CVE-2022-40228 - The IBM DataPower Gateway Session Hijack Flaw Explained
In late 2022, security researchers discovered a critical vulnerability affecting IBM DataPower Gateway—a heavyweight solution widely used in securing and mediating enterprise APIs and
CVE-2022-36786 DLINK router allows you to configure NTP servers via jsonrpc API.
This will allow you to set your system time back to the time it was before the device was hacked. It can also be used
CVE-2022-38666 - Critical SSL/TLS Validation Flaw in Jenkins NS-ND Integration Performance Publisher Plugin
In September 2022, a dangerous vulnerability was disclosed in the Jenkins NS-ND Integration Performance Publisher Plugin, tracked as CVE-2022-38666. Jenkins is one of the most
CVE-2022-41882 The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with your computer
enabled` system config to `false`. As an additional security measure, users should consider upgrading their Nextcloud server to version 3.6.1. More information on
CVE-2022-38122 UPSMON PRO transmits sensitive data in cleartext over HTTP protocol
Unrestricted remote administrative access to a vulnerable device could be accomplished through ARP poisoning, ARP cache poisoning, ARP spoofing, MITM attack, etc. An attacker could
Episode
00:00:00
00:00:00