617 matches found
[SECURITY] Fedora 39 Update: nats-server-2.10.3-1.fc39
A High Performance NATS Server written in Go and hosted by the Cloud Native Computing Foundation CNCF...
[SECURITY] Fedora 39 Update: golang-github-nats-io-1.30.1-1.fc39
Golang client for NATS, the cloud native messaging system...
What is a Cloud Native Application Protection Platform CNAPP ?
Revealing the Secrets of the Cloud-specific Application Safety Platform CSASP In the landscape of online safety, the notion of the Cloud-specific Application Safety Platform CSASP is something relatively unheard of, but rapidly gaining popularity. Intuitively from its name, CSASP is a system...
Unlocking API Security Excellence: Wallarm at OWASP Global AppSec DC 2023
If you're involved in securing APIs, applications and web applications, or looking to learn about these, then the OWASP Global AppSec DC Conference next week is a must-attend event. Wallarm, the experts in API and application security, will be there, and we're excited to connect with you on Octob...
Fedora: Security Advisory for nats-server (FEDORA-2023-c33188f575)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: nats-server-2.10.3-1.fc38
A High Performance NATS Server written in Go and hosted by the Cloud Native Computing Foundation CNCF...
Oracle HTTP Server (October 2023 CPU)
The version of Oracle HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the October 2023 CPU advisory. - Vulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware component: Web Listener. The supported version that is affected is...
Fedora: Security Advisory for nats-server (FEDORA-2023-f122ea1b3e)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory for golang-github-nats-io (FEDORA-2023-f122ea1b3e)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 38 Update: nats-server-2.10.1-4.fc38
A High Performance NATS Server written in Go and hosted by the Cloud Native Computing Foundation CNCF...
[SECURITY] Fedora 38 Update: golang-github-nats-io-1.30.1-3.fc38
Golang client for NATS, the cloud native messaging system...
Oracle Linux 8 : istio (ELSA-2023-12780)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12780 advisory. - Addresses CVE CVE-2023-35941, CVE-2023-35942, CVE-2023-35943, CVE-2023-35944. olcne - CVE-2023-35941 - CVE-2023-35942 - CVE-2023-35943 Tenable has...
Amazon Linux 2 : ecs-service-connect-agent (ALASECS-2023-006)
The version of ecs-service-connect-agent installed on the remote host is prior to v1.26.4.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2ECS-2023-006 advisory. Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to...
DiDi Know Streaming Security Breach
DiDi Know Streaming is a cloud-native Kafka management platform from China-based DiDi. A security vulnerability exists in DiDi Know Streaming that stems from an elevation of privilege vulnerability...
Remote Command Execution Vulnerability in NC Cloud of UFIDA Network Technology Co.
NC Cloud is a large-scale enterprise digital platform that deeply applies new-generation digital intelligence technology and is completely based on cloud-native architecture to create an open, interconnected, converged and intelligent integrated cloud platform. A remote command execution...
A Bootiful Podcast: cloud native Chris Richardson
Hi, Spring fans! In this installment, Josh Long @starbuxman talks to original cloud native Chris Richardson on microservices, architecture, and more...
Beating the Challenge of Cloud Detection and Response with Qualys TotalCloud Deep Learning AI
Lets go beyond the limitations of configuration management-only, non-cloud-native EDR tools for threat detection & response using deep learning AI. The global adoption of cloud technology has supercharged agile innovation in virtually every business sector. As a result, organizations are now...
Wiz's agentless approach to cloud-native vulnerability management
Prioritize critical vulnerabilities based on business impact with Wiz’s agentless Vulnerability Management solution...
CVE-2023-38495
Crossplane is a framework for building cloud native control planes without needing to write code. In versions prior to 1.11.5, 1.12.3, and 1.13.0, Crossplane's image backend does not validate the byte contents of Crossplane packages. As such, Crossplane does not detect if an attacker has tampered...
Code injection
Crossplane is a framework for building cloud native control planes without needing to write code. In versions prior to 1.11.5, 1.12.3, and 1.13.0, Crossplane's image backend does not validate the byte contents of Crossplane packages. As such, Crossplane does not detect if an attacker has tampered...