CVE-2023-45820

Directus is a real-time API and App dashboard for managing SQL database content. In affected versions any Directus installation that has websockets enabled can be crashed if the websocket server recei ...

Continue Reading

December 14, 2023

Exploit for Insufficient Session Expiration in Eclipse Jetty

Eclipse Jetty Canonical Repository =============================...Read More ...

Continue Reading

December 14, 2023

[SECURITY] Fedora 38 Update: rust-tungstenite-0.20.1-1.fc38

Lightweight stream-based WebSocket implementation.Read More ...

Continue Reading

December 14, 2023

Rocky Linux 9 : firefox (RLSA-2023:0285)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:0285 advisory. An out of date library (libusrsctp) contained vulnera ...

Continue Reading

December 14, 2023

Directus crashes on invalid WebSocket message

### Summary It seems that any Directus installation that has websockets enabled can be crashed if the websocket server receives an invalid frame. This could probably be posted as an issue and I might ...

Continue Reading

December 14, 2023

Amazon Linux 2 : tomcat (ALASTOMCAT8.5-2023-006)

The version of tomcat installed on the remote host is prior to 8.5.72-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2TOMCAT8.5-2023-006 advisory. - The fix for bug 63362 ...

Continue Reading

December 14, 2023

Amazon Linux 2 : tomcat (ALASTOMCAT9-2023-006)

The version of tomcat installed on the remote host is prior to 9.0.54-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2TOMCAT9-2023-006 advisory. - The fix for bug 63362 pr ...

Continue Reading

December 14, 2023

[SECURITY] Fedora 38 Update: rust-tokio-tungstenite-0.20.1-1.fc38

Tokio binding for Tungstenite, the Lightweight stream-based WebSocket implementation.Read More ...

Continue Reading

December 14, 2023

1 74 75 76 77 78 183

Back to Main
Subscribe for the latest news: