7 matches found
Security Researchers Warn a Widely Used Open Source Tool Poses a 'Persistent' Risk to the US
The open source software easyjson is used by the US government and American companies. But its ties to Russia’s VK, whose CEO has been sanctioned, have researchers sounding the alarm...
Repository for Software Attestation and Artifacts Now Live
Software producers who partner with the federal government can now upload their Secure Software Development Attestation Forms to CISA's Repository for Software Attestation and Artifacts. Software producers that provide the government software can fill out the form to attest to implementation of...
Command Execution Vulnerabilities in the Budget Networking Supervision System of the National People's Congress of Beijing UFIDA Government Affairs Software Co.
Beijing UFIDA Government Software Co., Ltd. is a comprehensive business management information solution provider for government departments, institutions and non-profit organizations. A command execution vulnerability exists in the NPC Budget Networking Supervision System of Beijing UFIDA...
Logic Flaw Vulnerability in BigAnt Manager at Hangzhou Aipu Software Co.
BigAnt is a leading brand of domesticated enterprise instant messaging software for e-government. A logic flaw vulnerability exists in the BigAnt manager of Hangzhou Aipu Software Co. Ltd, which can be exploited by attackers to obtain sensitive information...
File Upload Vulnerability in Government Finance Cloud of Beijing UFIDA Government Software Co.
Beijing UFIDA Government Software Co., Ltd. was jointly established by UFIDA Group and China Academy of Fiscal Science, and is an all-round business management informatization solution provider for government departments, institutions and non-profit organizations. A file upload vulnerability exis...
SQL Injection Vulnerability in Smart City Management Platforms
Ltd. is a high-tech enterprise certified by Beijing Municipality and a software enterprise with a number of independent intellectual property rights, specializing in the development and promotion of e-government and GIS application platforms. An SQL injection vulnerability exists in the intellige...
Bulgaria passes Law that mandates Government Software must be Open Source
Do you have any idea what the software you have installed is doing stealthily in the background? If it's not an open source software, can you find out? Usually, the answer is no. After Edward Snowden’s revelations, it's clear that how desperately government agencies wants to put secret backdoors ...