Siemens Opcenter RDL Buffer Overflow Vulnerability

The Opcenter Research Development & Laboratory RD&L suite of software products simplifies, optimizes and aligns formulation product development, improves FMCG innovation efficiency and optimizes FMCG data management. A buffer overflow vulnerability exists in Siemens Opcenter RDL, which can be...

The vulnerability of the application development environment and the Angular single-page application platform, related to improper code generation management, allows attackers to execute arbitrary code.

The vulnerability of the application development environment and the Angular single-page application platform is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

Microsoft Security Update Validation Report December 2024

Microsoft’s December 2024 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing softwa...

The vulnerability of the software development environment for systems that automate technological processes, the Totally Integrated Automation Portal (Portal TIA), and the software used for modeling and simulating the operation of Siemens S7 controllers, arises from insufficient validation of input data. This allows attackers to execute arbitrary code.

The vulnerability of the software development environment for systems that automate technological processes, such as the Totally Integrated Automation Portal Portal TIA and software for simulating and testing the operation of Siemens S7 controllers, is related to insufficient verification of inpu...

[SECURITY] Fedora 41 Update: iaito-5.9.9-2.fc41

iaito is a Qt and C++ GUI for radare2. It is the continuation of Cutter before the fork to keep radare2 as backend. Its goal is making an advanced, customizable and FOSS reverse-engineering platform while keeping the user experience at mind. The iaito is created by reverse engineers for reverse...

Siemens Solid Edge V2024 Heap Buffer Overflow Vulnerability (CNVD-2024-47909)

Solid Edge is a portfolio of software tools to address a variety of product development processes: 3D design, simulation, manufacturing and design management. Siemens Solid Edge V2024 suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to execute code in the...

CVE-2024-45709

SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability requires the software be installed on Linux and configured to use non-default development/test mode making exposure to the vulnerability very limited...

CVE-2024-45709 SolarWinds Web Help Desk Local File Read Vulnerability

SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability requires the software be installed on Linux and configured to use non-default development/test mode making exposure to the vulnerability very limited...

CVE-2024-45709 SolarWinds Web Help Desk Local File Read Vulnerability

SolarWinds Web Help Desk was susceptible to a local file read vulnerability. This vulnerability requires the software be installed on Linux and configured to use non-default development/test mode making exposure to the vulnerability very limited...

APSB24-98 : Security update available for Adobe PDFL SDK

Adobe has released an update for the Adobe PDF Library Software Development Kit SDK for Windows, Linux and macOS. Adobe PDFL SDK contains a set of functions for developing third-party solutions and workflows built upon the Adobe PDF standard. This update resolves a critical vulnerability that cou...

CVE-2024-52599

Tuleap is an open source suite to improve management of software developments and collaboration. In Tuleap Community Edition prior to version 16.1.99.50 and Tuleap Enterprise Edition prior to versions 16.1-4 and 16.0-7, a malicious user with the ability to create an artifact in a tracker with a...

CVE-2024-52599 Tuleap vulnerable to XSS in the Gantt chart of the tracker plugin

Tuleap is an open source suite to improve management of software developments and collaboration. In Tuleap Community Edition prior to version 16.1.99.50 and Tuleap Enterprise Edition prior to versions 16.1-4 and 16.0-7, a malicious user with the ability to create an artifact in a tracker with a...

Authorized Agility: Wiz adds Code Security in the FedRAMP offering (Wiz for Gov)

Wiz is excited to announce the addition of Wiz Code into our Wiz for Gov offering, enabling organizations to visualize attack paths from cloud-to-code and bring guardrails into the software development lifecycle...

The Future of eCommerce: How Custom Apps Help You Get Ahead of the Competition

Discover the future of eCommerce with bespoke app development. Learn how tailored solutions enhance user experience, security, and performance while empowering businesses to meet unique needs and gain a competitive edge...

Security update for java-1_8_0-openjdk

This update for java-180-openjdk fixes the following issues: Update to version jdk8u432 icedtea-3.33.0: - CVE-2024-21208: Fixed partial DoS in component Networking bsc1231702,JDK-8328286 - CVE-2024-21210: Fixed unauthorized update, insert or delete access to some of Oracle Java SE accessible data...

GHSA-9R9M-FFP6-9X4V vue-i18n has cross-site scripting vulnerability with prototype pollution

Vulnerability type XSS Description vue-i18n can be passed locale messages to createI18n or useI18n. we can then translate them using t and $t. vue-i18n has its own syntax for local messages, and uses a message compiler to generate AST. In order to maximize the performance of the translation...

A Guide to Securing AI App Development: Join This Cybersecurity Webinar

Artificial Intelligence AI is no longer a far-off dream—it's here, changing the way we live. From ordering coffee to diagnosing diseases, it's everywhere. But while you're creating the next big AI-powered app, hackers are already figuring out ways to break it. Every AI app is an opportunity—and a...

The vulnerability in the set of development libraries for Intel Distribution for GDB relates to the improper use of standard resolutions, allowing attackers to increase their privileges.

The vulnerability in the set of development libraries for Intel Distribution for GDB is related to the improper use of standard permissions. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the application development library set for Intel Distribution for GDB, related to insufficient validation of input data, allows a perpetrator to trigger a service failure.

The vulnerability in the set of development libraries for Intel Distribution for GDB is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...

CVE-2024-52809 Cross-site Scripting vulnerability with prototype pollution in vue-i18n

vue-i18n is an internationalization plugin for Vue.js. In affected versions vue-i18n can be passed locale messages to createI18n or useI18n. When locale message ASTs are generated in development mode there is a possibility of Cross-site Scripting attack. This issue has been addressed in versions...