A flaw was found in Undertow. A buffer leak on the incoming WebSocket PONG message may lead to memory exhaustion. This flaw allows an attacker to cause a denial of service. The highest threat from thi ...
Continue Reading
August 26, 2022
The remote host is affected by the vulnerability described in GLSA-202208-34 (Apache Tomcat: Multiple Vulnerabilities) - When responding to new h2c connection requests, Apache Tomcat versions 10.0.0 ...
Continue Reading
August 25, 2022
A flaw was found in Undertow. A buffer leak on the incoming WebSocket PONG message may lead to memory exhaustion. This flaw allows an attacker to cause a denial of service. The highest threat from thi ...
Continue Reading
August 23, 2022
In Mellium mellium.im/xmpp, an attacker capable of spoofing DNS TXT records can redirect a WebSocket connection request to a server under their control without causing TLS certificate verification to ...
Continue Reading
August 22, 2022
## Summary Multiple Vulnerabilities have been found in Node.js used by the Common UI in Cloud Pak System. Cloud Pak System has addressed these vulnerabilities. ## Vulnerability Details ** CVEID: **[CV ...
Continue Reading
August 16, 2022
Black Hat USA is celebrating its 25th anniversary, and Wallarm will be on hand for the festivities. If youre headed to Vegas this year, we invite you to meet our crew and talk about API security. ** ...
Continue Reading
August 10, 2022
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5894 advisory. - minimist: prototype pollution (CVE-2021 ...
Continue Reading
August 09, 2022
## Impact Untrusted websocket connections can cause an out-of-memory (OOM) process abort in a client or a server. The root cause of the issue is during dataframe parsing. Affected versions would alloc ...
Continue Reading
August 06, 2022
Back to Main
