SEARCH
Archive
Federal VDP Program Shows Early Success
The federal government's vulnerability disclosure policy platform has taken in more than 1,300 unique valid bug reports in its first 18 months.
Critical Flaw Patched in VM2 Sandbox
A critical flaw (CVE-2023-29017) has been patched in the VM2 sandbox that runs on Node.js.
Six Flaws Fixed in libcurl 8
Version 8 of libcurl has been released, patching six vulnerabilities, including an authentication bypass.
Node.js Update Fixes High Severity Flaws
An update for the Node.js framework includes fixes for DNS rebinding and HTTP smuggling vulnerabilities.
Trio of Serious Bugs Fixed in SonicWall SSL VPNs
Three serious flaws, including an authentication bypass, a shared hard-coded encryption key, and an open redirect, have been patched in the SonicWall SMA 1000 SSL VPNs.