Metasploit Wrap-Up
## Spring Cloud Gateway RCE  This week, a new [module]() that exploits a code injection vulnerab ...
Continue Reading
October 14, 2022
CVE-2022-32177
In "Gin-Vue-Admin", versions v2.5.1 through v2.5.3beta are vulnerable to Unrestricted File Upload that leads to execution of javascript code, through the 'Normal Upload' functionality to the Media Lib ...
Continue Reading
October 14, 2022
(RHSA-2022:6954) Moderate: Red Hat Advanced Cluster Management 2.5.3 security fixes and bug fixes
Red Hat Advanced Cluster Management for Kubernetes 2.5.3 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site r ...
Continue Reading
October 13, 2022
Security update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer (important)
An update that fixes two vulnerabilities is now available. Description: This update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer fixes the following issues: Changes in gdcm: - rename ...
Continue Reading
October 12, 2022
Security update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer (important)
An update that fixes two vulnerabilities is now available. Description: This update for gdcm, orthanc, orthanc-gdcm, orthanc-webviewer fixes the following issues: Changes in gdcm: - Provid ...
Continue Reading
October 12, 2022
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)
In Gogs, versions v0.6.5 through v0.12.10 is vulnerable to Stored Cross-Site Scripting (XSS) that leads to an account takeover.Read More ...
Continue Reading
October 12, 2022
CVE-2022-37968
Azure Arc-enabled Kubernetes cluster Connect Elevation of Privilege Vulnerability.Read More ...
Continue Reading
October 11, 2022
CVE-2022-32174
In Gogs, versions v0.6.5 through v0.12.10 are vulnerable to Stored Cross-Site Scripting (XSS) that leads to an account takeover.Read More ...
Continue Reading
October 11, 2022
(RHSA-2022:6890) Important: OpenShift Virtualization 4.8.7 Images bug fixes and security update
This advisory contains the following OpenShift Virtualization 4.8.7 images: RHEL-8-CNV-4.8 ============== vm-import-controller-container-v4.8.7-4 ovs-cni-marker-container-v4.8.7-6 virt-cdi-apiserver-c ...
Continue Reading
October 11, 2022
In-Depth Look Into Data-Driven Science Behind Qualys TruRisk
Vulnerability Management is a foundational component of any cybersecurity program for the implementation of appropriate security controls and the management of cyber risk. Earlier this year Qualys int ...
Continue Reading
October 10, 2022
