3 matches found
A Comprehensive Review of Denial of Wallet Attacks in Serverless Architectures
The Denial of Wallet DoW attack poses a unique and growing threat to serverless architectures that rely on Function-as-a-Service FaaS models, exploiting the cost structure of pay-as-you-go billing to financially burden application owners. Unlike traditional Denial of Service DoS attacks, which ai...
Security Bulletin: Multiple Vulnerabilities in IBM Event Processing
Summary IBM Event Processing was affected by multiple vulnerabilities. These are affecting the operator and frontend components. Vulnerability Details CVEID:CVE-2024-55565 DESCRIPTION: nanoid aka Nano ID before 5.0.9 mishandles non-integer values. 3.3.8 is also a fixed version. CWE:CWE-835: Loop...
PT-2024-10209
Name of the Vulnerable Software and Affected Versions Next.js versions 13.0.0 through 13.5.7 Next.js versions 14.0.0 through 14.2.20 Next.js versions 15.0.0 through 15.1.1 Description The issue is related to an unbounded resource allocation in Next.js, which can be exploited to cause a denial of...