744 matches found
ROS-20240425-08
The OpenSearch software family vulnerability is related to a bug in the parser where an input string of small size can cause it to use an undefined amount of memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
GHSA-QMGX-J96G-4428 vulnerabilities
Vulnerabilities for packages: opensearch...
GHSA-QMGX-J96G-4428 vulnerabilities
Vulnerabilities for packages: opensearch...
CVE-2024-28752 vulnerabilities
Vulnerabilities for packages: opensearch...
CVE-2024-28752 vulnerabilities
Vulnerabilities for packages: opensearch...
opensearch.sydneyuniversitypress.com.au Cross Site Scripting vulnerability OBB-3864538
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
GHSA-4265-CCF5-PHJ5 vulnerabilities
Vulnerabilities for packages: opensearch, gradle, spdx-tools-java, wavefront-proxy, druid, celeborn, trino, dependency-track, tez...
GHSA-4265-CCF5-PHJ5 vulnerabilities
Vulnerabilities for packages: dependency-track, kayenta, elasticsearch, celeborn, trino, spdx-tools-java, druid, gradle, hadoop-client-modules, tez, wavefront-proxy, kayenta-fips, opensearch...
GHSA-4G9R-VXHX-9PGX vulnerabilities
Vulnerabilities for packages: opensearch, gradle, spdx-tools-java, wavefront-proxy, druid, celeborn, trino, dependency-track, tez...
CVE-2024-26308 vulnerabilities
Vulnerabilities for packages: opensearch, gradle, spdx-tools-java, wavefront-proxy, druid, celeborn, trino, dependency-track, tez...
CVE-2024-26308 vulnerabilities
Vulnerabilities for packages: dependency-track, kayenta, elasticsearch, celeborn, trino, spdx-tools-java, druid, gradle, hadoop-client-modules, tez, wavefront-proxy, kayenta-fips, opensearch...
CVE-2024-25710 vulnerabilities
Vulnerabilities for packages: opensearch, gradle, spdx-tools-java, wavefront-proxy, druid, celeborn, trino, dependency-track, tez...
CVE-2024-25710 vulnerabilities
Vulnerabilities for packages: dependency-track, kayenta, elasticsearch, celeborn, trino, spdx-tools-java, druid, gradle, hadoop-client-modules, tez, wavefront-proxy, kayenta-fips, opensearch...
CVE-2024-21634 vulnerabilities
Vulnerabilities for packages: wavefront-proxy...
GHSA-264P-99WQ-F4J6 vulnerabilities
Vulnerabilities for packages: wavefront-proxy...
GHSA-JCHW-25XP-JWWC vulnerabilities
Vulnerabilities for packages: configurable-http-proxy, opensearch-dashboards, kibana, lerna, kubeflow-centraldashboard, kubeflow-pipelines, opensearch-dashboards-fips...
GHSA-JCHW-25XP-JWWC vulnerabilities
Vulnerabilities for packages: lerna, kubeflow-pipelines, configurable-http-proxy, kubeflow-centraldashboard...
CVE-2023-26159 vulnerabilities
Vulnerabilities for packages: configurable-http-proxy, opensearch-dashboards, kibana, lerna, kubeflow-centraldashboard, kubeflow-pipelines, opensearch-dashboards-fips...
CVE-2023-26159 vulnerabilities
Vulnerabilities for packages: lerna, kubeflow-pipelines, configurable-http-proxy, kubeflow-centraldashboard...
Expanded Coverage and AWS Compliance Pack Updates in InsightCloudSec Coming Out of AWS Re:Invent 2023
It seems like it was just yesterday that we were in Las Vegas for AWS Re:Invent, but it’s already been almost two weeks since the conference wrapped up. As is always the case, AWS unveiled a host of new services throughout the week, including advancements around serverless, artificial intelligenc...