CVE-2023-2702
Authorization Bypass Through User-Controlled Key vulnerability in Finex Media Competition Management System allows Authentication Abuse, Authentication Bypass.This issue affects Competition Management ...
Continue Reading
May 24, 2023
CVE-2023-2713
Authorization Bypass Through User-Controlled Key vulnerability in "Rental Module" developed by third-party for Ideasoft's E-commerce Platform allows Authentication Abuse, Authentication Bypass.This i ...
Continue Reading
May 20, 2023
[SECURITY] Fedora 37 Update: nmstate-2.2.10-5.fc37
Nmstate is a library with an accompanying command line tool that manages ho st networking settings in a declarative manner and aimed to satisfy enterprise needs to manage host networking through a nor ...
Continue Reading
May 19, 2023
Security Bulletin: IBM InfoSphere Information Server is affected but not classified as vulnerable to a code execution vulnerability in Apache Kafka (CVE-2023-25194)
## Summary A code execution vulnerability in Apache Kafka used byIBM InfoSphere Information Server was addressed. ## Vulnerability Details ** CVEID: **[CVE-2023-25194]() ** DESCRIPTION: **Apache Kafk ...
Continue Reading
May 17, 2023
Security Bulletin: IBM InfoSphere Information Server is affected by multiple vulnerabilities in Kubernetes (CVE-2022-3162, CVE-2022-3294)
## Summary Multiple vulnerabilities in Kubernetes used by InfoSphere Information Server were addressed. ## Vulnerability Details ** CVEID: **[CVE-2022-3162]() ** DESCRIPTION: **Kubernetes kube-apiserv ...
Continue Reading
May 17, 2023
CentOS 8 : edk2 (CESA-2023:2932)
The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:2932 advisory. - A timing based side channel exists in the OpenSSL ...
Continue Reading
May 17, 2023
Important: tomcat
**Issue Overview:** A privilege escalation flaw was found in Tomcat when the JMX Remote Lifecycle Listener was enabled. A local attacker without access to the Tomcat process or configuration files cou ...
Continue Reading
May 17, 2023
RHEL 8 : edk2 (RHSA-2023:2932)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:2932 advisory. - A timing based side channel exists in t ...
Continue Reading
May 17, 2023
Security Bulletin: IBM Security Verify Information Queue has multiple third-party library vulnerabilities
## Summary IBM Security Verify Information Queue (ISIQ) v10.0.5 has remediated vulnerabilities in the third-party libraries that it uses. ## Vulnerability Details ** CVEID: **[CVE-2022-41946]() ** DES ...
Continue Reading
May 16, 2023
Security Bulletin: Open Source Dependency Vulnerability
## Summary IBM Edge Application Manager 4.5 has resolved the vulnerability. ## Vulnerability Details ** CVEID: **[CVE-2020-25864]() ** DESCRIPTION: **HashiCorp Consul is vulnerable to cross-site scrip ...
Continue Reading
May 16, 2023
