Bangladeshi Hackers Deface India’s Zee Media Website for Mocking Floods

Bangladeshi hackers "SYSTEMADMINBD" defaced Zee Medias website, accusing them of mocking the situation in Bangladesh amid severe flooding.…...

Security Bulletin: IBM App Connect Enterprise Certified Container IntegrationServer operands that run Designer flows is vulnerable to arbitrary code execution due to [CVE-2022-37614]

Summary Node.js module mockery is not used directly by IBM App Connect Enterprise Certified Container but is present in some of the images. IBM App Connect Enterprise Certified Container IntegrationServer operands that run Designer flows may be vulnerable to arbitrary code execution. This bulleti...

@akki9194/arm-rest-test-akshay (=1.0.0), @balena/open-balena-api (>=0.27.8-add-device-online-state-manager-7ac6d12f7adc353f80d89bd0cec08544e1a09181 <=0.30.2-add-device-online-state-manager-7af860b6826194984b1d0f4de717b6b7ad1d2194) +275 more potentially affected by CVE-2022-37614 via mockery (>=1.1.2 <=2.1.0)

mockery NPM version =1.1.2, =0.27.8-add-device-online-state-manager-7ac6d12f7adc353f80d89bd0cec08544e1a09181, =10.0.0, =0.0.26, =0.0.26, =0.0.26, =0.0.26, =0.9.0, =1.0.0, =0.1.0, =1.0.0, =1.0.9 and more Source cves: CVE-2022-37614 Source advisory: OSV:GHSA-GMWP-3PWC-3J3G...

GHSA-GMWP-3PWC-3J3G mockery is vulnerable to prototype pollution

Prototype pollution vulnerability in function enable in mockery.js in mfncooper mockery commit 822f0566fd6d72af8c943ae5ca2aa92e516aa2cf via the key variable in mockery.js...

mockery is vulnerable to prototype pollution

Prototype pollution vulnerability in function enable in mockery.js in mfncooper mockery commit 822f0566fd6d72af8c943ae5ca2aa92e516aa2cf via the key variable in mockery.js...

CVE-2022-37614

Prototype pollution vulnerability in function enable in mockery.js in mfncooper mockery commit 822f0566fd6d72af8c943ae5ca2aa92e516aa2cf via the key variable in mockery.js...

CVE-2022-37614

Prototype pollution vulnerability in function enable in mockery.js in mfncooper mockery commit 822f0566fd6d72af8c943ae5ca2aa92e516aa2cf via the key variable in mockery.js...

Design/Logic Flaw

Prototype pollution vulnerability in function enable in mockery.js in mfncooper mockery commit 822f0566fd6d72af8c943ae5ca2aa92e516aa2cf via the key variable in mockery.js...

CVE-2022-37614

Prototype pollution vulnerability in function enable in mockery.js in mfncooper mockery commit 822f0566fd6d72af8c943ae5ca2aa92e516aa2cf via the key variable in mockery.js...

Mockery 安全漏洞

Mockery is the mfncooper personal developer's way of providing an easy-to-use API that can be used to hook up mocking without having to mess with the require cache or other Node implementation details. A security vulnerability exists in mfncooper Mockery version 2.1.0, which stems from a prototyp...

GHSA-86R3-4GQ8-XW8Q Remote Code Execution in Laravel

Withdrawn This advisory has been withdrawn because it is not a security issue and the CVE has been revoked. Original Description A Remote Code Execution RCE vulnerability exists in h laravel 5.8.38 via an unserialize pop chain in 1 destruct in \Routing\PendingResourceRegistration.php, 2 cal in...

编号撤回

Laravel, a web application framework from the Laravel Team Laravel, has a security vulnerability that stems from a vulnerability in 1 RoutingPendingResourceRegistration.php via destruct, 2 cal in QueueCapsuleManager.php and 3 the deserialization pop-up chain invoke in...

CVE-2021-37298

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

CVE-2021-37298

Removed by vendor...

Security Industry Failing to Establish Trust

MADRID—In other industries, failure is embraced as a learning opportunity. In security, not so much. Instead, it’s too often an opportunity to victim-shame, a chance to mock a corporate giant such as Equifax which recently lost 145 million customer records and had a CISO—albeit with a lengthy IT...

Suggested The Linux 3.1 Kernel logo

Suggested The Linux 3.1 Kernel logo This new logo was proposed just this weekend and the current discussion to see whether it will be accepted for Linux 3.1 can be found in this LKML thread. To mark the upcoming release of the Linux 3.1 kernel IBM's Darrick Wong has proposed changing the familiar...