75 matches found
.NET 9.0 Update - November 11, 2025 (KB5071067)
None None...
.NET 8.0 Update - October 14, 2025 (KB5068331)
None None...
EUVD-2023-24765
Malicious code in bioql PyPI...
.NET 8.0 Update - August 5, 2025 (KB5064838)
None None...
.NET 9.0 Update - June 10, 2025 (KB5061936)
None None...
GHSA-J5HQ-5JCR-XWX7 github.com/rancher/steve's users can issue watch commands for arbitrary resources
Impact A vulnerability has been discovered in Steve API Kubernetes API Translator in which users can watch resources they are not allowed to access, when they have at least some generic permissions on the type. For example, a user who can get a single secret in a single namespace can get all...
.NET 6.0 Update - November 12, 2024 (KB5047486)
None None...
RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists
Impact A vulnerability has been identified whereby RKE2 deployments in Windows nodes have weak Access Control Lists ACL, allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. The affected files include binaries, script...
.NET 8.0 Update - August 13, 2024 (KB5042132)
None None...
.NET 8.0 Update - July 9, 2024 (KB5041081)
None None...
Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow - CVE-2023-51775
Summary IBM Business Automation Workflow is vulnerable to a Denial of Service attack. Vulnerability Details CVEID:CVE-2023-51775 DESCRIPTION: jose4j is vulnerable to a denial of service, caused by improper input validation. By sending a specially crafted p2c value, a remote attacker could exploit...
.NET 7.0 Update - May 28, 2024 (KB5039844)
None None...
.NET 6.0 Update - May 14, 2024 (KB5038350)
None None...
Security Bulletin: OpenSSH vulnerability affects IBM WebSphere Adapter for FTP shipped with IBM Business Automation Workflow - CVE-2021-37533
Summary IBM WebSphere Adapter for FTP is shipped with IBM Business Automation Workflow bundles a vulnerable copy of Apache commons-net. Vulnerability Details CVEID:CVE-2021-37533 DESCRIPTION: Apache Commons Net could allow a remote attacker to obtain sensitive information, caused by an issue with...
.NET 7.0 Update - April 09, 2024 (KB5037337)
None None...
.NET 6.0 Update - April 09, 2024 (KB5037336)
None None...
Security Bulletin: Denial of service vulnerability in Johnzon affects IBM Business Automation Workflow - CVE-2023-33008
Summary IBM Business Automation Workflow is vulnerable to a denial of service attack. Vulnerability Details CVEID:CVE-2023-33008 DESCRIPTION: Apache Johnzon is vulnerable to a denial of service, caused by an unsafe deserialization flaw in BigDecimal. By sending a specially crafted JSON input, a...
Security Bulletin: Information disclosure vulnerability affect IBM Business Automation Workflow - CVE-2023-50959
Summary IBM Business Automation Workflow is vulnerable to an information disclosure attack. Vulnerability Details CVEID:CVE-2023-50959 DESCRIPTION: IBM Business Automation Workflow may allow end users to query more documents than expected from a connected Enterprise Content Management system when...
.NET 7.0 Update - March 12, 2024 (KB5036451)
None None...
.NET 8.0 Update - February 13, 2024 (KB5035121)
None None...