all InfoSec news
Karros Technologies Authentication Bypass
April 19, 2024, 12:32 p.m. | Jimi Sebree
Tenable Research Advisories www.tenable.com
Researchers within Tenable have discovered security-related issues regarding the email verification process used by Karrostech’s hosted services. Karrostech (aka Karros Technologies) is a fleet management provider for student transportation systems and services.
While reviewing issues discovered in Edulog (https://tenable.com/security/research/tra-2023-41), Tenable researchers discovered a bypass to the email verification process in place that allowed access to portions of Karrostech’s infrastructure. This bypass ultimately allowed researchers to access potentially sensitive information and access internal administrative dashboards. …
More from www.tenable.com / Tenable Research Advisories
Approach.App Multiple Vulnerabilities
1 week, 6 days ago |
www.tenable.com
Path Traversal Affecting Multiple CData Products
3 weeks, 6 days ago |
www.tenable.com
Arcserve Unified Data Protection 9.2 Multiple Vulnerabilities
1 month, 2 weeks ago |
www.tenable.com
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Principal Business Value Consultant
@ Palo Alto Networks | Chicago, IL, United States
Cybersecurity Specialist, Sr. (Container Hardening)
@ Rackner | San Antonio, TX
Penetration Testing Engineer- Remote United States
@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
Internal Audit- Compliance & Legal Audit-Dallas-Associate
@ Goldman Sachs | Dallas, Texas, United States
Threat Responder
@ Deepwatch | Remote