Lucene search
K

286 matches found

CNNVD
CNNVD
added 2021/08/05 12:0 a.m.3 views

Acronis True Image 授权问题漏洞

Acronis True Image is a famous data backup and restore software from Acronis Singapore. The software can be used to create drive and disk images and can restore the image when a clean system is needed. A security vulnerability exists in Acronis True Image 2021 Update 4 and earlier versions for...

7.8CVSS7.9AI score0.00236EPSS
Exploits0References3
NVD
NVD
added 2021/07/09 7:15 p.m.32 views

CVE-2021-32753

EdgeX Foundry is an open source project for building a common open framework for internet-of-things edge computing. A vulnerability exists in the Edinburgh, Fuji, Geneva, and Hanoi versions of the software. When the EdgeX API gateway is configured for OAuth2 authentication and a proxy user is...

8.3CVSS0.00799EPSS
Exploits0References2
OSV
OSV
added 2021/07/09 7:15 p.m.26 views

CVE-2021-32753

EdgeX Foundry is an open source project for building a common open framework for internet-of-things edge computing. A vulnerability exists in the Edinburgh, Fuji, Geneva, and Hanoi versions of the software. When the EdgeX API gateway is configured for OAuth2 authentication and a proxy user is...

6.5CVSS7.1AI score
Exploits0References2
Prion
Prion
added 2021/07/09 7:15 p.m.14 views

Authentication flaw

EdgeX Foundry is an open source project for building a common open framework for internet-of-things edge computing. A vulnerability exists in the Edinburgh, Fuji, Geneva, and Hanoi versions of the software. When the EdgeX API gateway is configured for OAuth2 authentication and a proxy user is...

5.8CVSS6.6AI score0.00799EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2021/07/09 7:5 p.m.45 views

CVE-2021-32753 Weak password in API gateway in EdgeX Foundry Edinburgh, Fuji, Geneva, and Hanoi releases allows remote attackers to obtain authentication token via dictionary-based password attack when OAuth2 authentication method is enabled.

EdgeX Foundry is an open source project for building a common open framework for internet-of-things edge computing. A vulnerability exists in the Edinburgh, Fuji, Geneva, and Hanoi versions of the software. When the EdgeX API gateway is configured for OAuth2 authentication and a proxy user is...

8.3CVSS8.5AI score0.00799EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/06/15 1:3 p.m.33 views

(RHSA-2021:2439) Important: Open Liberty 21.0.0.6 Runtime security update

Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 21.0.0.6 serves as a replacement for Open Liberty 21.0.0.3, and includes a security fix and enhancements. For specific information about this release, see lin...

7.5CVSS1.5AI score0.03026EPSS
Exploits3
CNVD
CNVD
added 2021/06/11 12:0 a.m.17 views

Apache APISIX Access Control Error Vulnerability

Apache Apisix is a cloud-native microservices API gateway service from the Apache Foundation. The software is implemented based on OpenResty and etcd, with dynamic routing and plugin hot-loading, suitable for API management under the microservices architecture. APISIX Dashboard has a security...

5.3CVSS1.5AI score0.02694EPSS
Exploits0References1
CNVD
CNVD
added 2021/06/07 12:0 a.m.10 views

SQL Injection Vulnerability in Seiko Cloud MES

Jinggong Cloud MES, mainly for small and medium-sized manufacturing shop floor management, based on industrial Internet, micro-services, cloud computing, Internet of Things, big data technology architecture, to provide low-cost, fast deployment, easy operation and maintenance of SAAS applications...

7.8AI score
Exploits0
Akamai Blog
Akamai Blog
added 2021/05/11 11:0 a.m.54 views

Why Developers Are Writing Apps on Our Edge Platform

A lot of companies talk about edge computing today, but at Akamai, we've been doing it for more than 20 years. We were the first company to offer edge computing services, beginning in 1999 with advanced metadata, an XML-based language used to enable a variety of capabilities on our edge platform ...

7.5AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2021/05/03 8:28 p.m.44 views

Securing Kubernetes Deployments From Runway to Takeoff

Kubernetes use is rising rapidly—according to a 2019 Cloud Native Computing Foundation CNCF survey, 78% of respondents say they use Kubernetes today 58% more respondents than the previous year. With numbers like those, it looks like everyone is headed toward the cloud. But as with any journey, yo...

Exploits0
RedHat Linux
RedHat Linux
added 2021/04/19 6:3 p.m.98 views

Low: Red Hat Security Advisory: Red Hat AMQ Streams 1.7.0 release and security update

Red Hat AMQ Streams 1.7.0 is now available from the Red Hat Customer Portal. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS6.7AI score0.17611EPSS
Exploits0References4
CNVD
CNVD
added 2021/04/06 12:0 a.m.7 views

NATS Server Access Control Error Vulnerability

NATS Server is an open source messaging system. The system is mainly used for cloud-native applications, IoT messaging and microservices architecture. An access control error vulnerability exists in NATS Server 2.x before 2.2.0 and JWT library before 2.0.1, which stems from improper handling of...

7.5CVSS6.6AI score0.0146EPSS
Exploits1References1
Carbon Black Blog
Carbon Black Blog
added 2021/03/16 8:15 p.m.51 views

Securing Containers and Kubernetes-Orchestrated Environments

In a recent Black Hat webcast, “Securing Containers and Kubernetes-Orchestrated Environments,” sponsored by VMware Carbon Black, guest speakers Sheila A. Berta, Offensive Security Specialist, Dreamlab Technologies and Haim Helman, CTO, VMware Carbon Black App Security, VMware Security Business...

Exploits0
Akamai Blog
Akamai Blog
added 2020/12/23 2:0 p.m.288 views

Launching a New Game Studio and Planning for Growth

So, you're starting your own game studio. This is an incredible opportunity! You and your team get to start fresh and build the game of your dreams! But, let's be honest, if you have just founded your own game studio, odds are that you're not a technical architect. You may have some technical...

7.1AI score
Exploits0
Akamai Blog
Akamai Blog
added 2020/12/22 5:0 a.m.19 views

How the Edge Improves Microservices

Microservice architecture has transformed the way we develop and operate our applications. Microservices aren't a technology or a programming language. Instead, they create a structure for designing and building applications based on the idea that the individual functions of a website should...

2.1AI score
Exploits0
Akamai Blog
Akamai Blog
added 2020/12/09 2:0 p.m.37 views

How DevOps Tools Can Help Publishers Thrive

Agility has proven to be a key weapon in the publisher arsenal during the pandemic. Agile firms -- particularly news publishers -- that switched directions or added digital services quickly reaped the rewards of new readers and viewers, even if the audience boost didn't result in a similar increa...

0.2AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2020/11/30 6:47 p.m.37 views

Security Bulletin: Multiple Security Vulnerabilities in IBM WebSphere Application Server affects IBM Voice Gateway

Summary Multiple security vulnerabilities in IBM WebSphere Application Server affect certain IBM Voice Gateway microservices. CVE-2020-4590 impacts the beta version, OpenID Provider microservice and CVE-2020-10693 impacts the Voice Agent Tester microservice. Vulnerability Details CVEID:...

6.5CVSS1.2AI score0.02294EPSS
Exploits0Affected Software1
Hacker One
Hacker One
added 2020/10/29 6:19 p.m.22 views

Semrush: Critically Sensitive Spring Boot Endpoints Exposed

Spring Boot includes a number of additional features to help you monitor and manage your application when you push it to production. Hacker found that actuator endpoints containing potentially sensitive data such as internal tokens and service data were left public. Semrush has a microservices...

6.7AI score
Exploits0
RedHat Linux
RedHat Linux
added 2020/10/26 3:38 p.m.81 views

(RHSA-2020:4344) Moderate: Open Liberty 20.0.0.11 Runtime security update

Open Liberty is a lightweight open framework for building fast and efficient cloud-native Java microservices. This release of Open Liberty 20.0.0.11 serves as a replacement for Open Liberty 20.0.0.10 and includes enhancements. For specific information about this release, see links in the Referenc...

5.3CVSS0.4AI score0.02294EPSS
Exploits0
Akamai Blog
Akamai Blog
added 2020/10/15 10:0 p.m.41 views

Platform Update Highlights for eCommerce

Akamai's October Platform Update offers a ton of new features for our customers across all industries. But if you're an online retailer, you should really be paying attention to improvements to EdgeWorkers and Image & Video Manager, which provide expanded capabilities for creating new microservic...

6.9AI score
Exploits0
Rows per page
Query Builder