Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-22101: CVE-2021-22101: Cloud Controller is vulnerable to unauthenticated denial of service | Cloud Foundry

Cloud Controller versions prior to 1.118.0 are vulnerable to unauthenticated denial of Service(DoS) vulnerability allowing unauthenticated attackers to cause denial of service by using REST HTTP requests with label_selectors on multiple V3 endpoints by generating an enormous SQL query.

CVE
#sql#vulnerability#dos

Related news

VMware vCenter Server Analytics (CEIP) Service File Upload

This Metasploit module exploits a file upload in VMware vCenter Server's analytics/telemetry (CEIP) service to write a system crontab and execute shell commands as the root user. Note that CEIP must be enabled for the target to be exploitable by this module. CEIP is enabled by default.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda