Schneider Electric StruxureWare Data Center Expert Code Injection Vulnerability

Schneider Electric StruxureWare Data Center Expert is a monitoring software from the French company Schneider Electric Schneider Electric. It is suitable for a variety of organizations to monitor their company-wide power, cooling, security, and environment. A code injection vulnerability exists i...

PT-2022-5984 · Centreon · Centreon

Name of the Vulnerable Software and Affected Versions: Centreon affected versions not specified Description: The issue is related to the lack of protection for the SQL query structure in Centreon, a software for monitoring IT infrastructure. This could allow a remote attacker to execute arbitrary...

Building Better Evaluation Criteria for Linux Security

Carbon Black recently published a report on the challenges of securing Linux-based operating systems and how Carbon Black is redesigning the approach. For more information about how the Cb Predictive Security Cloud, Carbon Black's consolidated endpoint security platform, helps enterprises cut cos...

[SECURITY] Fedora 22 Update: jenkins-1.609.3-7.fc22

Jenkins is an award-winning application that monitors executions of repeated jobs, such as building a software project or jobs run by cron. Among those things, current Jenkins focuses on the following two jobs: - building/testing software projects continuously. In a nutshell, Jenkins provides an...

HP SiteScope 'loadFileContents' SOAP请求远程代码执行漏洞

BUGTRAQ ID: 65972 CVECAN ID: CVE-2013-6207 HP SiteScope是无代理监控软件，可维护其分布式IT 基础架构的可用性和性能。 SiteScope 10.1x, 11.1x, 11.21版本的loadFileContents SOAP功能存在安全漏洞，成功利用后可导致任意代码执行、任意文件下载和拒绝服务。 0 HP SiteScope 11.21 HP SiteScope 11.1x HP SiteScope 10.1x 厂商补丁： HP -- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...