SECURITY BULLETINS & ADVISORIES

ADVISORY SUMMARY A server-side request forgery (SSRF) vulnerability was found in the Zamzar API when converting an Open Office ODT file to a PDF.... continue reading

ADVISORY SUMMARY The following document describes an identified vulnerability in the TinyMCE application in version 5.2.1. TinyMCE is in use on... continue reading

ADVISORY SUMMARY The following document describes identified vulnerabilities in the LibreHealth application version 2.0.0. Five high-risk issues... continue reading

ADVISORY SUMMARY One low-risk vulnerability was discovered within the SecureAuth IdP v9.3 application. This vulnerability could allow malicious... continue reading

ADVISORY SUMMARY The following document describes three identified vulnerabilities (one high-risk, one medium-risk, one low-risk) in the DigDash... continue reading

ADVISORY SUMMARY CVE-2020-13656: In Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an... continue reading

ADVISORY SUMMARY The following document describes identified vulnerabilities in the Twisted application version 19.10.0. continue reading

ADVISORY SUMMARY Security researcher Matt Hamilton (a Bishop Fox alumnus, now with Soluble) published a new security advisory about homograph... continue reading

INTRODUCTION Bishop Fox takes security seriously. In accordance with our Vulnerability Disclosure Policy, we follow the industry-standard... continue reading

ADVISORY SUMMARY The following document describes identified vulnerabilities in the Big Monitoring Fabric application. Two high-risk... continue reading