EUVD-2019-5975

Malware in sbrugna...

EUVD-2015-0187

Malware in sbrugna...

EUVD-2021-28253

Malicious code in bioql PyPI...

EUVD-2023-0563

Malicious code in bioql PyPI...

EUVD-2023-1056

Malicious code in bioql PyPI...

EUVD-2025-21396

Malicious code in bioql PyPI...

EUVD-2024-2170

Malicious code in bioql PyPI...

EUVD-2023-35198

Malicious code in bioql PyPI...

EUVD-2022-28119

Malicious code in bioql PyPI...

EUVD-2021-7690

Malicious code in bioql PyPI...

EUVD-2022-6644

Malicious code in bioql PyPI...

org.wso2.carbon.devicemgt:org.wso2.carbon.device.mgt.common (>=1.2.0 <=2.0.19) potentially affected by CVE-2025-4760 via org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.api (>=5.0.5 <=6.1.35)

org.wso2.carbon.apimgt:org.wso2.carbon.apimgt.api MAVEN version =5.0.5, =1.2.0, =2.0.19 Source cves: CVE-2025-4760 Source advisory: OSV:GHSA-CMJC-QP7J-XGWR...

CVE-2023-30845

ESPv2 is a service proxy that provides API management capabilities using Google Service Infrastructure. ESPv2 2.20.0 through 2.42.0 contains an authentication bypass vulnerability. API clients can craft a malicious X-HTTP-Method-Override header value to bypass JWT authentication in specific cases...

CVE-2019-25075

HTML injection combined with path traversal in the Email service in Gravitee API Management before 1.25.3 allows anonymous users to read arbitrary files via a /management/users/register request...

Security Bulletin: Multiple Vulnerabilities in IBM webMethods API Management

Summary Multiple vulnerabilities were addressed in the latest fix release for IBM webMethods API Management 11.1 Vulnerability Details CVEID:CVE-2024-23672 DESCRIPTION: Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket...

[SECURITY] Fedora 42 Update: rust-icu_locid-1.5.0-2.fc42

API for managing Unicode Language and Locale Identifiers...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure which allows an attacker to determine the existence of user accounts by analyzing the response times and codes. Remediation Upgrade Umbraco.Cms.Api.Management to version 14.3.2, 15.1.2 or higher. References - GitHub...

[SECURITY] Fedora 41 Update: incus-6.8-1.fc41

Container hypervisor based on LXC Incus offers a REST API to remotely manage containers over the network, using an image based work-flow and with support for live migration. This package contains the Incus daemon...

Taming API Sprawl: Best Practices for API Discovery and Management

APIs are the backbone of interconnected applications, enabling organizations to innovate, integrate, and scale rapidly. However, as enterprises continue to expand their digital ecosystems, they often encounter a common and complex challenge: API sprawl. Unchecked, API sprawl can lead to increased...

PT-2024-7496 · Red Hat · Red Hat 3Scale Api Management

Name of the Vulnerable Software and Affected Versions: Red Hat 3scale API Management affected versions not specified Description: A flaw in the authentication mechanism of Red Hat 3scale API Management allows unauthorized access to the backend. This occurs when a non-base64 'basic' auth with...