Security update for haproxy (moderate)
An update that fixes one vulnerability is now available. Description: This update for haproxy to version 2.0.5+git0.d905f49a fixes the following issues: Security issue fixed: - CVE-2019-14 ...
Continue Reading
June 30, 2023
Security Advisory 0046
## Security Advisory 0046 PDF #### **Date:** March 23, 2020 #### **Version:** 1.0 Revision | Date | Changes ---|---|--- 1.0 | March 23, 2020 | Initial Release The CVE-IDs tracking this issue: CVE- ...
Continue Reading
June 30, 2023
Denial Of Service (DoS)
servicemesh-proxy is vulnerable to denial of service. An attacker is able to crash the application by sending a malicious packet that specifies a large grpc-timeout, causing envoy to incorrectly calcu ...
Continue Reading
June 30, 2023
gRPC Swift Resource Management Error Vulnerability
gRPC Swift is the open source Swift language implementation of gRPC, which includes a gRPC Swift API and code generator. The API and generated code are provided for gRPC clients and servers and can be ...
Continue Reading
June 30, 2023
CVE-2017-12118
An exploitable improper authorization vulnerability exists in miner_stop API of cpp-ethereum's JSON-RPC (commit 4e1015743b95821849d001618a7ce82c7c073768). An attacker can send JSON to trigger this vul ...
Continue Reading
June 30, 2023
CVE-2018-1000093
CryptoNote version version 0.8.9 and possibly later contain a local RPC server which does not require authentication, as a result the walletd and the simplewallet RPC daemons will process any commands ...
Continue Reading
June 30, 2023
Dell EMC Avamar and Integrated Data Protection Appliance Installation Manager – Invalid Access Control
Post ContentRead More ...
Continue Reading
June 30, 2023
CVE-2018-15490
An issue was discovered in ExpressVPN on Windows. The Xvpnd.exe process (which runs as a service with SYSTEM privileges) listens on TCP port 2015, which is used as an RPC interface for communication w ...
Continue Reading
June 30, 2023
Oracle’s PeopleSoft products was traced to the presence of unauthorized remote code execution vulnerability-vulnerability warning-the black bar safety net
Oracle PeopleSoft In a few months ago, I was fortunate enough to get to review Oracle's PeopleSoft solutions the opportunity to review object including PeopleSoft HRMS and PeopleTool. In addition to t ...
Continue Reading
June 30, 2023
(RHSA-2017:2424) Critical: java-1.7.0-openjdk security update
The java-1.7.0-openjdk packages provide the OpenJDK 7 Java Runtime Environment and the OpenJDK 7 Java Software Development Kit. Security Fix(es): * It was discovered that the DCG implementation in the ...
Continue Reading
June 30, 2023
