5 matches found
CISA Security Leak
Crazy story: Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency CISA maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems. Security experts said the...
Information Exposure
Overview Affected versions of this package are vulnerable to Information Exposure via the /status endpoint, which returns detailed version and build information. An attacker can gain insights into the software version and configuration by sending unauthenticated requests to this endpoint and...
BIT-GRADLE-2021-41584
Gradle Enterprise before 2021.1.3 can allow unauthorized viewing of a response information disclosure of possibly sensitive build/configuration details via a crafted HTTP request with the X-Gradle-Enterprise-Ajax-Request header...
Gradle 信息泄露漏洞
Gradle Enterprise can improve developer productivity by accelerating builds, improving build reliability, and speeding up build debugging. An attacker could exploit this vulnerability to obtain potentially sensitive build/configuration details via a specially crafted HTTP request with the...
Release information for Veeam Service Provider Console v5
A newer version of Veeam Service Provider Console is available, review Veeam for service providers: Download for more information. Requirements Please confirm that you are running version 4 build 4.0.0.4877 or later prior to upgrading. You can check this under Configuration | Support Information ...