## Summary Watson Machine Learning Accelerator is affected but not classified as vulnerable to a remote code execution in Spring Framework (CVE-2022-22971) as it does not meet all of the following cri ...

Continue Reading

August 30, 2022

## Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. ## Vulnerability Details ** CVEID: **[CVE-2021-42340]() ** DESCRIPTION: **Apache Tomcat is vulnerable ...

Continue Reading

August 30, 2022

## Summary Apache Tomcat is used by IBM UrbanCode Release. This fix includes Apache Tomcat 8.5.79. ## Vulnerability Details ** CVEID: **[CVE-2022-25762]() ** DESCRIPTION: **Apache Tomcat could allow a ...

Continue Reading

August 30, 2022

## Summary Apache Tomcat is used by IBM UrbanCode Build. This fix includes Apache Tomcat 8.5.79. ## Vulnerability Details ** CVEID: **[CVE-2022-25762]() ** DESCRIPTION: **Apache Tomcat could allow a r ...

Continue Reading

August 30, 2022

Le-yan Personnel and Salary Management System has hard-coded database account and password within the website source code. An unauthenticated remote attacker can access, modify system data or disrupt ...

Continue Reading

August 30, 2022

OAKlouds Portal website’s Meeting Room has insufficient validation for user input. A remote attacker with general user privilege can perform SQL-injection to access, modify, delete database, perform ...

Continue Reading

August 30, 2022

NVFLARE, versions prior to 2.1.4, contains a vulnerability that deserialization of Untrusted Data due to Pickle usage may allow an unprivileged network attacker to cause Remote Code Execution, Denial ...

Continue Reading

August 28, 2022

JSON Web Tokens (JWTs for short) are the new standard for transmitting identity information in the digital age. JWTs are JSON objects that act as an identifier for your user or application. They’re u ...

Continue Reading

August 26, 2022