## Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Spring Framework. ## Vulnerability Details ** CVEID: **[CVE-2022-22971]() ** DESCRIPTION: **Vmware Tanzu Spr ...
Continue Reading
August 04, 2022
## Summary IBM Common Licensing is vulnerable to a remote code execution in Spring Framework (CVE-2022-22970,CVE-2022-22971) as it does have Spring Framework versions 5.3.0 to 5.3.20, 5.2.0 to 5.2.22 ...
Continue Reading
August 04, 2022
A vulnerability was found in NodeJS, where the IsAllowedHost check can be easily bypassed because IsIPAddress does not properly check if an IP address is invalid or not. When an invalid IPv4 address ...
Continue Reading
August 03, 2022
Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release of Red Hat JBoss Enterprise Application Platform 7.4.6 is a ...
Continue Reading
August 03, 2022
An update that fixes one vulnerability is now available. Description: This update for python-jupyterlab fixes the following issues: Update to 2.2.10: * Remove `form` tags' `action` attribute ...
Continue Reading
August 02, 2022
This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will b ...
Continue Reading
August 01, 2022
Tiny WebSocket library for Go.Read More ...
Continue Reading
July 30, 2022
Websocket client connections are vulnerable to man-in-the-middle attacks via DNS spoofing. When looking up a WSS endpoint using a DNS TXT record, the server TLS certificate is incorrectly validated u ...
Continue Reading
July 29, 2022
Back to Main
