Security Bulletin: Multiple vulnerabilities in IBM SDK for Node.js and packaged modules affect IBM Business Automation Workflow Configuration Editor
## Summary IBM Business Automation Workflow Configuration Editor is vulnerable to multiple attacks. ## Vulnerability Details ** CVEID: **[CVE-2022-24999]() ** DESCRIPTION: **Express.js Express is vuln ...
Continue Reading
March 01, 2023
AlmaLinux 9 : openssl (ALSA-2023:0946)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:0946 advisory. - A read buffer overrun can be triggered in X.509 certi ...
Continue Reading
March 01, 2023
Oracle Linux 9 : openssl (ELSA-2023-0946)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-0946 advisory. - A NULL pointer can be dereferenced when signatures ...
Continue Reading
March 01, 2023
Security Bulletin: IBM WebSphere Application Server Liberty is vulnerable to a denial of service due to Google protobuf-java (CVE-2022-3171, CVE-2022-3509)
## Summary There is a vulnerability in the Google protobuf-java library used by IBM WebSphere Application Server Liberty with the grpc-1.0 or grpcClient-1.0 feature enabled. This has been addressed. # ...
Continue Reading
February 28, 2023
Important Photon OS Security Update – PHSA-2023-3.0-0538
Updates of ['telegraf', 'linux-secure', 'harfbuzz', 'kafka', 'bindutils', 'openssl', 'linux-rt', 'python3', 'gnutls', 'containerd', 'linux', 'linux-esx', 'linux-aws'] packages of Photon OS have been r ...
Continue Reading
February 27, 2023
ManageEngine Firewall Analyzer REST API Key Disclosure (CVE-2022-36923)
The ManageEngine Firewall Analyzer running on the remote host is affected by an information disclosure vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted mess ...
Continue Reading
February 24, 2023
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2023:0489-1)
The remote SUSE Linux SLED15 / SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0489-1 advisory. - * Improve GStreame ...
Continue Reading
February 24, 2023
SUSE SLES15 / openSUSE 15 Security Update : webkit2gtk3 (SUSE-SU-2023:0490-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0490-1 advisory. - * Improve GStreamer multime ...
Continue Reading
February 24, 2023
Security Bulletin: CVE-2022-37734 may affect IBM CICS TX Advanced
## Summary WebSphere Application Server Liberty is vulnerable to denial of service due to GraphQL Java. This affects IBM WebSphere Liberty used by IBM CICS TX Advanced. IBM CICS TX Advanced has addres ...
Continue Reading
February 24, 2023
Security Bulletin: CVE-2022-37734 may affect IBM CICS TX Standard
## Summary WebSphere Application Server Liberty is vulnerable to denial of service due to GraphQL Java. This affects IBM WebSphere Liberty used by IBM CICS TX Standard. IBM CICS TX Standard has addres ...
Continue Reading
February 24, 2023
