all InfoSec news
The curious case of 'csrf-magic': A case study in supply chain poisoning
Feb. 27, 2024, 3:23 p.m. | Ax Sharma
Sonatype Blog blog.sonatype.com
Back in the day, Ivanti disclosed CVE-2021-44529, a critical "code injection" vulnerability in its EPM Cloud Services Appliance (CSA) product.
back case cloud cloud services code code injection critical csa csrf cve devzone epm injection ivanti magic poisoning product services software supply chain sonatype repository firewall study supply supply chain vulnerability
More from blog.sonatype.com / Sonatype Blog
The essential duo of SCA and SBOM management
2 weeks, 4 days ago |
blog.sonatype.com
Automating and maintaining SBOMs
3 weeks, 4 days ago |
blog.sonatype.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cloud Security Engineer
@ Gainwell Technologies | Any city, OR, US, 99999
Federal Workday Security Lead
@ Accenture Federal Services | Arlington, VA
Workplace Consultant
@ Solvinity | Den Bosch, Noord-Brabant, Nederland
SrMgr-Global Information Security - Security Risk Management
@ Marriott International | Bethesda, MD, United States
Sr. Security Engineer - Data Loss Prevention
@ Verisk | Jersey City, NJ, United States