all InfoSec news
USN-6117-1: Apache Batik vulnerabilities
May 30, 2023, 2:31 p.m. |
Ubuntu security notices ubuntu.com
attacker could possibly use this to perform a cross site request forgery
attack. (CVE-2019-17566, CVE-2020-11987, CVE-2022-38398, CVE-2022-38648)
It was discovered that Apache Batik incorrectly handled Jar URLs in some
situations. A remote attacker could use this issue to access files on the
server. (CVE-2022-40146)
It was discovered that Apache Batik allowed running untrusted Java code from
an SVG. An attacker could use this issue to cause a denial of …
access apache attack cve files forgery inputs issue jar request server urls usn vulnerabilities
More from ubuntu.com / Ubuntu security notices
USN-6759-1: FreeRDP vulnerabilities
1 day, 6 hours ago |
ubuntu.com
USN-6757-1: PHP vulnerabilities
1 day, 9 hours ago |
ubuntu.com
USN-6744-3: Pillow vulnerability
1 day, 10 hours ago |
ubuntu.com
USN-6734-2: libvirt vulnerabilities
1 day, 11 hours ago |
ubuntu.com
USN-6733-2: GnuTLS vulnerabilities
1 day, 11 hours ago |
ubuntu.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Emergency Management Invoice Compliance Reviewer
@ AC Disaster Consulting | Denver, Colorado, United States - Remote
Threat Intelligence Librarian
@ Microsoft | Cheltenham, Gloucestershire, United Kingdom
Cyber Content Operations Manager - Remote in UK
@ Immersive Labs | United Kingdom
(Junior) Security Engineer (m/w/d)
@ CHECK24 | Berlin, Germany
Cyber Security
@ Necurity Solutions | Bengaluru, Karnataka, India