Cyber Security
The last year has seen a massive rise in the number of software supply chain attacks aimed at upstream public repositories, a new report has revealed....
Hi, what are you looking for?
The last year has seen a massive rise in the number of software supply chain attacks aimed at upstream public repositories, a new report has revealed....
A critical vulnerability in certain Matrix clients could allow an attacker access to encrypted messages. Users of the open source, decentralized communications platform are urged to...
Security researchers have disclosed a HTTP request smuggling vulnerability in HAProxy, the popular open source load balancer. Users of HAProxy, which ships with most mainstream...
The team behind TensorFlow, Google’s popular open source Python machine learning library, has revoked support for YAML due to an arbitrary code execution vulnerability. YAML is...
Umbraco, a content management system (CMS) vendor, has given users of its form-building package a “heads-up” about an imminent software update addressing a remote code...
A vulnerability in the OWASP ModSecurity Core Rule Set (CRS) project that could allow attackers to bypass security mechanisms was present for several years, the maintainers...
The maintainers of the Wire secure messaging app have patched the software against two security vulnerabilities, one of which could have allowed an attacker...
The most popular open source repositories are rife with misconfigurations that leave countless downstream applications at risk from dependency confusion attacks, security researchers have discovered. Of...
A severe cross-site scripting (XSS) vulnerability impacting pfSense software has been patched by the vendor. Netgate solutions’ pfSense software is an open source offering based on FreeBSD for...
Emissary, an open source, peer-to-peer (P2P) workflow engine developed by the US National Security Agency (NSA), contains vulnerabilities that attackers could chain to take...
Recent Comments