Aggregator

SDL涉及到多个安全活动，随着DevSecOps火热，相关安全活动数量还在增加。从纯产出的角度（漏洞、合规及市场需求）来说，这些活动的“部分”优先级如下： 1、DAST，包括主机漏扫、web漏洞扫描、容器漏洞扫描等，满足合规需求； 2、SAST，通过规则精简、调优及数据流追踪等原理检测，很大程度上降低误报； 3、IAST，对于技术栈统一且与工具匹配的业务，这一点排名甚至可以排到第二； 4、人工安全测试，包括渗透测试和代码审计，作为工具的补充很有必要，但资源有限时不会考虑； 5、安全设计，如问题中的威胁建模，对业务场景中的安全问题发现效果非常好、且更早发现，缺点就是对人的要求太高、自动化难度大。 由此可以见得威胁建模在我心中的定位，虽然排名靠后但并不是不好，相反是很好，但就是“太贵”！关于落地方面的经验，在第16问中有介绍，此处不再描述。 更多软件安全内容，可以访问： 1、SDL100问：我与SDL的故事 SAST误报太高，如何解决？ SDL需要哪些人参与？ 设计阶段应开展哪些安全活动？ 有哪些不错的安全设计参考资料？ 安全设计要求怎么做才能落地？ 有哪些威胁建模方法论？ 如何选择开源组件安全扫描(SCA)工具？ SCA工具扫描出很多漏洞，如何处理？ SCA工具识别出高风险协议，如何处理？ 应该如何选型代码安全扫描工具？ 白盒检测工具存在局限性，如何进行补偿？ SCA用什么系统做，自研还是外购？ Sonar是否好用以及误报率咋样？ 如何推进有问题的jar包更新？ SCA工具的误报率怎样？ 在研发安全流程落地方面，有何经验？ 如何说服业务完成checklist自检？ sdl会对项目变更代码做review吗？ 如何展示SDL的成果或效果？ 怎么解决源代码两张皮导致安全失效？ 开发安全培训是否有效？ 安全组件如何在SDL中落地？ 如何安全管理研发提交代码到GitHub进行开源？ 安全组件(SDK)能够否覆盖Owasp Top 10? SDL 46/100问：SDL建设是难中难，该如何做？ 2、SDL创新实践系列 首发！“ 研发安全运营 ” 架构研究与实践 DevSecOps实施关键：研发安全团队 DevSecOps实施关键：研发安全流程 DevSecOps实施关键：研发安全规范 从安全视角，看研发安全 数字化转型下的研发安全痛点

Is Your Organization’s Trust in Cloud Technology Well-Placed? In this expanding digital landscape where businesses are heavily reliant on cloud technology, can we confidently assert that our data is safe in the cloud? Regardless of the size of your business, trust in cloud platforms should be reinforced. It is a misconception that simply shifting your […]

The post Trustworthy Cloud Platforms: Ensuring Secure Access appeared first on Entro.

The post Trustworthy Cloud Platforms: Ensuring Secure Access appeared first on Security Boulevard.

Are You Truly Harnessing the Power of NHIDR Solutions? It’s no secret that Non-Human Identities and Data Rights (NHIDR) solutions are crucial for maintaining a robust security system, particularly where cloud environments are involved. But do you fully grasp the potential that these tools can offer when it comes to empowering your team and taking […]

The post Take Control: Empowering Your Team with NHIDR Solutions appeared first on Entro.

The post Take Control: Empowering Your Team with NHIDR Solutions appeared first on Security Boulevard.

Why Should We Manage Non-Human Identities and Secrets? Imagine a bustling international airport with countless travelers moving in every direction. Now, consider these travelers as your non-human identities (NHIs), each carrying a unique passport (the Secret). The airport, in this case, represents your cloud environment. To ensure a secure, smooth journey for every passenger, would […]

The post Feel Reassured with Advanced Identity and Access Management appeared first on Entro.

The post Feel Reassured with Advanced Identity and Access Management appeared first on Security Boulevard.

A vulnerability was found in PhpGedView 4.2.3. It has been rated as critical. This issue affects some unknown processing of the file module.php. The manipulation of the argument pgvaction leads to path traversal. The identification of this vulnerability is CVE-2011-0405. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in Nokia N70 and classified as critical. Affected by this issue is some unknown functionality of the component Bluetooth. The manipulation leads to stack-based buffer overflow. This vulnerability is handled as CVE-2006-0797. The attack may be launched remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in Josh Fradley Burden up to 1.8. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation leads to improper authentication. This vulnerability is known as CVE-2013-7137. The attack can be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Canto Plugin 1.3.0 on WordPress. Affected is an unknown function of the file /includes/lib/detail.php. The manipulation of the argument subdomain leads to server-side request forgery. This vulnerability is traded as CVE-2020-28976. The attack needs to be approached within the local network. Furthermore, there is an exploit available.

A vulnerability classified as problematic has been found in BigTree CMS 4.0. Affected is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2013-4881. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability was found in Apple tvOS up to 11.4.1 and classified as critical. This issue affects some unknown processing. The manipulation leads to use after free. The identification of this vulnerability is CVE-2018-4312. The attack may be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in vim 7.2a.10. It has been classified as very critical. Affected is an unknown function of the component System functions. The manipulation leads to os command injection. This vulnerability is traded as CVE-2008-3076. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Dir2web 3.0. Affected is an unknown function. The manipulation of the argument oid leads to sql injection. This vulnerability is traded as CVE-2012-4070. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability classified as critical was found in NASM Netwide Assembler 2.02. This vulnerability affects the function ppscan of the file preproc.c. The manipulation leads to numeric error. This vulnerability was named CVE-2008-2719. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Perl up to 1.05. It has been declared as critical. This vulnerability affects the function Convert::Uulib. The manipulation leads to memory corruption. This vulnerability was named CVE-2005-1349. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in DFLabs PTK up to 1.0.5. Affected is an unknown function in the library lib/logout.php. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2012-1415. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

A vulnerability, which was classified as critical, was found in Motorola SURFboard Sb4200. This affects an unknown part. The manipulation of the argument Secret leads to denial of service. This vulnerability is uniquely identified as CVE-2006-5196. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

A vulnerability has been found in MySQL up to 1.7.5 and classified as critical. This vulnerability affects the function processoldclienthello of the file handshake.cpp. The manipulation leads to memory corruption. This vulnerability was named CVE-2008-0226. The attack can be initiated remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Apple iOS up to 11.4.1. Affected by this issue is some unknown functionality. The manipulation leads to use after free. This vulnerability is handled as CVE-2018-4312. The attack may be launched remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

SafeBreach researchers developed a zero-click PoC exploit that crashes unpatched Windows Servers using the Windows Lightweight Directory Access Protocol (LDAP) remote code execution vulnerability (CVE-2024-49112).

The post LDAPNightmare: SafeBreach Labs Publishes First Proof-of-Concept Exploit for CVE-2024-49112 appeared first on SafeBreach.

The post LDAPNightmare: SafeBreach Labs Publishes First Proof-of-Concept Exploit for CVE-2024-49112 appeared first on Security Boulevard.

A vulnerability classified as problematic has been found in Rocket.Chat up to 2.0.x. Affected is an unknown function of the file Rocket.Chat. The manipulation leads to cross site scripting. This vulnerability is traded as CVE-2019-17220. It is possible to launch the attack remotely. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.