This module exploits CVE-2022-22954, an unauthenticated server-side template injection (SSTI) in VMware Workspace ONE Access, to execute shell commands as the "horizon" user.Read More ...

Continue Reading

May 30, 2022

 On April 6, 2022, VMware published [VMSA-2022-0011](), which ...

Continue Reading

May 30, 2022

Spring Security OAuth (spring-security-oauth2) provided by VMware, Inc. contains a denial-of-service vulnerability due to uncontrolled resource consumption ([CWE-400]()). Note that Spring Security OAu ...

Continue Reading

May 30, 2022

[![Google's OAuth Client Library for Java](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEjALy9QMXTUv6ySyu_gytORGXUFbFnfcP5yvZm5Q_Kh3izl6dVLvh3ErdT7eMropcP3J1HII1l5Ugb9f29fbOB2ExRE5EcKbo68O ...

Continue Reading

May 30, 2022

## Summary IBM Sterling B2B Integrator has addressed the security vulnerabilities. ## Vulnerability Details ** CVEID: **[CVE-2020-4590]() ** DESCRIPTION: **IBM WebSphere Application Server Liberty 17. ...

Continue Reading

May 30, 2022

None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see [Microsoft Common Vulnerabilities and Exposu ...

Continue Reading

May 30, 2022

None ## Summary This security update resolves a Microsoft SharePoint Server remote code execution vulnerability. To learn more about the vulnerability, see [Microsoft Common Vulnerabilities and Exposu ...

Continue Reading

May 30, 2022

Recently, Ali cloud security monitoring to watchbog mining Trojan use the new exposure of the Nexus Repository Manager 3 remote code execution vulnerability(CVE-2019-7238)for attack and mining the eve ...

Continue Reading

May 30, 2022