A vulnerability classified as critical has been found in Nextcloud Richdocuments up to 3.8.2/4.1.x (Cloud Software). Affected is an unknown code block of the component WOPI. Upgrading to version 3.8.3 or 4.2.0 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
Nextcloud Richdocuments up to 3.8.2/4.1.x WOPI authorization
Description IBM Tivoli Workload Scheduler 9.4, 9.5, and 10.1 is vulnerable to an XML External Entity Injection (XXE) attack when
Description Deserialization of Untrusted Data vulnerability in Apache Software Foundation Apache InLong.This issue affects Apache InLong: from 1.1.0 through 1.5.0.
Description Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker container can access any