LiquidPixels LiquiFire OS Code Issue Vulnerability

LiquidPixels LiquiFire OS is a suite of dynamic imaging solutions from US-based LiquidPixels. The product includes production-grade features such as image formatting, image compression and image scaling. A code issue vulnerability exists in LiquidPixels LiquiFire OS version 4.8.0. The vulnerabili...

Malwarebytes AdwCleaner Code Issue Vulnerability

Malwarebytes AdwCleaner is a utility program from the American company Malwarebytes. The program is mainly used to scan and remove pre-installed software such as advertisements from Windows computers. A code issue vulnerability exists in versions of Malwarebytes AdwCleaner prior to 8.0.1. The...

jersey code problem vulnerability

jersey is an open source web development framework. A code issue vulnerability exists in jersey. The vulnerability arises from an improperly designed or implemented code development process for a web system or product. No detailed vulnerability details are provided at this time...

JetBrains Rider Code Issue Vulnerability

JetBrains Rider is a cross-platform .NET integrated development environment IDE from the Czech company JetBrains. A code issue vulnerability exists in JetBrains Rider versions prior to 2019.1.2. The vulnerability stems from an improperly designed or implemented code development process for a...

Bitdefender Antivirus Free Code Issue Vulnerability

Bitdefender Antivirus Free is a free version of the Romanian company Bitdefender's suite of antivirus programs that provide mainly cyber threat detection and ransomware protection. Bitdefender Antivirus Free is vulnerable to a code issue. The vulnerability arises from an improperly designed or...

WordPress formidable plugin code issue vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. formidable is a form builder used in it. A code issue vulnerability exists in the WordPress formidable plugin prior to version 4.02.01...

GitLab Code Issue Vulnerability

GitLab is a Ruby on Rails-developed, self-hosted, Git version control system project repository application from the American company GitLab. The program can be used to access a project's file contents, commit history, bug lists, and more. A code issue vulnerability exists in GitLab Enterprise an...

National Security Agency Ghidra Code Issue Vulnerability

National Security Agency Ghidra is a software reverse engineering SRE framework for the National Security Agency NSA. A code issue vulnerability exists in National Security Agency Ghidra versions prior to 9.0.1. The vulnerability stems from an improperly designed or implemented code development...

MailEnable Enterprise Premium Code Issue Vulnerability

MailEnable Enterprise Premium is a suite of POP3 and SMTP mail servers from MailEnable Australia. A code issue vulnerability exists in MailEnable Enterprise Premium version 10.23. The vulnerability arises from an improperly designed or implemented code development process for a network system or...

SAP HANA Code Issue Vulnerability

SAP HANA is a set of high-performance real-time data analytics platform from Germany's SAP SAP. The platform provides data query functions to support users to query real-time business data query and analysis. SAP HANA has a code issue vulnerability that originates from an improperly designed or...

Mozilla Thunderbird Code Issue Vulnerability

Mozilla Thunderbird is the United States Mozilla Foundation of a set of independent from MozillaApplicationSuite e-mail client software. The software supports IMAP and POP mail protocols as well as HTML mail format. A code issue vulnerability exists in versions of Mozilla Thunderbird prior to 60....

Security In A DevOps World

Originally presented at the Gartner Security & Risk Management Summit 2018, "Security In A DevOps World" examines the challenges and benefits of integrating security technology and thinking into the development process at the early stages. The slides are designed to assist in the presentation of...

RuggedCom: Dust Hasn't Cleared From Backdoor Account Revelation

The dust still hasn’t cleared from revelations that many of RuggedCom brand networking products contain an easily-exploited back door account, and that it is working on a fix for the problem, according to a statement from Siemens, which recently bought RuggedCom. “We are looking into all aspects ...

Thinking About Software Security Holistically

While assessing software systems of all types a few common mistakes regularly come up. These aren’t mistakes that lead directly to vulnerabilities, but mistakes in how some software companies think about security, that can lead to invalid assumptions, and ultimately which can allow real security...

More Secure Software Needed for Utilities, NERC CSO Says

It took a malware attack with an unprecedented level of sophistication to make it happen, but officials in charge of the security of much of the country’s electrical grid have come ot the conclusion that there is a need for more secure software and better security processes and procedures to...

Security Metrics Are Useless Without a Plan

WASHINGTON–There has been a big push in recent years in the security community toward metrics, and measurements of all types have become a hot topic in certain corners of the industry. But measurement for measurement’s sake is useless-and perhaps even counterproductive–if the security team in an...

Microsoft Pushes for Better Software Security Practices

WASHINGTON–Microsoft has spent several years and untold millions of dollars working on methods to write more secure and reliable software, and now the company is encouraging other organizations to make the same investment in software security. One of the outputs of the company’s software security...