Skip to main content

CND News and Blog

New Vulnerabilities Tuesday 21 February

michele654 Vulnerabilities Tuesday, 21 February 2023 496 Hits 0 Comments

New Alerts for Apache Tomcat and Mitsubishi Electric.

Apache

Apache Tomcat uses Apache Commons FileUpload, which does not limit the number of request parts to be processed resulting in the possibility of an attacker triggering a DoS with a malicious upload or series of uploads.
More info.

Mitsubishi Electric

MELSOFT iQ AppPortal uses VisualSVN Server. If mod_proxy or mod_proxy_ajp are enabled, HTTP request smuggling and IP address authentication bypass vulnerabilities exist. a remote attacker can bypass authentication, cause information disclosure or cause a DoS. Highest CVSSv3 score of 9.8
More info.

Security Wizardry Cyber Threat Intelligence - The Radar Page

https://radar.securitywizardry.com/

Security Wizardry Cyber Threat Intelligence - The Mobile Radar Page

A mobile version of our Security Wizardry Radar Page, providing vulnerability details and visibility for a variety of software and industries.

https://www.securitywizardry.com/mobile-radar.htm

SecurityWizardry.com - Vulnerability Details

Security Wizardry Radar Page provides vulnerability details and visibility for a variety of software and industries.

https://www.securitywizardry.com/index.php/the-radar-page/alert-details#alerts

Report Print

×

About the author

michele654

Author's recent posts

More posts from author

Thursday, 18 April 2024 New Vulnerabilities Thursday 18 April

Wednesday, 17 April 2024 New Vulnerabilities Wednesday 17 April

Tuesday, 16 April 2024 New Vulnerabilities Tuesday 16 April

Comments

No comments made yet. Be the first to submit a comment