Security Bulletin: IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to multiple vulnerabilities due to Apache Log4j ( CVE-2026-34477, CVE-2026-34478, CVE-2026-34479 & CVE-2026-34480 )

Summary IBM App Connect Enterprise and IBM Integration Bus for z/OS are vulnerable to multiple vulnerabilities due to Apache Log4j. Vulnerability Details CVEID:CVE-2026-34477 DESCRIPTION: The fix for CVE-2025-68161 https://logging.apache.org/security.htmlCVE-2025-68161 was incomplete: it addresse...

dssrf 安全漏洞

DSSRF is a URL and network verification library developed by RelunSec’s individual developers, designed for defending against SSRF vulnerabilities. Versions of DSSRF prior to 1.3.0 contained security vulnerabilities, which stemmed from the ability to bypass the isurlsafe check for each IPv6...

CVE-2025-62612 FastGPT File Reading Node SSRF Vulnerability

FastGPT is an AI Agent building platform. Prior to version 4.11.1, in the workflow file reading node, the network link is not security-verified, posing a risk of SSRF attacks. This issue has been patched in version 4.11.1...

XenServer stay in Disabled state after rebooting, after a while it got disconnected from pool

XenServer stay in Disabled state after rebooting, and after a while it got disconnected from pool. Try to enable host by CLI, it reports "Pool Master is unreachable" root@test-xs xe host-enable host=test-xs Seen from /var/log/xensource.log like below: Mar 16 11:28:48 test-xs xapi: debug||0...

Unauthorized Access Vulnerability in BSPHP Web Authentication System

BSPHP Network Verification System is a high performance network verification system. An unauthorized access vulnerability exists in BSPHP Network Authentication System, which can be exploited by attackers to obtain sensitive information...