CVSS3 - MEDIUM - API Security Blog

CVE-2023-35314

Remote Procedure Call Runtime Denial of Service VulnerabilityRead More ...

July 11, 2023

CVE-2023-35316

Remote Procedure Call Runtime Information Disclosure VulnerabilityRead More ...

July 11, 2023

CVE-2023-35346

Windows DNS Server Remote Code Execution VulnerabilityRead More ...

July 11, 2023

CVE-2023-33174

Windows Cryptographic Information Disclosure VulnerabilityRead More ...

July 11, 2023

Security Bulletin: Multiple operator framework security vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak

## Summary symlink is used by IBM Robotic Process Automation for Cloud Pak as part of the operator framework (CVE-2015-3627). Distribution is used by IBM Robotic Process Automation as part of the oper ...

July 11, 2023

CVE-2023-37288

SmartBPM.NET has a vulnerability of using hard-coded authentication key. An unauthenticated remote attacker can exploit this vulnerability to access system with regular user privilege to read applicat ...

July 10, 2023

Doorkeeper vulnerability

## Releases * Ubuntu 23.04 * Ubuntu 22.10 * Ubuntu 22.04 LTS * Ubuntu 20.04 LTS * Ubuntu 18.04 ESM * Ubuntu 16.04 ESM ## Packages * ruby-doorkeeper - OAuth 2 provider for Rails and Grape ...

July 08, 2023

Exploit for Exposure of Resource to Wrong Sphere in Servicenow

July 07, 2023

[SECURITY] Fedora 38 Update: picocli-4.7.4-1.fc38

Picocli is a modern library and framework, written in Java, that contains b oth an annotations API and a programmatic API. It features usage help with ANSI colors and styles, TAB auto-completion and n ...

July 07, 2023

Apache Superset vulnerable to Exposure of Sensitive Information

An authenticated user with specific data permissions could access database connections stored passwords by requesting a specific REST API.Â This issue affects Apache Superset version 1.3.0 up to 2.0 ...

July 07, 2023