Meetup Vulnerabilities: Escalation of Privilege and Redirection of Funds

Tag: open source

Checkmarx Accelerates Vulnerability Remediation for Open Source Code with New Software Composition Analysis Solution

CxSCA harnesses Checkmarx’s best-in-class automation capabilities to enable developers to find, prioritize, and remediate critical open source vulnerabilities earlier and faster RAMAT GAN, ISRAEL – June 2, 2020 – Checkmarx, the global leader in software security solutions for DevOps, today announced the launch of Checkmarx SCA (CxSCA), the company’s new, SaaS-based software composition analysis solution. CxSCA leverages Checkmarx’s industry-leading source code analysis and automation capabilities, empowering security and development teams to easily identify vulnerabilities within

Read More ›

The Open Source Cookbook: A Baker’s Guide to Modern Application Development

It is often said that open source software is like a recipe. In this context, let’s discuss your grandmother’s favorite cookies. It’s quite possible your grandmother is known throughout the family as having the most famous chocolate chip cookies. Maybe she’s better known for her Pecan Sandies, or her Rich Tea Biscuits. Whichever is her

Read More ›

Apache Struts, RCEs, and the Equifax Breach Anniversary

Apache Struts, RCEs, and the Equifax Breach Anniversary

We just passed the one-year anniversary of Equifax’s announcement of their massive data breach due to an exploit of an Apache Struts vulnerability (CVE-2017-5638) – and incidentally, at nearly the same time that Apache announced another critical Apache Struts security flaw (). The latest Apache Struts vulnerability, CVE-2018-11776, was published in NVD on August 22,

Read More ›

OpenSSL Vulnerabilities: Takeaways from the Latest Patch

The OpenSSL project this week released a series of patches to combat six vulnerabilities that have been discovered as of late, including two high-severity flaws that would give attackers the ability to decrypt HTTPS traffic, execute malicious code on vulnerable servers, and possibly even cause servers to crash. Ironically, one of the flaws was actually

Read More ›

Jump to Category