Overview of NGINX vulnerabilities (May 2021)

Overview of NGINX vulnerabilities (May 2021) Security Advisory Security Advisory Description On May 25, 2021, NGINX announced the following security issues. This document is intended to serve as ... More info: https://support.f5.com/csp/article/K52559937?utm_source=f5support&utm_medium=RSS

NGINX Controller vulnerability CVE-2021-23019

NGINX Controller vulnerability CVE-2021-23019 Security Advisory Security Advisory Description The NGINX Controller Administrator password may be exposed in the systemd.txt file that is included in ... More info: https://support.f5.com/csp/article/K04884013?utm_source=f5support&utm_medium=RSS

NGINX Controller vulnerability CVE-2021-23020

NGINX Controller vulnerability CVE-2021-23020 Security Advisory Security Advisory Description The NAAS API keys are generated using an insecure pseudo-random string and hashing algorithm, which ... More info: https://support.f5.com/csp/article/K45263486?utm_source=f5support&utm_medium=RSS

NGINX Controller vulnerability CVE-2021-23021

NGINX Controller vulnerability CVE-2021-23021 Security Advisory Security Advisory Description The agent configuration file /etc/controller-agent/agent.conf is world readable with current ... More info: https://support.f5.com/csp/article/K36926027?utm_source=f5support&utm_medium=RSS

Episode 118: Four Android Vulnerabilities Under Active Attack

Four memory corruption vulnerabilities are being actively exploited on Android devices and nearly 2 dozen popular Android apps exposed over 100 Million users’ sensitive information in cloud databases. Over 600,000 sites using WP Statistics required a patch to fix a blind SQL injection vulnerability. WP User Avatar undergoes a dramatic rebranding to ProfilePress, adding completely […] More info: https://www.wordfence.com/blog/2021/05/episode-118-four-android-vulnerabilities-under-active-attack/

WP Briefing: Episode 9: The Cartography of WordPress

In this episode, Josepha Haden Chomphosy provides a map of how to navigate WordPress teams and communication channels, along with her small list of big things. Have a question you’d like answered? You can submit them to wpbriefing@wordpress.org, either written or as a voice recording. Credits Editor: Dustin Hartzler Logo: Beatriz Fialho Production: Chloé Bringmann […] More info: https://wordpress.org/news/2021/05/episode-9-the-cartography-of-wordpress/

NGINX Plus and Open Source vulnerability CVE-2021-23017

NGINX Plus and Open Source vulnerability CVE-2021-23017 Security Advisory Security Advisory Description An issue in NGINX resolver may allow an attacker who is able to forge UDP packets from the ... More info: https://support.f5.com/csp/article/K12331123?utm_source=f5support&utm_medium=RSS

Updates to Firefox’s Breach Alert Policy

Your personal data is yours – and it should remain yours! Unfortunately data breaches that reveal your personal information on the internet are omnipresent these days. In fact, fraudulent use … Read moreThe post Updates to Firefox’s Breach Alert Policy appeared first on Mozilla Security Blog. More info: https://blog.mozilla.org/security/2021/05/25/updates-to-firefoxs-breach-alert-policy/
Translate »