CVE-2023-3950 - Information Disclosure Vulnerability in GitLab EE: Public Key Exposure for Google Cloud Logging Audit Event Streaming Destination.
A security vulnerability, identified as CVE-2023-3950, has been discovered in GitLab Enterprise Edition (EE). The vulnerability exposes an information disclosure issue, allowing unauthorized users to
CVE-2023-37486: SAP Commerce OCC API Vulnerability - Information Disclosure in Versions HY_COM 2105, HY_COM 2205, COM_CLOUD 2211
Security researchers have identified a vulnerability in SAP Commerce (OCC API) affecting versions HY_COM 2105, HY_COM 2205, and COM_CLOUD 2211. Under certain
CVE-2023-20891 - VMware Tanzu Application Service: Unauthorized Access to Hex-encoded CF API Admin Credentials
VMware Tanzu Application Service, formerly known as Pivotal Cloud Foundry (or PCF), is an application platform that enables developers to build, test, and scale applications.
CVE-2023-37266: Unauthenticated RCE in CasaOS Personal Cloud System
Content: CasaOS is an open-source Personal Cloud system that allows users to store, share and access their data securely. Recently, a vulnerability (CVE-2023-37266) was discovered
CVE-2022-22302 - Fortinet FortiGate and FortiAuthenticator Clear Text Storage of Sensitive Information Vulnerability
A vulnerability (CVE-2022-22302) has been discovered in Fortinet's FortiGate and FortiAuthenticator devices, which could potentially allow a local, unauthorized individual to access sensitive
Episode
00:00:00
00:00:00