PT-2026-46126

Name of the Vulnerable Software and Affected Versions jupyter enterprise gateway versions prior to 3.3.0 Description Unsafe Jinja2 template rendering allows for Kubernetes manifest injection. The server interpolates untrusted environment variables such as KERNEL XXX into Kubernetes manifests...

How to find ICA Gateway accessing log in nslog

This article is an analysis on nslog /var/log/ns.log for accessing CVAD environment via ICA gateway. However, nslog will not include detailed logs for this process. Please refer to analysis on "NetScaler Gateway+StoreFront+XenDesktop workflow" in the article in additional resources...

Additional Analysis into the SUNBURST Backdoor | McAfee Blogs

ARCHIVED STORY Additional Analysis into the SUNBURST Backdoor Christiaan Beek · DEC 17, 2020 Executive Summary There has been considerable focus on the recent disclosures associated with SolarWinds, and while existing analysis on the broader campaign has resulted in detection against specific IoC...

Basic Citrix Licensing Information

How does Citrix licensing work? Citrix product goes through a three-step process to check out licenses; information on Licensing overview, visit Citrix Documentation athttps://docs.citrix.com/en-us/licensing/current-release.html Available License types? Visit Citrix Documentation...

Design/Logic Flaw

The API server in Kubernetes does not properly check admission control, which allows remote authenticated users to access additional resources via a crafted patched object...

CVE-2016-1905

The API server in Kubernetes does not properly check admission control, which allows remote authenticated users to access additional resources via a crafted patched object...