CVE-2022-43753 - Path Traversal Vulnerability in SUSE Spacewalk & Uyuni – How Attackers Could Read Sensitive Files
In late 2022, a critical security vulnerability was discovered in certain modules of the SUSE Manager Server (also known as Spacewalk/Uyuni). Tracked as CVE-2022-43753,
CVE-2022-31255 - Path Traversal in SUSE Uyuni and Spacewalk — Details, Exploit, and Fixes
CVE-2022-31255 is a path traversal vulnerability found in several SUSE Uyuni and Spacewalk packages, affecting specific versions within SUSE Linux Enterprise Module for SUSE Manager
CVE-2022-3866 - Exploiting HashiCorp Nomad Workload Identity Token Exposure
HashiCorp Nomad is a powerful workload orchestrator used in cloud native, container, and microservices environments. In October 2022, a serious security issue, CVE-2022-3866, was identified
CVE-2022-45130 CSRF attack possible via the /api/v2/cli/commands REST API.
If you have installed Obsidian on your server, it is critical that you review the list of REST API endpoints, as there is a risk
CVE-2022-3793 - How GitLab’s CI/CD Variable Leak Could Expose Your Secrets
TL;DR:
A dangerous security flaw—CVE-2022-3793—allowed attackers to read sensitive variables from .gitlab-ci.yml files in GitLab CI/CD pipelines, even if they
Episode
00:00:00
00:00:00