CVE-2022-23119

A directory traversal vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to read arbitrary files from the file system. Please note: an attacker must first obtain compromised access to the target Deep Security...

CVE-2022-38389

IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 233975...

CVE-2024-42197

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

CVE-2024-42197

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

EUVD-2024-55325

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

CVE-2024-42197

The CVE-2024-42197 entry concerns HCL Workload Scheduler storing user credentials in plain text, allowing a local non-privileged user to read them. The available documents consistently describe the issue as cleartext credential storage without details on affected versions or root cause beyond the...

CVE-2024-42197 HCL Workload Scheduler is vulnerable to plain text storage of a password

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

CVE-2024-42197 HCL Workload Scheduler is vulnerable to plain text storage of a password

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

CVE-2025-36916

CVE-2025-36916 affects code path in PrepareWorkloadBuffers of gxp_main_actor.cc, where a race condition can cause a double fetch. This permits local escalation of privilege with no extra execution privileges and no user interaction needed; exploitation is local. Connected documents corroborate th...

HCL Workload Scheduler 安全漏洞

HCL Workload Scheduler is a workload scheduler from HCL India. A security vulnerability exists in HCL Workload Scheduler that stems from storing user credentials in clear text, which could be read by a local user...

PT-2025-50693

HCL Workload Scheduler stores user credentials in plain text which can be read by a local user...

PT-2025-50699

In PrepareWorkloadBuffers of gxp main actor.cc, there is a possible double fetch due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Introducing Wiz SAST: Where Code Risk Meets Cloud Context

Modern code runs in complex and distributed cloud environments. Wiz SAST meets this complexity by correlating code flaws with real cloud context–including where workloads run, what they can access, and how exposed they are...

PUB-A-421250936

In PrepareWorkloadBuffers of gxpmainactor.cc, there is a possible double fetch due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

Intel QAT 输入验证错误漏洞

Intel QAT is an integrated workload acceleration feature tool from Intel Corporation USA. An input validation error vulnerability exists in Intel QAT Windows versions prior to 2.6.0, which stems from improper input validation and could lead to elevated privileges and data tampering...

Zero Trust Security Model Implementation in Microservices Architectures Using Identity Federation

The microservice bombshells that have been linked with the microservice expansion have altered the application architectures, offered agility and scalability in terms of complexity in security trade-offs. Feeble legacy-based perimeter-based policies are unable to offer safeguard to distributed...

Defend Agentless Workload Detection: Bringing Visibility to Blind Spots in Threat Detection

Providing unconditional visibility into your environment...

Identity Management for Agentic AI: The New Frontier of Authorization, Authentication, and Security for an AI Agent World

The rapid rise of AI agents presents urgent challenges in authentication, authorization, and identity management. Current agent-centric protocols like MCP highlight the demand for clarified best practices in authentication and authorization. Looking ahead, ambitions for highly autonomous agents...

SUSE CVE-2025-59824

Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. Prior to version 0.48.0, Omni Wireguard SideroLink has the potential to escape. Omni and each Talos machine establish a peer-to-peer P2P SideroLink connection using WireGuard to mutually authenticate and authorize access. The...

EUVD-2019-16063

Malware in sbrugna...