PT-2023-3748 · Sap · Sap Netweaver

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Change and Transport System versions 702 through 757 Description: The issue is related to a lack of resource control mechanism in the Change and Transport System component of SAP NetWeaver. This allows an authenticated user with...

auditpolCIS - CIS Benchmark Testing Of Windows SIEM Configuration

CIS Benchmark testing of Windows SIEM configuration This is an application for testing the configuration of Windows Audit Policy settings against the CIS Benchmark recommended settings. A few points: The tested system was Windows Server 2019, and the benchmark used was also Windows Server 2019. T...

Center for Internet Security (CIS) unveils Azure Foundations Benchmark v2.0.0

The Center for Internet Security CIS recently unveiled the latest version of their Azure Foundations Benchmark—Version 2.0.0. This is the first major release since the benchmark was originally released more than 4 years ago, which could lead you to believe that this update would come with a bunch...

New InsightCloudSec Compliance Pack: Key Takeaways From the Azure Security Benchmark V3

Implementing the proper security policies and controls to keep cloud environments, and the applications and sensitive data they host secure, is a daunting task for anyone. It’s even more of a challenge for folks that are just getting started on their journey to the cloud, and for teams that lack...

SUSE CVE-2017-18210

In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked...

Year in Review: Rapid7 Vulnerability Management

2022 began on a solemn note — many organizations across the globe were recovering from the Log4Shell zero-day vulnerability. For the InsightVM and Nexpose team, 2022 began with a lot of introspection on how we can add more value and keep meeting our customer needs in the best possible ways. This...

Fedora: Security Advisory for kdiskmark (FEDORA-2022-97149edce1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 36 Update: kdiskmark-3.1.0-1.fc36

KDiskMark is an HDD and SSD benchmark tool with a very friendly graphical user interface. KDiskMark with its presets and powerful GUI calls Flexible I/O Tester and handles the output to provide an easy to view and interpret comprehensive benchmark result...

[SECURITY] Fedora 36 Update: golang-x-perf-0-0.16.20210123gitbdcc622.fc36

This package holds the source for various tools related to performance measurement, storage, and analysis. - cmd/benchstat contains a command-line tool that computes and 7 compares statistics about benchmarks. - cmd/benchsave contains a command-line tool for publishing benchmark results. - storag...

Malicious Package

Overview protons-benchmark is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package...

Malicious code in protons-benchmark (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4597a7187bc45fc36932f6e9742acf830768fe8208a30a10e29af5b630900843 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2022-5492 Malicious code in protons-benchmark (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 4597a7187bc45fc36932f6e9742acf830768fe8208a30a10e29af5b630900843 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Moderate: Red Hat Security Advisory: ACS 3.71 enhancement and security update

Updated images are now available for Red Hat Advanced Cluster Security. The updated image includes bug fixes and feature improvements. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a...

[SECURITY] Fedora 35 Update: golang-x-perf-0-0.15.20210123gitbdcc622.fc35

This package holds the source for various tools related to performance measurement, storage, and analysis. - cmd/benchstat contains a command-line tool that computes and 7 compares statistics about benchmarks. - cmd/benchsave contains a command-line tool for publishing benchmark results. - storag...

[SECURITY] Fedora 35 Update: golang-github-gogo-protobuf-1.3.2-5.fc35

Gogoprotobuf is a fork of golang/protobuf with extra code generation features. This code generation is used to achieve: - fast marshalling and unmarshalling - more canonical Go structures - goprotobuf compatibility - less typing by optionally generating extra helper code - peace of mind by...

DSAB path traversal vulnerability

DSAB is a dataflow algorithm benchmark. A benchmark designed to test the performance of various dataflow algorithms on multiple datasets in a simple way.DSAB suffers from a path traversal vulnerability that stems from the failure of the Flask sendfile function to properly filter special elements ...

DSAB 路径遍历漏洞

DSAB is a data streaming algorithm benchmark. A benchmark designed to test the performance of various data streaming algorithms on multiple datasets in a simple manner. A security vulnerability exists in DSAB version 2.1 and earlier versions, which stems from insecure use of Flask's sendfile...

DSAB 路径遍历漏洞

DSAB is a dataflow algorithm benchmark. A benchmark designed to test the performance of various dataflow algorithms on multiple datasets in a simple way.DSAB suffers from a path traversal vulnerability that stems from the failure of the Flask sendfile function to properly filter special elements ...

[SECURITY] Fedora 36 Update: golang-x-perf-0-0.15.20210123gitbdcc622.fc36

This package holds the source for various tools related to performance measurement, storage, and analysis. - cmd/benchstat contains a command-line tool that computes and 7 compares statistics about benchmarks. - cmd/benchsave contains a command-line tool for publishing benchmark results. - storag...

Malicious code in github-action-benchmark (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware f873a3ef25b833c6a1b1d4b8d5079265a195382dc4dbbfda249bcf9ae8d20c8f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...