all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

“ParseThru” vulnerability allows unauthorized access to cloud-native applications

Add to bookmarks
Aug. 2, 2022, 12:02 p.m. | Help Net Security

Help Net Security www.helpnetsecurity.com

A new vulnerability found in GoLang-based applications allows a threat actor to bypass validations under certain conditions and gain unauthorized access to cloud-native applications, Oxeye researchers have found. The source of “ParseThru” – as the newly discovered vulnerability has been dubbed – is the use of unsafe URL parsing methods built in the language. About the “ParseThru” vulnerability GoLang is a popular cloud native programming language. It reduces the number of software development dependencies and … More →


The post …

access applications application security cloud cloud-native cloud-native applications don't miss open source oxeye programming unauthorized access vulnerability

Visit resource

More from www.helpnetsecurity.com / Help Net Security

Ransomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware! 19 hours ago | www.helpnetsecurity.com
coveware cybercriminals don't miss extortion +20
LastPass users targeted by vishing attackers 22 hours ago | www.helpnetsecurity.com
attackers com cryptochameleon domain +21
Protobom: Open-source software supply chain tool 1 day, 4 hours ago | www.helpnetsecurity.com
administrators amp bill born +28
The key pillars of domain security 1 day, 4 hours ago | www.helpnetsecurity.com
assets auditing campaigns ciso +34
51% of enterprises experienced a breach despite large security stacks 1 day, 5 hours ago | www.helpnetsecurity.com
attack attack surface breach ciso +24
New infosec products of the week: April 19, 2024 1 day, 5 hours ago | www.helpnetsecurity.com
access april critical critical data +15
Gurucul federated search provides insights into data that is not centralized 1 day, 18 hours ago | www.helpnetsecurity.com
capabilities cloud console data +19
AuditBoard expands executive team to support the next phase of growth 1 day, 20 hours ago | www.helpnetsecurity.com
addition appointed auditboard award +25
Ivanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204) 1 day, 20 hours ago | www.helpnetsecurity.com
attacker avalanche aware critical +31

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Architect - SR

@ ERCOT | Taylor, TX
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Associate Director, SIEM & Detection Engineering(remote)

@ Humana | Remote US
View on infosec-jobs.com

Senior DevSecOps Architect

@ Computacenter | Birmingham, GB, B37 7YS
View on infosec-jobs.com
View more jobs