Lucene search
K

29 matches found

GithubExploit
GithubExploit
added 2026/05/16 1:52 a.m.80 views

Exploit for Improper Input Validation in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

log4j-vuln-demo Intentionally vulnerable demo image for Sys...

10CVSS7AI score0.99999EPSS
Exploits351
The Hacker News
The Hacker News
added 2026/01/22 11:30 a.m.10 views

Filling the Most Common Gaps in Google Workspace Security

Security teams at agile, fast-growing companies often have the same mandate: secure the business without slowing it down. Most teams inherit a tech stack optimized for breakneck growth, not resilience. In these environments, the security team is the helpdesk, the compliance expert, and the incide...

5.9AI score
Exploits0
Wiz blog
Wiz blog
added 2026/01/06 2:0 p.m.20 views

Wiz Recognized as a 2025 Customers’ Choice in the Gartner® Peer Insights™ Voice of the Customer for CNAPP

Wiz is proud to be the only vendor recognized as a Customers’ Choice for two consecutive years...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.6 views

HummerCloud HummerRisk 安全漏洞

HummerCloud HummerRisk is an open source cloud-native security platform from China's HummerCloud, which solves security and governance issues in cloud-native environments in a non-intrusive way, with core capabilities including security governance for hybrid clouds and cloud-native security...

9.8CVSS7.8AI score0.00413EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-7996

Malicious code in bioql PyPI...

8CVSS5.4AI score0.00317EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-20841

Malicious code in bioql PyPI...

8.2CVSS6.3AI score0.00361EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2025/09/12 8:0 a.m.5 views

Cloud-Native Security in 2025: Why Runtime Visibility Must Take Center Stage

The security landscape for cloud-native applications is undergoing a profound transformation. Containers, Kubernetes, and serverless technologies are now the default for modern enterprises, accelerating delivery but also expanding the attack surface in ways traditional security models can't keep ...

7.1AI score
Exploits0
NVD
NVD
added 2025/03/24 5:15 p.m.55 views

CVE-2025-29778

Kyverno is a policy engine designed for cloud native platform engineering teams. Prior to version 1.14.0-alpha.1, Kyverno ignores subjectRegExp and IssuerRegExp while verifying artifact's sign with keyless mode. It allows the attacker to deploy kubernetes resources with the artifacts that were...

8CVSS0.00317EPSS
Exploits1References5
CVE
CVE
added 2025/03/24 4:38 p.m.275 views

CVE-2025-29778

Kyverno (policy engine for cloud-native platforms) contains a vulnerability prior to version 1.14.0-alpha.1 where artifact verification in keyless mode ignores subjectRegExp and IssuerRegExp, allowing deployment of Kubernetes resources signed with an unexpected certificate and potentially full cl...

8CVSS7.1AI score0.00317EPSS
Exploits1References5Affected Software1
Wiz blog
Wiz blog
added 2024/03/06 2:48 p.m.26 views

Wiz becomes the first CNAPP to provide native security to Akamai Linode Cloud

Wiz customers can now secure everything they build and run on Akamai Linode Cloud, providing organizations the broadest cloud coverage out of any CNAPP...

7.3AI score
Exploits0
OSV
OSV
added 2024/03/01 11:7 a.m.5 views

OESA-2024-1220 jss security update

JSS offers a implementation for java-based applications to use native NSS. Security Fixes: A flaw was found in JSS, where it did not properly free up all memory. Over time, the wasted memory builds up in the server memory, saturating the server’s RAM. This flaw allows an attacker to force the...

7.5CVSS6.6AI score0.01196EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/01/16 12:0 a.m.6 views

HummerCloud HummerRisk Security Breach

HummerCloud HummerRisk is an open source cloud-native security platform from China's HummerCloud, which solves security and governance issues in cloud-native environments in a non-intrusive way, with core capabilities including security governance for hybrid clouds and cloud-native security...

8.8CVSS7.1AI score0.00817EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/05/18 9:24 p.m.11 views

CVE-2023-24832

A null pointer dereference bug in Hermes prior to commit 5cae9f72975cf0e5a62b27fdd8b01f103e198708 could have been used by an attacker to crash an Hermes runtime where the EnableHermesInternal config option was set to true. Note that this is only exploitable in cases where Hermes is used to execut...

7.3AI score0.00723EPSS
Exploits0References2
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/05/03 4:0 p.m.18 views

Forrester names Microsoft a Leader in 2023 Infrastructure-as-a-Service Platform Native Security report

As we continue to drive toward making the world safer and more productive for all, it is vital we empower our customers to secure every aspect of their organization. Each day we are seeing more advanced security threats as bad actors develop new tactics that aim to take advantage of businesses as...

6.6AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2023/05/03 4:0 p.m.14 views

Forrester names Microsoft a Leader in 2023 Infrastructure-as-a-Service Platform Native Security report

As we continue to drive toward making the world safer and more productive for all, it is vital we empower our customers to secure every aspect of their organization. Each day we are seeing more advanced security threats as bad actors develop new tactics that aim to take advantage of businesses as...

6.7AI score
Exploits0
CNVD
CNVD
added 2023/04/12 12:0 a.m.13 views

Command Execution Vulnerability in Elkeid of Beijing Jitterbug Information Service Co.

Elkeid is a cloud-native host-based security intrusion detection and risk identification solution. A command execution vulnerability exists in Elkeid by Beijing Jitterbug Information Service Co. that can be exploited by an attacker to execute arbitrary commands with elevated privileges on HOST...

7.8AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/12/19 5:0 p.m.20 views

Forrester names Microsoft a Leader in Q4 2022 Security Analytics Platforms Wave report

We’re excited to announce that Microsoft is named a Leader in The Forrester Wave: Security Analytics Platforms, Q4 2022. Microsoft achieved the highest possible score in 17 different criteria, including partner ecosystem, innovation roadmap, product security, case management, and architecture. Wi...

0.4AI score
Exploits0
Qualys Blog
Qualys Blog
added 2022/11/14 10:1 p.m.20 views

QSC 2022: Listening to the Voice of the Customer

It would be redundant to state that today’s threat landscape is growing increasingly sophisticated and erratic. With all types of attacks becoming “commonplace,” the baseline for normal is abnormal. Bad actors are taking advantage of whatever attack vector they can whether that is a phishing...

7.2AI score
Exploits0
Rapid7 Blog
Rapid7 Blog
added 2022/07/22 3:0 p.m.16 views

Cloud Threat Detection: To Agent or Not to Agent?

The shift towards cloud and cloud-native application architectures represents an evolutionary step forward from older paradigms. The adoption of containers, Kubernetes, and serverless functions, along with the use of cloud-based infrastructure, introduces a new set of risks and security challenge...

7.2AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Security
added 2022/03/02 12:0 a.m.13 views

5 Cloud Native Security Platform Must-haves

Discover 5 key security components to review and how to leverage a cloud native security platform with Mick McCluney Trend Micro and Kelly Griffin AWS...

2.3AI score
Exploits0
Rows per page
Query Builder