The remote Ubuntu 22.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5530-1 advisory. Note that Nessus has not tested for this issue but has instead re ...
Continue Reading
July 25, 2022
It was discovered that PHP incorrectly handled certain memory operations when obtaining file information. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service ...
Continue Reading
July 25, 2022
- ELS-189: Fix for Harden PHP - CVE-2022-31625: Fix freeing of uninitialized memory leading to RCERead More ...
Continue Reading
July 18, 2022
Apache CXF before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 allows remote attackers to execute unintended web-service operations by sending a header with a SOAP Action String that is inconsist ...
Continue Reading
July 13, 2022
Apache CXF before 2.4.9, 2.5.x before 2.5.5, and 2.6.x before 2.6.2 allows remote attackers to execute unintended web-service operations by sending a header with a SOAP Action String that is inconsist ...
Continue Reading
July 13, 2022
The WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authentication by sending an empty UsernameToken as part of a SOAP request.Read More ...
Continue Reading
July 13, 2022
The WS-SP UsernameToken policy in Apache CXF 2.4.5 and 2.5.1 allows remote attackers to bypass authentication by sending an empty UsernameToken as part of a SOAP request.Read More ...
Continue Reading
July 13, 2022
The URIMappingInterceptor in Apache CXF before 2.5.8, 2.6.x before 2.6.5, and 2.7.x before 2.7.2, when using the WSS4JInInterceptor, bypasses WS-Security processing, which allows remote attackers to o ...
Continue Reading
July 13, 2022
Back to Main
