4 matches found
EUVD-2020-19095
Malware in sbrugna...
Apache CloudStack 信息泄露漏洞
Apache CloudStack is a suite of Infrastructure as a Service IaaS cloud computing platforms from the Apache Foundation in the United States. The platform is primarily used to deploy and manage large networks of virtual machines. Apache CloudStack suffers from an information disclosure vulnerabilit...
Unshiftio Url-parse 访问控制错误漏洞
Url-Parse is a small Url parser that works seamlessly across Node.js and browser environments. An Access Control Error vulnerability exists in Unshiftio Url-parse that stems from the product's lack of an effective protection mechanism for user-controlled keys. The vulnerability can be exploited t...
OpenJDK: weak protection of key stores against brute forcing (Security, 8181692)
It was discovered that the Security component of OpenJDK generated weak password-based encryption keys used to protect private keys stored in key stores. This made it easier to perform password guessing attacks to decrypt stored keys if an attacker could gain access to a key store...