CVE-2022-1677 - Exploiting OpenShift Route Handling to Hijack Cluster Traffic
In 2022, security researchers discovered a severe vulnerability in Red Hat's OpenShift Container Platform, tracked as CVE-2022-1677. This bug allows a user with
CVE-2021-39009 IBM Cognos Analytics stores users' credentials in plain text, which can be read by a local privileged user.
IBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 stores user credentials in plain clear text which can be read by
CVE-2022-36052 Contiki-NG is an open-source operating system for IoT devices that uses 6LoWPAN to cast UDP headers.
This update can be applied via the package manager in your distribution or by downloading the tar file from https://github.com/contiki/contiki-ng/releases/
CVE-2022-36671 Novel-Plus v3.6.2 had an arbitrary file download vulnerability.
This issue was discovered in the Novel-Plus v3.6.2 plugin through the background file download API. An attacker could exploit this vulnerability by tricking
CVE-2022-36051 ZITADEL combines the ease of Auth0 and the versatility of Keycloak with Actions, which allows users with role.`ORG_OWNER` to create Javascript Code that is invoked by the API.
ZITADEL users are advised to update to **1.56.0**. **Actions** **1.56.0** are **not** affected by this vulnerability. **Actions** **1.56.0** are
Episode
00:00:00
00:00:00