BestHub
Sign in
Tagged articles
4 articles
Page 1 of 1
21CTO
21CTO
Sep 12, 2023 · Information Security

BroadWorks Auth Bypass (CVE-2023-20238) & RADIUS DoS (CVE-2023-20243) Alerts

Cisco has issued six security advisories, including a critical authentication bypass vulnerability in its BroadWorks Application Delivery and Extension Service Platform (CVE‑2023‑20238) and a high‑severity RADIUS denial‑of‑service flaw in its Identity Services Engine (CVE‑2023‑20243), with CISA also issuing alerts and urging users to review and mitigate the issues.

Authentication BypassCVE-2023-20238CVE-2023-20243
0 likes · 2 min read
BroadWorks Auth Bypass (CVE-2023-20238) & RADIUS DoS (CVE-2023-20243) Alerts
DevOps Cloud Academy
DevOps Cloud Academy
Jun 5, 2022 · Information Security

Critical Remote Code Execution Vulnerability CVE-2022-26134 in Atlassian Confluence – Description, Impact, and Mitigation Steps

Atlassian Confluence suffers a severe, easily exploitable remote code execution flaw (CVE-2022-26134) that allows unauthenticated attackers to run arbitrary commands, affecting multiple versions and prompting both official upgrade recommendations and detailed temporary mitigation procedures, while Xmirror's Cloud Shark RASP offers innate protection.

CVE-2022-26134ConfluenceRASP
0 likes · 9 min read
Critical Remote Code Execution Vulnerability CVE-2022-26134 in Atlassian Confluence – Description, Impact, and Mitigation Steps
Programmer DD
Programmer DD
Jan 17, 2022 · Information Security

Critical Apache Dubbo CVE-2021-43297 Vulnerability: Risks and Fixes

On January 14, 2022, 360CERT reported a high‑severity CVE‑2021‑43297 deserialization flaw in Apache Dubbo’s hessian‑lite (up to version 3.2.11) that can lead to remote code execution, detailing its impact, affected versions, risk rating, and recommending immediate upgrades to safe releases.

Apache DubboCVE-2021-43297Remote Code Execution
0 likes · 4 min read
Critical Apache Dubbo CVE-2021-43297 Vulnerability: Risks and Fixes
Programmer DD
Programmer DD
May 30, 2020 · Information Security

Critical Fastjson RCE Vulnerability (≤1.2.68): Risks, Impact, and Fixes

On May 28, 2020, 360CERT reported a high‑severity remote code execution flaw in Alibaba’s Fastjson library (versions ≤1.2.68) that bypasses autotype restrictions, affecting many assets, and provided temporary mitigation steps and upgrade recommendations to safeguard systems.

CVERemote Code ExecutionSecurity Advisory
0 likes · 3 min read
Critical Fastjson RCE Vulnerability (≤1.2.68): Risks, Impact, and Fixes