100 matches found
Serverless Storage at the Edge (EdgeKV Beta)
We are pleased to announce the launch of EdgeKV, our distributed key-value store, into beta! EdgeKV is enabling technology for EdgeWorkers, our serverless computing platform that enables developers to create services using JavaScript and deploy them across our platform. When writing JavaScript,...
Stored XSS in field name data model
Summary An attacker with admin access to the appliance can inject malicious code that will later be executed by another legitimate users. This allows an attacker to perform unauthorized actions on behalf of legitimate users. JavaScript injection was possible using the field name when adding new...
CISO series: Better cybersecurity requires a diverse and inclusive approach to AI and machine learning
Artificial Intelligence AI and machine learning have created lots of buzz with vendors. Being cast as the superheroes of technology is great for getting attention. But even Superman and Supergirl had their kryptonite. Could the lack of diversity and inclusiveness in the design teams and data type...
MISP - Malware Information Sharing Platform and Threat Sharing
The objective of MISP is to foster the sharing of structured information within the security community and abroad. MISP provides functionalities to support the exchange of information but also the consumption of the information by Network Intrusion Detection System NIDS, LIDS but also log analysi...
Description of the security update for Excel 2016: September 12, 2017
Description of the security update for Excel 2016: September 12, 2017 Summary This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see Microsoft Common...
The vulnerability of the data model created using Action Script 3 and the Flash Player software allows a perpetrator to execute arbitrary code.
The vulnerability of the data model created using Action Script 3, on the Flash Player software platform, arises from the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code memory corruption remotely...
CVE-2017-3099
Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 3 raster data model. Successful exploitation could lead to arbitrary code execution...
UBUNTU-CVE-2017-3099
Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 3 raster data model. Successful exploitation could lead to arbitrary code execution...
flash-plugin: code execution issue fixed in APSB17-21
Adobe Flash Player versions 26.0.0.131 and earlier have an exploitable memory corruption vulnerability in the Action Script 3 raster data model. Successful exploitation could lead to arbitrary code execution...
Shopify: Unauthorized access to Zookeeper on http://locutus-zk3.ec2.shopify.com:2181
What is Zookeeper? ==================== Zookeeper is a coordination service for distributed applications. It allows common services such as naming, synchronisation, configuration management and group services to be managed by a simple interface and It uses a data model of File System on an...
ImPAX Agility 1.1074.RC.b122.20150602 Cross Site Scripting
ImPAX Agility Multiple Cross Site Scripting Vulnerabilities Tested versions: 1.1074.RC.b122.20150602 http://www.agfahealthcare.com/ Credits to: vesp3r / [email protected] About the Product ------------------ IMPAX Agility is designed to achieve clinical productivity and improve affordability. I...
Open Source Big Data Analytics and Visualization: Lumify
Open Source Big Data Integration, Analytics, and Visualization Lumify is an open source project big data fusion, analysis, and visualization platform designed for anyone. Its intuitive web-based interface helps users discover connections and explore relationships in their data via a suite of...
[SECURITY] Fedora 20 Update: python-pycadf-0.5.1-1.fc20
DMTF Cloud Audit CADF data model...
How do I get my data out of Nexpose? Answer: SQL Query Export
Do any of these these questions sound familiar? "Printable reports are really valuable and I use them on a daily basis. However, is there a section that I can add to show a summary by asset group or site?" "I really like the XML format, but its a little hard to process and I have to write code to...
OpenJDK: improper protection of CORBA data models (CORBA, 7079902)
Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 update 4 and earlier, 6 update 32 and earlier, 5 update 35 and earlier, and 1.4.237 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to CORBA...
Out-of-bounds
CA ERwin Data Model Validator formerly AllFusion Data Model Validator allows remote attackers to 1 cause a denial of service application hang via a malformed .EXP database file and 2 cause a denial of service aaplication crash via a crafted .EXP database file, which triggers a NULL dereference...
CVE-2007-3696
CA ERwin Data Model Validator formerly AllFusion Data Model Validator allows remote attackers to 1 cause a denial of service application hang via a malformed .EXP database file and 2 cause a denial of service aaplication crash via a crafted .EXP database file, which triggers a NULL dereference...
CVE-2007-3696
Technical details about CVE-2007-3696 (affected software, root cause, impact, remediation) are not publicly available in the provided documents. Monitor for updates.
CVE-2007-3696
CA ERwin Data Model Validator formerly AllFusion Data Model Validator allows remote attackers to 1 cause a denial of service application hang via a malformed .EXP database file and 2 cause a denial of service aaplication crash via a crafted .EXP database file, which triggers a NULL dereference...
oracle_xmldb_css.txt
Cross-Site-Scripting Vulnerability in Oracle XMLDB Name Cross-Site-Scripting Vulnerability in Oracle XMLDB Systems Affected Oracle Database 9i Rel. 2 Severity Low Risk Category Cross Site Scripting CSS/XSS Vendor URL http://www.oracle.com This advisory...