Security Bulletin: Sterling External Authentication Server Java API Documentation Frame Injection Vulnerability (CVE-2013-1571)
## Abstract Java API Documentation contains a frame injection vulnerability. ## Content **VULNERABILITY DETAILS: ** **CVEID: **CVE-2013-1571 **DESCRIPTION: **HTML documentation generated by the J ...
Continue Reading
September 29, 2022
Security Bulletin: InfoSphere Guardium Data Redaction Java API Documentation Frame Injection Vulnerability (CVE-2013-1571)
## Abstract Java API Documentation contains a frame injection vulnerability. ## Content **VULNERABILITY DETAILS: ** **CVEID: **CVE-2013-1571 **DESCRIPTION: **HTML documentation generated by the Ja ...
Continue Reading
September 29, 2022
Security Bulletin: IBM InfoSphere Streams Java API Documentation Frame Injection Vulnerability (CVE-2013-1571)
## Abstract Java API Documentation contains a frame injection vulnerability. InfoSphere Streams ships javadoc files in it's install tree. If these files are made accessible from the internet this vuln ...
Continue Reading
September 29, 2022
Hackers Using PowerPoint Mouseover Trick to Infect System with Malware
[
[SECURITY] Fedora 37 Update: python-lxml-4.9.1-1.fc37
lxml is a Pythonic, mature binding for the libxml2 and libxslt libraries. It provides safe and convenient access to these libraries using the ElementTre e It extends the ElementTree API significantly ...
Continue Reading
September 24, 2022
Security Bulletin: IBM Sterling Partner Engagement Manager is vulnerable to a denial of service due to Vmware Tanzu Spring Framework (CVE-2022-22971)
## Summary IBM Sterling Partner Engagement Manager uses Vmware Tanzu Spring Framework that is vulnerable to a denial of service, caused by a flaw with a STOMP over WebSocket endpoint. The issue has be ...
Continue Reading
September 23, 2022
WordPress plugin WPGraphQL access control error vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. Word ...
Continue Reading
September 22, 2022
Security Bulletin: Spring Security OAuth Affects IBM Partner Engagement Manager (CVE-2022-22969)
## Summary IBM Sterling Partner Engagement Manager uses Spring Security OAuth that is vulnerable to a denial of service, caused by initiation of the Authorization Request in an OAuth 2.0 Client applic ...
Continue Reading
September 22, 2022
Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container (important)
An update that solves three vulnerabilities and has two fixes is now available. Description: This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, v ...
Continue Reading
September 22, 2022
(RHSA-2022:6681) Important: OpenShift Virtualization 4.9.6 Images security and bug fix update
This advisory contains the following OpenShift Virtualization 4.9.6 images: RHEL-8-CNV-4.9 ============== cnv-must-gather-container-v4.9.6-7 kubevirt-template-validator-container-v4.9.6-6 kubevirt-ssp ...
Continue Reading
September 22, 2022
