Lucene search
K

380 matches found

Positive Technologies
Positive Technologies
added 2019/10/01 12:0 a.m.5 views

PT-2019-3611 · Zingbox · Zingbox Inspector

Name of the Vulnerable Software and Affected Versions: Zingbox Inspector versions 1.294 and earlier Description: A security issue exists where passwords for 3rd party integrations are stored in cleartext in device configuration, potentially allowing a remote attacker to gain unauthorized access t...

7.8CVSS7.5AI score0.00845EPSS
Exploits0References5
ripstech
ripstech
added 2019/07/08 7:0 a.m.88 views

RIPS 3.2: Patch Generation and New IDE Integrations

Automated Patch Generation RIPS scans your source code for critical security vulnerabilities fully automated in only a few minutes. But the most time-intense task when securing your application is to research and to write code patches that fix all the detected security problems sufficiently...

7.3AI score
Exploits0
Kitploit
Kitploit
added 2019/01/29 12:48 p.m.102 views

CIRTKit - Tools For The Computer Incident Response Team

One DFIR console to rule them all. Built on top of theViper Framework Documentation Please see the wiki for more information about CIRTKit and documentation Roadmap Future integrations Bit9 Palo Alto Networks EnCase/FTK Future modules Packet Analysis possibly Dshell Javascript...

6.7AI score
Exploits0References3
Akamai Blog
Akamai Blog
added 2018/11/19 2:22 p.m.83 views

Adaptive Media Player Named Readers' Choice Finalist

In its first time being nominated, Akamai's Adaptive Media Player AMP was named a runner up in the 2018 Streaming Media Readers' Choice Awards "Video Player/SDK" category. The Awards annually survey Streaming Media's readers for the top products and services for streaming video and audio. We are...

0.8AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/11/01 1:0 p.m.43 views

Partner Perspectives: More Effective Threat Hunting with ThreatConnect and Carbon Black

Megan Horner is the Director of Product Marketing for ThreatConnect. You’ll hear a lot in cybersecurity - and in technology in general - about the necessity of integrations. The more security solutions can communicate back and forth with what they find “in the wild” and how it compares to what’s...

0.8AI score
Exploits0
OSV
OSV
added 2018/10/17 1:31 a.m.4 views

CVE-2018-3122

Vulnerability in the Oracle Retail Open Commerce Platform component of Oracle Retail Applications subcomponent: Integrations. Supported versions that are affected are 6.0, 6.0.1 and 5.3. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise...

6.8CVSS7.3AI score0.01278EPSS
Exploits0References2
Carbon Black Blog
Carbon Black Blog
added 2018/10/09 5:9 p.m.13 views

Empowering Developers: How Unfiltered Data and Custom Integrations Became a Foundation for Carbon Black

Today, we’re hosting our first-ever Developer Day from the sold-out CbConnect18 conference in New York. The day features in-depth, technical workshops to accelerate developers’ ability to extend Carbon Black’s open cloud platform to improve the security stack. The way I see it, this day is years ...

Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/10/09 2:28 p.m.28 views

Empowering Developers: How Unfiltered Data and Custom Integrations Became a Foundation for Carbon Black

Today, we’re hosting our first-ever Developer Day from the sold-out CbConnect18 conference in New York. The day features in-depth, technical workshops to accelerate developers’ ability to extend Carbon Black’s open cloud platform to improve the security stack. The way I see it, this day is years ...

Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/10 8:34 a.m.31 views

Security Bulletin: TLS padding vulnerability affects IBM Rational ClearCase (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM Rational ClearCase. Vulnerability Details CVE-ID: CVE-2014-8730 Description: IBM Rational ClearCase could allow a remote attacker to obtain sensitive...

4.3CVSS0.6AI score0.1372EPSS
Exploits0Affected Software1
Veeam
Veeam
added 2018/07/02 12:0 a.m.20 views

Release Notes for Veeam Backup & Replication 9.5 Update 3a

More Recent Version Available Please find the latest version of Veeam Backup & Replication here: Veeam Downloads - Latest Version Challenge Release Notes for Veeam Backup Replication 9.5 Update 3a Cause Please confirm that you are running version 9.5.0.580, 9.5.0.711, 9.5.0.802, 9.5.0.823,...

7AI score
Exploits0Affected Software1
Microsoft Secure
Microsoft Secure
added 2018/04/17 2:0 p.m.101 views

Connect to the Intelligent Security Graph using a new API

Most organizations deal with high volumes of security data and have dozens of security solutions in their enterprise, making the task of integrating various products and services daunting and complex. The cost, time, and resources necessary to connect systems, enable correlation of alerts, and...

0.1AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/03/28 1:0 p.m.31 views

With the Carbon Black Integration Network (CbIN), We’re Delivering Stronger Cybersecurity via Open APIs

Today is another exciting day for Carbon Black, as we unveil the Carbon Black Integration Network CbIN, a technology partner program designed to improve cybersecurity through collective defense and powered by Carbon Black’s open APIs and the Cb Predictive Security CloudTM PSC. Security teams toda...

7AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/02/28 7:16 p.m.58 views

Value of Integrations Highlighted At Fortinet’s Accelerate 18 Conference

Changing the hearts and minds of security teams is no easy task. Everyone has been told for so long how to protect their environment, and more importantly how to buy the various tools needed to enable that protection. Collectively we’ve adopted the unintentional job of assuming all these things...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/06/20 12:0 a.m.37 views

SUSE SLES11 Security Update : Salt (SUSE-SU-2017:1581-1)

This update for salt provides version 2016.11.4 and brings various fixes and improvements : - Adding a salt-minion watchdog for RHEL6 and SLES11 systems sysV to restart salt-minion in case of crashes during upgrade. - Fix format error. bsc1043111 - Fix ownership for whole master cache directory...

9CVSS7.6AI score0.03205EPSS
Exploits0References28
Hacker One
Hacker One
added 2017/06/06 3:29 a.m.26 views

Mixmax: [app.mixmax.com] Stored XSS on Adding new enhancement.

Hi Mixmax team, Today I just found a Stored XSS on app.mixmax.com by adding a new enhancement. Just follow the steps below to reproduce this bug. Vulnerable URL APP MIXMAX - Settings - Integrations & API Payload " Steps to reproduce - Go to the Vulnerable URL. - Click Integrations & API then clic...

1.5AI score
Exploits0
Openbugbounty
Openbugbounty
added 2017/04/25 7:13 p.m.18 views

cartrover.com XSS vulnerability

Vulnerable URL: https://www.cartrover.com/integrations/cs-cart.php?id=CS-Cart"alert/OPENBUGBOUNTY/...

6.9AI score
Exploits0
n0where
n0where
added 2016/12/13 3:45 a.m.90 views

OSINT Chrome Extension: ThreatPinch Lookup

OSINT Chrome Extension ThreatPinch was designed to enable information security professionals quick reference checks for commonly looked up indicators without having to leave the comfort of their current webpage. Be it, IPv4 addresses, MD5/SHA2 hashes, these indicators are usually copied and paste...

6.5AI score
Exploits0References2
Hacker One
Hacker One
added 2016/09/27 2:53 a.m.21 views

HackerOne: HackerOne Integrations Design Issue

Summary HackerOne Integrations Design Issue Description Include Impact This bug is similar to 170552. The HackerOne Integrations feature is very sensitive and can not be used with just a click, IMHO, or we can say "HackerOne users are a click away from​ giving to an attacker very sensitive...

Exploits0
Kitploit
Kitploit
added 2016/09/24 4:38 p.m.62 views

TestingWhiz - Codeless Software Testing Automation Tool

TestingWhiz is a test automation tool for web, database, cloud, mobile and web services/API testing from Cygnet Infotech. It has a codeless architecture based on FAST Automation Engine with 290+ readily available test commands that provide easy, intuitive and fast automation solution without...

7.5AI score
Exploits0
Hacker One
Hacker One
added 2016/09/19 9:16 p.m.22 views

HackerOne: Slack integration setup lacks CSRF protection

Details: Summary: Cross-site Request Forgery in the Integrations https://hackerone.com/YOURTEAM/integrations feature for teams. Description Include Impact: The Integrations flow is insecure, because it can be abused by CSRF. PoC: Request GET https://hackerone.com/auth/slack HTTP/1.1 Response...

0.6AI score
Exploits0
Rows per page
Query Builder