KB5089900 - Description of the security update for SQL Server 2022 CU24: May 12, 2026

KB5089900 - Description of the security update for SQL Server 2022 CU24: May 12, 2026 Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update How to obtain or download the latest cumulative update package for Linux More information...

KB5089899 - Description of the security update for SQL Server 2025 CU4: May 12, 2026

KB5089899 - Description of the security update for SQL Server 2025 CU4: May 12, 2026 Applies To SQL Server 2025 on Windows all editions, SQL Server 2025 on Linux all editions Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update Ho...

KB5091158 - Description of the security update for SQL Server 2022 GDR: May 12, 2026

KB5091158 - Description of the security update for SQL Server 2022 GDR: May 12, 2026 Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update More information File information ​​​​​​​Information about protection and security Summary...

KB5090408 - Description of the security update for SQL Server 2019 GDR: May 12, 2026

KB5090408 - Description of the security update for SQL Server 2019 GDR: May 12, 2026 Summary Known issues in this update Improvements and fixes included in this update How to obtain and install the update More information File information ​​​​​​​Information about protection and security Summary...

[SECURITY] Fedora 44 Update: kf6-purpose-6.25.0-1.fc44

Purpose offers the possibility to create integrate services and actions on any application without having to implement them specifically. Purpose will offer them mechanisms to list the different alternatives to execute given the requested action type and will facilitate components so that all the...

Newforma Project Center Server Information Disclosure Vulnerability (CNVD-2025-25476)

Newforma Project Center Server is a project information management solution for the Architecture, Engineering and Construction AEC industry from Newforma for centralized storage and management of project documents and collaboration. An information disclosure vulnerability exists in Newforma Proje...

CVE-2025-35057

Newforma Info Exchange NIX '/RemoteWeb/IntegrationServices.ashx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the NIX service account...

CVE-2025-35061 Newforma Info Exchange (NIX) forced NTLMv2 authentication via /NPCSRemoteWeb/LegacyIntegrationServices.asmx

Newforma Info Exchange NIX '/NPCSRemoteWeb/LegacyIntegrationServices.asmx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the user-configured NIX service account...

CVE-2025-35057 Newforma Info Exchange (NIX) forced NTLMv2 authentication via /RemoteWeb/IntegrationServices.ashx

Newforma Info Exchange NIX '/RemoteWeb/IntegrationServices.ashx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the NIX service account...

Newforma Project Center Server 安全漏洞

Newforma Project Center Server is a project information management solution for the Architecture, Engineering and Construction AEC industry from Newforma for centralized storage and management of project documents and collaboration. An information disclosure vulnerability exists in Newforma Proje...

CVE-2021-43394

Unisys OS 2200 Messaging Integration Services NTSI 7R3B IC3 and IC4, 7R3C, and 7R3D has an Incorrect Implementation of an Authentication Algorithm. An LDAP password is not properly validated...

The vulnerability of the Agile Integration Services component of the Oracle Agile PLM Framework’s product lifecycle management software allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Agile Integration Services component of the Oracle Agile PLM Framework management software lifecycle management system is related to the improper assignment of permissions for a critical resource. Exploiting this vulnerability allows an attacker to influence the...

The vulnerability of the Agile Integration Services component of the Oracle Agile PLM Framework’s product lifecycle management software allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the Agile Integration Services component of the Oracle Agile PLM Framework’s product lifecycle management software exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and...

CVE-2025-21564

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Agile Integration Services. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM...

CVE-2025-21556

Vulnerability in the Oracle Agile PLM Framework product of Oracle Supply Chain component: Agile Integration Services. The supported version that is affected is 9.3.6. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Agile PLM...

Error: "STOP: 0x0000007B ... " After Updating the Virtual Machine Tools on Provisioning Services

After switching vDisk to Private Mode and upgrading the hosting infrastructure’s Virtual Machine tools VM tools, Virtual Machine stops and displays a blue screen with the following stop error: STOP: 0x0000007B Note: This behavior does not occur with Microsoft’s Hyper-V Integration Services...

The vulnerability of the software for integrating data and SQL Server Integration Services (SSIS) processes lies in insufficient validation of input data, allowing a hacker to execute arbitrary code.

The vulnerability of the software for integrating data and SQL Server Integration Services SSIS processes is related to insufficient validation of input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

KB5021125 - Description of the security update for SQL Server 2019 GDR: February 14, 2023

KB5021125 - Description of the security update for SQL Server 2019 GDR: February 14, 2023 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contains...

CVE-2023-21568

Microsoft SQL Server Integration Service VS extension Remote Code Execution Vulnerability...

PT-2023-8998 · Microsoft · Sql Server Integration Services

Name of the Vulnerable Software and Affected Versions: Microsoft SQL Server Integration Service VS extension affected versions not specified Description: The issue is related to insufficient input validation in the SQL Server Integration Services SSIS software, which can be exploited to execute...