Citrix NetScaler ADC和Citrix NetScaler Gateway 安全漏洞

Citrix NetScaler ADC and Citrix NetScaler Gateway are both products of Citrix Corporation, U.S.A. Citrix NetScaler ADC is an application delivery and security platform.Citrix NetScaler Gateway is a secure remote access solution. A security vulnerability exists in Citrix NetScaler ADC and Citrix...

The vulnerability of the software networking facility for UaGateway servers, related to insufficient validation of input data, allows a perpetrator to trigger a service failure.

The vulnerability of the software networking mechanism for UaGateway servers relates to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

Information Disclosure

october/october is vulnerable to Information Disclosure. Remote unauthenticated attackers are able to exfiltrate user private keys via non-authoritative gateway servers because the library does not validate gateway server signatures...

CVE-2022-23655

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

CVE-2022-23655 Missing server signature validation in OctoberCMS

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

CVE-2022-23655 Missing server signature validation in OctoberCMS

Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to...

Security Bulletin: IBM API Connect is impacted by weak cryptographic algorithms (CVE-2019-4553)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-4553 DESCRIPTION: IBM API Connect uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. CVSS Base score: 5.9 CVSS Temporal...

No updates from gateway servers

Challenge No data come from the gateway servers. The Svc.VeeamGateSvc.log on the Gateway server default path C:\ProgramData\Veeam\Backup contains the following entry: Failed to establish target connection to endpoint: xxx.xxx.xxx.xxx:9999 where xxx.xxx.xxx.xxx points to the Veeam Managed Backup...