple Security Vulnerabilities in IBM WebSphere Application Server Affect IBM Sterling B2B Integrator

## Summary IBM Sterling B2B Integrator has addressed the security vulnerabilities. ## Vulnerability Details ** CVEID: **[CVE-2020-4590]() ** DESCRIPTION: **IBM WebSphere Application Server Liberty 17. ...

May 30, 2022

Description of the security update for SharePoint Server Subscription Edition: May 10, 2022 (KB5002194)

None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see [Microsoft Common Vulnerabilities and Exposu ...

May 30, 2022

Description of the security update for SharePoint Server 2019: May 10, 2022 (KB5002207)

None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see [Microsoft Common Vulnerabilities and Exposu ...

May 30, 2022

RST Threat feed. IOC: oauth-services.live

Found **oauth-services[.]live** in [RST Threat Feed](https://rs...Read More ...

May 30, 2022

RST Threat feed. IOC: ssl-oauth.com

Found **ssl-oauth[.]com** in [RST Threat Feed](https://rstcloud...Read More ...

May 30, 2022