Lucene search
+L

8 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/04/11 5:58 p.m.48 views

Security Bulletin: IBM Aspera Desktop App has multiple vulnerabilities related to Open Source dependencies (CVE-2025-27789 and CVE-2025-24010 )

Summary IBM Aspera Desktop App is affected by inefficient regular expression complexity which can cause excessive CPU cycles and lack of validation on the Origin header which could cause an unauthorized access to any functionality accessible to the communication source. These vulnerabilities have...

6.5CVSS9.4AI score0.00478EPSS
Exploits1Affected Software4
The Hacker News
The Hacker News
added 2024/06/26 9:52 a.m.22 views

Practical Guidance For Securing Your Software Supply Chain

The heightened regulatory and legal pressure on software-producing organizations to secure their supply chains and ensure the integrity of their software should come as no surprise. In the last several years, the software supply chain has become an increasingly attractive target for attackers who...

6.7AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2024/04/30 6:52 p.m.41 views

Security Bulletin: Multiple security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.5

Summary In addition to updates of open source dependencies, the following security vulnerabilities are addressed with IBM Business Automation Manager Open Editions 8.0.5 Vulnerability Details CVEID:CVE-2022-1471 DESCRIPTION: SnakeYaml could allow a remote authenticated attacker to execute arbitra...

9.8CVSS9.5AI score0.99615EPSS
Exploits16Affected Software1
The Hacker News
The Hacker News
added 2024/01/24 9:1 a.m.44 views

The Unknown Risks of The Software Supply Chain: A Deep-Dive

In a world where more & more organizations are adopting open-source components as foundational blocks in their application's infrastructure, it's difficult to consider traditional SCAs as complete protection mechanisms against open-source threats. Using open-source libraries saves tons of coding...

9.8CVSS7.4AI score0.12661EPSS
Exploits0
The Hacker News
The Hacker News
added 2023/11/20 9:16 a.m.459 views

Randstorm Exploit: Bitcoin Wallets Created b/w 2011-2015 Vulnerable to Hacking

Bitcoin wallets created between 2011 and 2015 are susceptible to a new kind of exploit called Randstorm that makes it possible to recover passwords and gain unauthorized access to a multitude of wallets spanning several blockchain platforms. "Randstorm is a term we coined to describe a collection...

7.2AI score
Exploits0
Trellix
Trellix
added 2023/09/05 12:0 a.m.14 views

Supply Chain Security Leaders Collaborate to Help Developers Choose Open-Source

Supply Chain Security Leaders Collaborate to Help Developers Choose Open-Source By Trellix, Checkmarx and Illustria · September 05, 2023 Working together to keep open source safe At the beginning of 2023, top researchers from industry-leading companies established the Supply Chain Attack Research...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2023/05/24 10:51 a.m.10 views

What to Look for When Selecting a Static Application Security Testing (SAST) Solution

If you're involved in securing the applications your organization develops, there is no question that Static Application Security Testing SAST solutions are an important part of a comprehensive application security strategy. SAST secures software, supports business more securely, cuts down on...

7.3AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2021/12/18 3:42 p.m.56 views

Security Bulletin: IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies

Summary IBM Cloud Pak for Multicloud Management Monitoring has patched several open source dependencies that were inadvertently missed during previous scans. Vulnerability Details CVEID: CVE-2021-21409 DESCRIPTION: Netty is vulnerable to request smuggling, caused by improper validation of request...

9.8CVSS9.2AI score0.49727EPSS
Exploits21Affected Software1
Rows per page
Query Builder