An update for Red Hat Build of Apache Camel 4.14 for Quarkus 3.27 update is now available...
Vendor Advisories
This category highlights official security advisories and bulletins from vendors, including patch notices, product-specific vulnerabilities, remediation guidance, and important updates affecting supported technologies and platforms.
Microsoft has identified an active supply chain attack targeting the @antv node package manager (npm) package ecosystem....
The Deputy CISO blog series is where Microsoft Deputy Chief Information Security Officers (CISOs) share their thoughts on what is...
In this article Why we are investing in this RAMPART: Continuous safety testing for agentic AI Clarity:...
Medium Severity Description In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.11, and 9.3.12, and Splunk Cloud Platform...
Medium Severity Description Cross-Site Scripting (XSS) vulnerability in @cyntler/react-doc-viewer v1.17.1 allows remote attackers to execute arbitrary JavaScript...
Medium Severity Description In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below...
https://security-tracker.debian.org/tracker/DSA-6284-1
https://security-tracker.debian.org/tracker/DSA-6283-1
Unit 42 analyzes npm supply chain evolution post-Shai Hulud. Discover wormable malware, CI/CD persistence, multi-stage attacks and...