.NET 9.0 Update - November 11, 2025 (KB5071067)

.NET 9.0 Update - November 11, 2025 KB5071067 .NET 9.0 has been refreshed with the latest update as of November 11, 2025. This update contains non-security fixes. See the release notes for details about updated packages..NET 9.0 servicing updates are upgrades. The latest servicing update for 9.0...

.NET 8.0 Update - October 14, 2025 (KB5068331)

.NET 8.0 Update - October 14, 2025 KB5068331 .NET 8.0 has been refreshed with the latest update as of October 14, 2025. This update contains security and non-security fixes. See the release notes for details about updated packages..NET 8.0 servicing updates are upgrades. The latest servicing upda...

EUVD-2023-24765

Malicious code in bioql PyPI...

.NET 8.0 Update - August 5, 2025 (KB5064838)

.NET 8.0 Update - August 5, 2025 KB5064838 .NET 8.0 has been refreshed with the latest update as of August 5, 2025. This update contains non-security fixes. See the release notes for details about updated packages..NET 8.0 servicing updates are upgrades. The latest servicing update for 8.0 will...

.NET 9.0 Update - June 10, 2025 (KB5061936)

.NET 9.0 Update - June 10, 2025 KB5061936 NET 9.0 has been refreshed with the latest update as of June 10, 2025. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 9.0 servicing updates are upgrades. The latest servicing update fo...

GHSA-J5HQ-5JCR-XWX7 github.com/rancher/steve's users can issue watch commands for arbitrary resources

Impact A vulnerability has been discovered in Steve API Kubernetes API Translator in which users can watch resources they are not allowed to access, when they have at least some generic permissions on the type. For example, a user who can get a single secret in a single namespace can get all...

.NET 6.0 Update - November 12, 2024 (KB5047486)

.NET 6.0 Update - November 12, 2024 KB5047486 .NET 6.0 has been refreshed with the latest update as of November 12, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 6.0 servicing updates are upgrades. The latest servicing...

RKE2 allows privilege escalation in Windows nodes due to Insecure Access Control Lists

Impact A vulnerability has been identified whereby RKE2 deployments in Windows nodes have weak Access Control Lists ACL, allowing BUILTIN\Users or NT AUTHORITY\Authenticated Users to view or edit sensitive files which could lead to privilege escalation. The affected files include binaries, script...

.NET 8.0 Update - August 13, 2024 (KB5042132)

.NET 8.0 Update - August 13, 2024 KB5042132 NET 8.0 has been refreshed with the latest update as of August 13, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 8.0 servicing updates are upgrades. The latest servicing updat...

.NET 8.0 Update - July 9, 2024 (KB5041081)

.NET 8.0 Update - July 9, 2024 KB5041081 NET 8.0 has been refreshed with the latest update as of July 9, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 8.0 servicing updates are upgrades. The latest servicing update for...

Security Bulletin: Denial of Service vulnerability affect IBM Business Automation Workflow - CVE-2023-51775

Summary IBM Business Automation Workflow is vulnerable to a Denial of Service attack. Vulnerability Details CVEID:CVE-2023-51775 DESCRIPTION: jose4j is vulnerable to a denial of service, caused by improper input validation. By sending a specially crafted p2c value, a remote attacker could exploit...

.NET 7.0 Update - May 28, 2024 (KB5039844)

.NET 7.0 Update - May 28, 2024 KB5039844 NET 7.0 has been refreshed with the latest update as of May 28, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 7.0 servicing updates are upgrades. The latest servicing update for...

.NET 6.0 Update - May 14, 2024 (KB5038350)

.NET 6.0 Update - May 14, 2024 KB5038350 .NET 6.0 has been refreshed with the latest update as of May 14, 2024. This update contains only non-security fixes. See the release notes for details on updated packages..NET 6.0 servicing updates are upgrades. The latest servicing update for 6.0 will...

Security Bulletin: OpenSSH vulnerability affects IBM WebSphere Adapter for FTP shipped with IBM Business Automation Workflow - CVE-2021-37533

Summary IBM WebSphere Adapter for FTP is shipped with IBM Business Automation Workflow bundles a vulnerable copy of Apache commons-net. Vulnerability Details CVEID:CVE-2021-37533 DESCRIPTION: Apache Commons Net could allow a remote attacker to obtain sensitive information, caused by an issue with...

.NET 6.0 Update - April 09, 2024 (KB5037336)

.NET 6.0 Update - April 09, 2024 KB5037336 .NET 6.0 has been refreshed with the latest update as of April 09, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 6.0 servicing updates are upgrades. The latest servicing update...

.NET 7.0 Update - April 09, 2024 (KB5037337)

.NET 7.0 Update - April 09, 2024 KB5037337 NET 7.0 has been refreshed with the latest update as of April 09, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 7.0 servicing updates are upgrades. The latest servicing update...

Security Bulletin: Denial of service vulnerability in Johnzon affects IBM Business Automation Workflow - CVE-2023-33008

Summary IBM Business Automation Workflow is vulnerable to a denial of service attack. Vulnerability Details CVEID:CVE-2023-33008 DESCRIPTION: Apache Johnzon is vulnerable to a denial of service, caused by an unsafe deserialization flaw in BigDecimal. By sending a specially crafted JSON input, a...

Security Bulletin: Information disclosure vulnerability affect IBM Business Automation Workflow - CVE-2023-50959

Summary IBM Business Automation Workflow is vulnerable to an information disclosure attack. Vulnerability Details CVEID:CVE-2023-50959 DESCRIPTION: IBM Business Automation Workflow may allow end users to query more documents than expected from a connected Enterprise Content Management system when...

.NET 7.0 Update - March 12, 2024 (KB5036451)

.NET 7.0 Update - March 12, 2024 KB5036451 NET 7.0 has been refreshed with the latest update as of March 12, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 7.0 servicing updates are upgrades. The latest servicing update...

.NET 8.0 Update - February 13, 2024 (KB5035121)

.NET 8.0 Update - February 13, 2024 KB5035121 NET 8.0 has been refreshed with the latest update as of February 13, 2024. This update contains both security and non-security fixes. See the release notes for details on updated packages..NET 8.0 servicing updates are upgrades. The latest servicing...