A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code.
IBM WebSphere Automation for Cloud Pak for Watson AIOps 1.4.2 is vulnerable to cross-site request forgery, caused by improper cookie attribute setting. IBM X-Force ID: 226449.
IBM QRadar SIEM 7.4 and 7.5 data node rebalancing does not function correctly when using encrypted hosts which could result in information disclosure. IBM X-Force ID: 225889.
The group focuses on utilizing open-source software for malicious purposes
python-django3-3.2.15-2.el8
Updates to Django 3.2.15 which addresses https://nvd.nist.gov/vuln/detail/CVE-2022-34265 affecting Django < 3.2.14
In a joint advisory, three US agencies, NSA, CISA and FBI, warned about Chinese threat actors
The insurance market has detected “unusual activity” and turned off its systems
CEOs put cybersecurity seventh behind near-term risks such as the economy and potential recession
apptainer-1.1.2-1.fc36
Update to 1.1.2
