Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-37364: WS Inc. | Home

In WS-Inc J WBEM Server 4.7.4 before 4.7.5, the CIM-XML protocol adapter does not disable entity resolution. This allows context-dependent attackers to read arbitrary files or cause a denial of service, a similar issue to CVE-2013-4152.

CVE
#web#dos

Welcome to WS

WS develops, licenses and supports software infrastructure and tools for the development, management and validation of standards-based management technologies including the Common Information Model (CIM), Web-Based Enterprise Management (WBEM), the Common Diagnostic Model (CDM), the Desktop and mobile Architecture for System Hardware (DASH) Initiative, the Systems Management Architecture for Server Hardware (SMASH) Initiative, the Storage Management Initiative (SMI), Web Services for Management (WS-Management) and others for IT Professionals, Data Center Managers, Vendors, and OEM’s.

WS offers many Professional Services for both short term and long term projects, including Architecture, Client Development, Customized Development Tools, Customized Services/API’s, Model Development, Provider Development, and Training. Our various Professional Services teams have years of expertise to help accelerate your project, and are recognized industry experts. Please contact Sales and let us know how we can help you.

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907