Elasticsearch 代码问题漏洞

Elasticsearch is a set of Dutch Elasticsearch company built on Lucene open source distributed RESTful search engine . The product is mainly used in cloud computing , and supports data indexing via HTTP using JSON . A code issue vulnerability exists in Elasticsearch ODFE Open Distro versions prior...

The Future is Friction-Free: Drive Innovation With DevOps + Security

Going from a centralized security group that dictates a “command and control” approach to cloud security toward a model of “trust but verify,” is at the core of the modern shift toward security-practice democratization. Organizational practices behind legacy, centralized data centers are being...

Foxit Reader and PhantomPDF Code Issue Vulnerability

Reader is a set of PDF document reader software . Foxit Reader is a PDF document reader . V8 is one of the open source JavaScript engine . mPDF is a use of PHP to write for the conversion of HTML into PDF files library . A code issue vulnerability exists in Foxit Reader and PhantomPDF versions...

MediaWiki Code Problem Vulnerability

MediaWiki is a set of free and freely available web-based Wiki engines from the MediaWiki Wikimedia Foundation in the United States. The product can be used to deploy in-house knowledge management and content management systems. centralAuth is one of the extensions that supports shared global...

Lua Code Problems Vulnerabilities

Lua is a lightweight, extensible open source scripting language from the Lua team. A code issue vulnerability exists in the ldebug.c file in Lua version 5.4.0. The vulnerability stems from an improperly designed or implemented code development process for a networked system or product. No detaile...

Red Hat CloudForms Code Issue Vulnerability

Red Hat CloudForms is a hybrid infrastructure management platform from Red Hat, Inc. The platform provides deployment, management, and other capabilities across virtual machines, clouds, containers, and physical infrastructure. A code issue vulnerability exists in Red Hat CloudForms. The...

Meetecho Janus Code Issue Vulnerability

Meetecho Janus is a WebRTC Web Real Time Communication server from Meetecho. A code issue vulnerability exists in Meetecho Janus. The vulnerability stems from an improperly designed or implemented code development process for a web system or product. Detailed vulnerability details are not availab...

Planning Ahead to Prevent Vulnerabilities

The cost to remediate vulnerabilities increases as those vulnerabilities make it further into the development process. If they make it into a final release, those vulnerabilities can leave organizations vulnerable to attacks, costing time and resources to address, as well as causing damage to the...

Red Hat Keycloak Code Issue Vulnerability

Red Hat Keycloak is a suite of software from Red Hat, Inc. that provides authentication and management capabilities for modern applications and services. A code issue vulnerability exists in Red Hat Keycloak versions prior to 9.0.2. The vulnerability stems from an improperly designed or implement...

Wind River Systems VxWorks IGMP Component Code Issue Vulnerability

Wind River Systems VxWorks is an embedded real-time operating system RTOS from Wind River Systems, Inc.IGMP is one of the Internet Group Management Protocol components. A code issue vulnerability exists in the IGMP component of Wind River Systems VxWorks. The vulnerability arises from an improper...

Red Hat IPA Code Issue Vulnerability

Red Hat IPA is a domain controller for Linux/UNIX platforms from Red Hat. A code issue vulnerability exists in Red Hat IPA. The vulnerability arises from an improperly designed or implemented code development process for a network system or product. No detailed vulnerability details are provided ...

Osmand Code Issue Vulnerability

Osmand is a mapping and navigation application for mobile platforms. A code issue vulnerability exists in Osmand 2.0.0 and prior versions. The vulnerability stems from an improperly designed or implemented code development process for a networked system or product. No detailed vulnerability detai...

GitLab Code Issue Vulnerability (CNVD-2020-19601)

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A code issue vulnerability exists in GitLab Enterprise...

DNN Code Issue Vulnerability

DNN also known as DotNetNuke is a set of U.S. DNN by Microsoft support , based on the ASP.NET platform for open source content management system CMS. The system is easy to install , scalable , feature-rich and so on. A code issue vulnerability exists in DNN 9.4.4 and prior versions. The...

spacewalk code issue vulnerability

spacewalk is an open source Linux system management solution. A code issue vulnerability exists in Spacewalk 2.9 and prior versions. The vulnerability stems from an improperly designed or implemented code development process for a networked system or product. No detailed vulnerability details are...

CloudBees Jenkins RadarGun plugin code issue vulnerability

CloudBees Jenkins Hudson Labs is the United States CloudBees company a set of Java-based development of continuous integration tools . The product is mainly used to monitor the continuous software version release/testing project and some timed execution of the task . A code issue vulnerability...

Zoho ManageEngine Remote Access Plus Code Issue Vulnerability

ZOHO ManageEngine Remote Access Plus is a remote access solution from ZOHO. A code issue vulnerability exists in Zoho ManageEngine Remote Access Plus version 10.0.447. The vulnerability stems from an improperly designed or implemented code development process for a networked system or product. No...

FTPGetter Code Issue Vulnerability

FTPGetter is a file transfer tool from the FTPGetter team that supports FTP and SFTP protocols. A code issue vulnerability exists in FTPGetter Professional Edition version 5.97.0.223. The vulnerability stems from an improperly designed or implemented code development process for a network system ...

Lustre mdt module code issue vulnerability

Lustre is a parallel distributed file system typically used in large computer clusters and supercomputers, of which Lustre mdt is a module. A code issue vulnerability exists in the Lustre mdt module. The vulnerability stems from an improperly designed or implemented code development process for a...

XMLBlueprint Code Issue Vulnerability

XMLBlueprint is a Windows-based XML editor that supports DTD, Relax NG, Schematron, XSD, XSLT and XPath. A code issue vulnerability exists in XMLBlueprint 16.191112 and earlier versions. The vulnerability stems from an improperly designed or implemented code development process for a web-based...