In Apache Airflow, prior to version 2.4.1, deactivating a user wouldn't prevent an already authenticated user from being able to continue using the UI or API.Read More ...
Continue Reading
October 07, 2022
## Summary There is a cross-site scripting vulnerability in the OAuth, OpenID Connect and SAML features. This has been addressed. ## Vulnerability Details ** CVEID: **[CVE-2020-4303]() ** DESCRIPTION: ...
Continue Reading
October 07, 2022
## Summary There is a denial of service vulnerablility in IBM WebSphere Application Server Liberty used in Liberty for Java for IBM Cloud. ## Vulnerability Details ** CVEID: **[CVE-2020-4590]() ** DES ...
Continue Reading
October 07, 2022
# CVE-2021-29156 done right This Proof of Concept is realized b...Read More ...
Continue Reading
October 07, 2022
### Description Tendermint Core v0.34.0 introduced a new way of handling evidence of misbehavior. As part of this, [we added a new `Timestamp` field to `Evidence` structs](https://github.com/tendermi ...
Continue Reading
October 07, 2022
### Description Tendermint Core v0.34.0 introduced a new way of handling evidence of misbehavior. As part of this, [we added a new `Timestamp` field to `Evidence` structs](https://github.com/tendermi ...
Continue Reading
October 07, 2022
### Vulnerability type Access Control ### Workarounds The etcdctl and etcd API do not enforce a specific password length during user creation or user password update operations. [It is the responsibil ...
Continue Reading
October 06, 2022
### Vulnerability type Access Control ### Workarounds The etcdctl and etcd API do not enforce a specific password length during user creation or user password update operations. [It is the responsibil ...
Continue Reading
October 06, 2022
Back to Main
