84 matches found
CVE-2026-39910
STACKIT IaaS API contains a missing authorization check vulnerability that allows authenticated, low-privileged attackers to escalate privileges to full organization compromise by attaching arbitrary service accounts to virtual machines they control. Attackers can exploit the unvalidated PUT...
EUVD-2018-11895
Malware in sbrugna...
EUVD-2021-19574
Malware in sbrugna...
EUVD-2018-7626
Malware in sbrugna...
EUVD-2019-13411
Malware in sbrugna...
Akamai Named a Major Player in IDC MarketScape: Worldwide Public Cloud IaaS 2025 Assessment
...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 security update
Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 16.2 Train for Red Hat Enterprise Linux RHEL 8.4. Red Hat Product Security has rated this update as having a security impact of Important. Red Hat OpenStack Platform provides the facilities for building,...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.3 security update
Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 17.1 Wallaby for Red Hat Enterprise Linux RHEL 9.2. Red Hat Product Security has rated this update as having a security impact of Important. Red Hat OpenStack Platform provides the facilities for buildin...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.3 security update
Updated packages that resolve various issues are now available for Red Hat OpenStack Platform 17.1 Wallaby for Red Hat Enterprise Linux RHEL 8.4. Red Hat Product Security has rated this update as having a security impact of Important. Red Hat OpenStack Platform provides the facilities for buildin...
RHEL 9 : Red Hat OpenStack Platform 17.1.3 (RHSA-2024:5083)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5083 advisory. Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service IaaS cloud...
RHEL 8 : Red Hat OpenStack Platform 16.2.6 (RHSA-2024:5097)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5097 advisory. Red Hat OpenStack Platform provides the facilities for building, deploying and monitoring a private or public infrastructure-as-a-service IaaS cloud...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 director Operator container images security update
Updated container images are now available for director Operator for Red Hat OpenStack Platform 16.2 Train for RHEL 8.4. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...
Important: Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 director Operator container images security update
Updated container images are now available for director Operator for Red Hat OpenStack Platform 17.1 Wallaby for RHEL 9.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...
What's the Difference Between CSPM & SSPM?
Cloud Security Posture Management CSPM and SaaS Security Posture Management SSPM are frequently confused. The similarity of the acronyms notwithstanding, both security solutions focus on securing data in the cloud. In a world where the terms cloud and SaaS are used interchangeably, this confusion...
IDC MarketScape Names Akamai a Contender in Worldwide Public Cloud IaaS
Akamai’s inclusion as a Contender in the "IDC MarketScape: Worldwide Public Cloud Infrastructure as a Service Vendor Assessment" demonstrates the strength of our cloud computing services...
Apache CloudStack XML External Entity Injection Vulnerability
Apache CloudStack is a suite of Infrastructure as a Service IaaS cloud computing platforms from the Apache Foundation in the United States. The platform is primarily used to deploy and manage large networks of virtual machines. An XML external entity injection vulnerability exists in Apache...
CISA Requests Public Comment on CISA’s TIC 3.0 Cloud Use Case
CISA has released Trusted Internet Connections TIC 3.0 Cloud Use Case for public comment. TIC is a federal cybersecurity initiative intended to secure federal data, networks, and boundaries while providing visibility into agency traffic, including cloud communications. TIC use cases provide...
Atomic-Operator - A Python Package Is Used To Execute Atomic Red Team Tests (Atomics) Across Multiple Operating System Environments
This python package is used to execute Atomic Red Team tests Atomics across multiple operating system environments. What's new? Why? atomic-operator enables security professionals to test their detection and defensive capabilities against prescribed techniques defined within atomic-red-team. By...
Apache CloudStack Security Feature Issue Vulnerability
Apache CloudStack is an Infrastructure-as-a-Service IaaS cloud computing platform from the Apache Foundation. The platform is primarily used to deploy and manage large networks of virtual machines.A security feature issue vulnerability exists in versions of Apache CloudStack prior to 4.16.1.0,...
Server-Side Request Forgery in Concrete CMS
Concrete CMS formerly concrete5 versions below 8.5.7 has a SSRF mitigation bypass using DNS Rebind attack giving an attacker the ability to fetch cloud IAAS ex AWS IAM keys.To fix this Concrete CMS no longer allows downloads from the local network and specifies the validated IP when downloading...