8 matches found
Amazon Linux 2 : microcode_ctl (ALAS-2025-2872)
The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2872 advisory. A potential security vulnerability in some Intelr Processors may allow information disclosure. Intel is releasing...
CVE-2024-50387
A SQL injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers to inject malicious code. We have already fixed the vulnerability in the following version: SMB Service 4.15.002 and later SMB Service...
PT-2025-15423 · Shopware · Shopware
Name of the Vulnerable Software and Affected Versions: Shopware versions prior to 6.6.10.3 Shopware versions prior to 6.5.8.17 Description: The issue allows an attacker to cause a Denial of Service by passing long passwords via forms in Storefront forms or Store-API. Recommendations: For versions...
SUSE-SU-2025:1143-1 Security update for google-guest-agent
This update for google-guest-agent fixes the following issues: - CVE-2024-45337: golang.org/x/crypto/ssh: Fixed misuse of ServerConfig.PublicKeyCallback leading to authorization bypass bsc1234563. Other fixes: - Updated to version 20250327.01 bsc1239763, bsc1239866 Remove error messages from...
The vulnerability of the SOAP request handler software “Service Updates” allows a perpetrator to gain read access to local files.
The vulnerability of the SOAP request handler software “Service Updates” is related to the lack of restrictions on authentication attempts. Exploiting this vulnerability can allow a malicious actor to gain read access to local files...
PT-2024-4723 · Unknown · Сервис Обновлений
Name of the Vulnerable Software and Affected Versions: Сервис обновлений affected versions not specified Description: The issue is related to the web request handler of the "Сервис обновлений" software, which lacks authentication attempt restrictions. This can be exploited by a remote attacker to...
Lessons Learned from 100 Data Breaches: Part 3, Securing Public Cloud Services
In the first two parts of this series, we gained insight into what specific types of data get stolen and what the root causes of breaches are, based on data breach information that Imperva’s Security Labs’ gathered, studied, and analyzed over the last ten years. You can get the full report, Lesso...
June 18, 2019—KB4501371 (OS Build 17763.592)
June 18, 2019—KB4501371 OS Build 17763.592 Note Follow @WindowsUpdate to find out when new content is published to the release information dashboard. Starting with update KB4497934, we are introducing functionality that allows you to decide when to install a feature update. You control when you g...