Oracle PeopleSoft Enterprise PeopleTools 8.58 Kibana Privilege Escalation
A vulnerability, which was classified as critical, has been found in Oracle PeopleSoft Enterprise PeopleTools 8.58 (Enterprise Resource Planning Software).
A vulnerability, which was classified as critical, has been found in Oracle PeopleSoft Enterprise PeopleTools 8.58 (Enterprise Resource Planning Software).
A vulnerability classified as critical was found in Oracle PeopleSoft Enterprise PeopleTools 8.57/8.58. 8.59 (Enterprise Resource Planning Software). This vulnerability
A vulnerability classified as critical has been found in Oracle PeopleSoft Enterprise PeopleTools 8.58/8.59 (Enterprise Resource Planning Software). This affects
A vulnerability was found in Oracle PeopleSoft Enterprise PT PeopleTools 8.59 (Enterprise Resource Planning Software). It has been classified as
A vulnerability was found in Oracle PeopleSoft Enterprise HCM Shared Components 9.2 (Enterprise Resource Planning Software) and classified as critical.
A vulnerability has been found in Oracle PeopleSoft Enterprise HCM Candidate Gateway 9.2 (Enterprise Resource Planning Software) and classified as
A vulnerability, which was classified as critical, was found in Oracle PeopleSoft Enterprise CS Campus Community 9.0/9.2 (Enterprise Resource Planning
A vulnerability classified as critical has been found in Oracle PeopleSoft Enterprise PT PeopleTools 8.57/8.58/8.59 (Enterprise Resource Planning Software). Affected
A vulnerability was found in Oracle PeopleSoft Enterprise PeopleTools 8.57/8.58/8.59 (Enterprise Resource Planning Software). It has been rated as critical.
A vulnerability was found in Oracle PeopleSoft Enterprise PeopleTools 8.57/8.58/8.59 (Enterprise Resource Planning Software). It has been declared as critical.
A vulnerability, which was classified as problematic, has been found in Oracle PeopleSoft Enterprise PeopleTools 8.57/8.58/8.59 (Enterprise Resource Planning Software).
A vulnerability classified as critical was found in Oracle PeopleSoft Enterprise PeopleTools 8.57/8.58/8.59 (Enterprise Resource Planning Software). Affected by this
A vulnerability was found in Microsoft Windows (Operating System) (the affected version unknown). It has been classified as very critical.
Cloud computing has become the new norm, especially during & post- pandemic world. With businesses moving online, cloud security is
A vulnerability, which was classified as critical, has been found in EC-CUBE 4.0.6 (E-Commerce Management Software). Affected by this issue
A vulnerability classified as problematic was found in EC-CUBE up to 3.0.18-p2 / 4.0.5-p1 (E-Commerce Management Software). This vulnerability affects
A vulnerability, which was classified as problematic, has been found in EC-CUBE up to 4.0.5-p1 (E-Commerce Management Software). This issue
Shopware is an open source eCommerce platform. Versions prior to 5.6.10 suffer from an authenticated stored XSS in administration vulnerability.
The core to any container security effort is testing the code and supplementary components which will execute within containers, and
A vulnerability, which was classified as critical, has been found in Apache Chainsaw up to 2.0.x. Affected by this issue
Understanding the container security areas that need to be focused on and particular control recommendations helps to understand which threat
Runtime Security in Kubernetes deployment might be policed based on a pod-by-pod. A pod is a group of containers that
Make in India WAF Empowering Web Security with ‘Make in India’ Pride Prophaze navigates the complexities of the digital age,
When considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page, to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Fixed Releases
At the time of publication, the release information in the following table(s) was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.
The left column lists Cisco software releases, and the right column indicates whether a release was affected by the vulnerabilities described in this advisory and which release included the fix for these vulnerabilities.
Cisco FTD Software
Cisco FTD Software Release
First Fixed Release for these Vulnerabilities
Earlier than 6.2.21
Migrate to a fixed release.
6.2.2
Migrate to a fixed release.
6.2.3
Migrate to a fixed release.
6.3.0
Migrate to a fixed release.
6.4.0
6.4.0.12
6.5.0
Migrate to a fixed release.
6.6.0
6.6.42
6.7.0
6.7.0.2
1. Cisco FMC and FTD Software releases 6.0.1 and earlier, as well as releases 6.2.0 and 6.2.1, have reached end of software maintenance. Customers are advised to migrate to a supported release that includes the fix for this vulnerability.
2. The First Fixed Release for the 6.6.0 code train was 6.6.3; however, due to upgrade issues associated with CSCvx86231 the recommended release is 6.6.4.
To upgrade to a fixed release of Cisco FTD Software, do one of the following:
For devices that are managed by using Cisco Firepower Management Center (FMC), use the FMC interface to install the upgrade. After installation is complete, reapply the access control policy.
For devices that are managed by using Cisco Firepower Device Manager (FDM), use the FDM interface to install the upgrade. After installation is complete, reapply the access control policy.
Cisco IOS XE Software and Cisco IOS XE SD-WAN Software
Cisco UTD Snort IPS Engine Software for IOS XE and Cisco UTD Engine for IOS XE SD-WAN Software1
First Fixed Release for these Vulnerabilities
Earlier than 16.12
Migrate to a fixed release.
16.12
16.12.5
17.1
Migrate to a fixed release.
17.2
Migrate to a fixed release.
17.3
17.3.3
17.4
17.4.1
1Starting with release 17.2.1, Cisco IOS XE Software and Cisco IOS XE SD-WAN Software share the same image file.
Open Source Snort
The open source Snort project releases 2.9.17.1 and later contain the fix for these vulnerabilities. For more information on open source Snort, see the Snort website.